Do you want your voice heard and your actions to count?
Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.
With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.
Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.
What you'll do:
As an Analyst, Security Engineer, you will be at the forefront of protecting vital information assets by deploying advanced security controls tailored to the organisation’s needs. Your day-to-day responsibilities will involve close collaboration with both internal teams such as IT specialists and external partners like consultants or auditors. You will be expected to respond swiftly to any information security incidents while proactively identifying vulnerabilities through regular audits. By staying informed about the latest threat intelligence developments, you will help shape resilient defence strategies. Additionally, you will play a key role in educating staff through awareness programmes that promote responsible behaviour. Managing patch deployments and certificate lifecycles ensures operational continuity for critical systems. Success in this role requires not only technical proficiency but also strong interpersonal skills that enable effective communication across diverse teams.
Deploy and manage comprehensive security controls across organisational systems and data to ensure protection against evolving threats.
Collaborate closely with the Global Security Operations Centre (GSOC) to monitor potential threats, investigate incidents, report findings, and remediate issues promptly to prevent recurrence.
Work alongside IT teams to identify vulnerabilities within infrastructure and applications, developing effective mitigation strategies that strengthen overall security posture.
Conduct regular audits of security processes and systems to ensure strict adherence to internal policies, industry standards, and regulatory requirements.
Stay up-to-date with emerging threats, trends, and technologies by actively engaging in threat intelligence activities that inform proactive defence measures.
Design and deliver engaging security awareness programmes for employees and stakeholders to foster a culture of vigilance and shared responsibility.
Coordinate with external consultants, auditors, and vendors to address specialised security needs and ensure best practices are implemented across all platforms.
Oversee the timely deployment of critical security patches as well as compliance with hardening checklists based on system criticality.
Manage certificate lifecycles for essential systems including IBG, DD, and FINET by overseeing renewals and ensuring uninterrupted service.
Create and implement self-signed certificates for both User Acceptance Testing (UAT) environments and production systems as required.
What you bring:
To excel as a Analyst, Security Engineer, you will bring proven experience in managing complex IT security operations within regulated environments. Your background should include direct involvement in incident response scenarios where your analytical approach led to successful containment or remediation. Familiarity with industry standards such as NIST or BNM RMiT will support your ability to maintain compliance during audits. You should possess excellent interpersonal skills that facilitate clear communication between technical experts and non-specialist colleagues alike. Experience working with advanced monitoring tools like Splunk or CyberArk will enable you to efficiently detect anomalies while your commitment to continuous learning keeps you abreast of new threats. Certifications such as CISSP or CEH further demonstrate your dedication to professional growth. Above all else, your collaborative spirit will help nurture an inclusive environment where everyone feels empowered to contribute towards shared goals.
Minimum Bachelor’s degree in Computer Science, Information Security or a related discipline
Demonstrated hands-on experience in IT security operations or related fields spanning at least three years is essential for effective performance.
Comprehensive knowledge of security principles, protocols, technologies including firewalls, intrusion detection/prevention systems, vulnerability management tools is necessary for daily tasks.
Proven track record in incident response activities such as threat hunting and intelligence gathering enables prompt resolution of issues.
Familiarity with regulatory frameworks like NIST, CRI or BNM RMiT ensures compliance with industry standards.
Excellent communication skills combined with collaborative abilities allow you to work effectively both independently and within team settings.
Industry-recognised certifications such as NCSP, CISSP, CISM or CEH are highly desirable for demonstrating advanced expertise (preferred but not mandatory).
Experience using leading security platforms such as Splunk, Qualys, Tanium or CyberArk supports efficient monitoring and remediation efforts.
Ability to design engaging training sessions for non-technical audiences helps foster greater organisational awareness around cyber risks.
Strong analytical thinking paired with attention to detail ensures thorough investigation of incidents without overlooking critical factors.
Mitsubishi UFJ Financial Group (MUFG) is an equal opportunity employer. We view our employees as our key assets as they are fundamental to our long-term growth and success. MUFG is committed to hiring based on merit and organsational fit, regardless of race, religion or gender.