Do you want your voice heard and your actions to count?
Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.
With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.
Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.
Position Title: Cyber Security Specialist
Corporate Title: Assistant Vice President
Reporting to: Vice President
Location: Bengaluru
Role Overview:
The position focuses on cybersecurity awareness, training, governance, and risk assessment for the Asia-Pacific (APAC) region. Ensuring compliance with regulatory and technology risk requirements.
As part of the Regional Technology Information Security Team supporting APAC, you will collaborate closely with stakeholders and teams across the region. The candidate is expected to serve as a Subject Matter Expert in Cyber Risk and Awareness domains.
Key Responsibilities:
Security Standards & Governance
- Maintain and support regional security standards; ensure adoption and communication across APAC branches and offices.
- Draft, update, and harmonize information security, standards and procedures.
- Maintain and update the cybersecurity SharePoint page.
Risk Profiling & Assessment
- Collect, analyze, and report security risk indicators.
- Perform security risk reviews on regional systems and controls; recommend effective measures to meet per governance thresholds, regulatory and technology risk requirements.
Cyber Maturity & Compliance
- Perform and coordinate cyber maturity assessments and track progress.
- Review and evaluate security measures for compliance with internal and external standards.
- Support internal/external audits, gap assessments, evidence collection, remediation tracking, and status reporting.
- Assist with cyber control effectiveness reviews.
Training & Awareness
- Plan, support, and execute cybersecurity awareness programs, including phishing simulations, cyber tabletop exercises, cyber range activities, and campaigns (e.g., Cyber Awareness Month, Technology Week).
Governance Support
- Assist in hosting cyber governance meetings and workshops.
- Track, review and report on regional cyber risk posture, including risk exceptions, audit findings, and issue tracking.
Advisory & Research
- Act as a subject matter expert on cybersecurity frameworks, standards, and risk assessment.
- Conduct security research and share knowledge on emerging threats.
Customer & Stakeholder Engagement
- Build and maintain strong relationships with key internal and external stakeholders.
- Collaborate closely with regional cybersecurity teams, Asia System Office, and Japan headquarters to ensure alignment on security initiatives.
- Partner with APAC branches to support regional cybersecurity improvement plans and drive consistent maturity in technology and processes across the region.
Job Requirements:
Technical Skills
- Strong knowledge of cybersecurity frameworks (ISO/IEC 27001; CRI; basic understanding of NIST CSF or ISO 31000 risk practices).
- Hands-on experience performing security reviews, gap analyses, evidence collection, and risk assessments.
- Experience updating and maintaining security standards, and procedures.
- Familiarity with phishing simulation tools, cyber range, and tabletop exercises.
- Understanding of regulatory requirements in APAC financial services.
Core Skills & Competencies
- Strong analytical, organizational, and time management skills; able to manage multiple reviews concurrently.
- Excellent English written and verbal communication; strong presentation skills.
- High level of integrity, ownership, and attention to detail.
Soft Skills
- Ability to work independently and as part of a cross-functional team with attention to detail and follow-through.
- Ability to lead awareness programs and workshops.
Nice-to-Have
- Familiarity with vendor risk processes and third-party security questionnaires.
- Consulting background preferred.
Education
- Bachelor’s degree in Information Security, Computer Science, or a related field.
Experience
- 6–10 years of experience in cybersecurity, IT risk management, or related domains.
Mitsubishi UFJ Financial Group (MUFG) is an equal opportunity employer. We view our employees as our key assets as they are fundamental to our long-term growth and success. MUFG is committed to hiring based on merit and organsational fit, regardless of race, religion or gender.