Do you want your voice heard and your actions to count?

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), the 7th largest financial group in the world. Across the globe, we’re 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.

With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.

Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.

EDUCATION • Degree or equivalent work experience equally preferable. • Degree in information systems, cybersecurity, or a related field or a combination of education and relevant experience CERTIFICATIONS • Certification pertaining to information security and data privacy protection (e.g., Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Manager (CISM), etc.) required WORK EXPERIENCE • Risk management experience with the ability to apply risk principles to the business environment • Significant experience working in risk, information security, or BISO role or the equivalent • International banking experience in information technology with a focus in information security • Prior experience working across other industries (non financial) in a large multinational corporation or global company • Experience building remediation plans to address security gaps without hindering the business • Experience with exception management and required remediation • Global experience preferred FUNCTIONAL SKILLS • Knowledge of National Institute of Standards and Technology (NIST) Cybersecurity Framework, Financial Services Sector Coordinating Council (FSSCC) Cyber Profile, Federal Financial Institutions Examination Council (FFIEC) guidance, Gramm-Leach-Bliley Act (GLBA), Payment Card Industry (PCI), Sarbanes-Oxley, and other relevant regulations laws and regulations • In-depth understanding of security controls and how to apply them to business use cases • Understanding of relevant key performance indicators and key risk indicators and the ability to set, apply, and report them on a regular basis • Understanding of key metrics needed to oversee and manage the information security and risk of a line of business and the ability to communicate and present them to executive management FOUNDATIONAL SKILLS • Demonstrates leadership • Communicates effectively • Identifies multiple paths to success using analytical and critical thinking as well as decision-making skills • Operates strategically to support a culture of continuous improvement and systems thinking • Makes sound business decisions in a complex work environment • Collaborates with other business functions and divisions to advance business objectives • Is flexible, decisive, and able to establish support from leadership • Monitors industry trends and best practices and applies insights to advance the business • Exhibits and fosters optimism, resilience, flexibility, and openness to others' ideas • Inspires innovation and values learning as a lifelong professional objective • Leads by example, engaging inclusively and with intent • Always acts with integrity RESPONSIBILITIES • Partner with existing BISOs to Influence executives within aligned business units by demonstrating how security efforts align to their strategic objectives • Establish and drive a clear risk picture to the lines of business through regular contact on all risk and security issues • Lead discussions to incorporate and manage information security risks as part of the overall strategy of the business line • Provide clear and consistent communications to lines of business related to cybersecurity related topics • Evaluate known gaps and suggest remediation plans that enable the business while ensuring appropriate information security and risk management • Evaluate current systems and processes and develop a plan to manage/remediate gaps with the business • Inform the lines of business of new security initiatives and gather feedback on their impact • Provide subject matter expertise on assigned lines of business and the associated risks, bringing line of business specific security requirements back to enterprise information security and the Business Information Security Office (BISO) • Guide lines of business through assessments, translating the technology/security questions so that they can be understood by the business; then guide them as to how to gather the required information • Act as the trusted advisor to the broader BISO team, informing them via metrics and reports of key risks and security initiatives of the lines of business • Support business initiatives and transformation activities • Provide insight into the key drivers of information security risk or breeches

At MUFG, our colleagues are our greatest assets. Our Culture Principles provide a roadmap for how each of our colleagues must think and act to become more client-obsessed, inclusive and innovative. They reflect who we are, who we want to be and what we expect from one another. We are excited to see you take the next step in exploring a career with us and encourage you to spend more time reviewing them!

Our Culture Principles

• Client Centric

• People Focused

• Listen Up. Speak Up.

• Innovate & Simplify

• Own & Execute