Do you want your voice heard and your actions to count?
Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.
With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.
Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.
The selected colleague will work at an MUFG office or client sites four days per week and work remotely one day. A member of our recruitment team will provide more details.Job Summary
The VP for Incident Response Planning and Operations is responsible for leading the cyber security wargaming and incident readiness program, especially the planning and operational readiness of incident response capabilities. While the primary focus is the Americas, this role drives strong engagement and collaboration with other regions and the Home Office in Japan. The VP acts as a self-starter and team lead, setting direction, building cross-functional partnerships, and ensuring continuous improvement as incident response needs evolve rapidly. Key goals include preparing the Global Incident Response team and relevant stakeholders through executive-level (CXO) and enterprise-wide exercises, and translating outcomes into measurable readiness improvements.
Major Responsibilities
Program Leadership:
Develop and manage a comprehensive cyber wargaming and incident readiness program.
Align tabletop exercises with enterprise risk management and incident response strategies.
Coordinate with internal and external stakeholders to ensure exercises reflect realistic threat scenarios.
Provide strategic leadership for incident response planning and operational readiness, setting priorities, governance, and success metrics.
Drive continuous improvement by evolving the program to match rapidly changing incident response requirements, threats, and business objectives.
Exercise Design & Execution:
Design and facilitate cyber incident tabletop exercises, red/blue team simulations, and strategic wargames.
Develop injects, scripts, and after-action review processes.
Incorporate threat intelligence and emerging risks into exercise scenarios.
Lead and run exercises up to the Executive (CXO) level, tailoring scenarios and decision points to executive risk and business impact.
Operate as a self-starter and team lead, coordinating multi-disciplinary planning teams and ensuring high-quality execution end-to-end.
Readiness Assessment:
Evaluate organizational response capabilities and identify gaps in incident response plans.
Produce detailed reports and recommendations for improvement.
Track remediation efforts and maturity over time.
Own readiness outcomes by proactively driving remediation plans, timelines, and accountability across stakeholders without direct authority.
Provide leadership oversight of readiness metrics and maturity roadmaps across the Americas while aligning with global and regional expectations.
Stakeholder Engagement:
Work closely within Enterprise Information Security teams to identify areas of improvement.
Collaborate with IT, security operations, legal, communications, and executive leadership.
Present findings and strategic recommendations to senior leadership.
Build and sustain strong relationships across the Americas and with the Home Office (Japan) and other regions to ensure consistent readiness and shared learning.
Serve as a trusted advisor and leader, enabling effective coordination during high-impact incidents and improving executive and cross-functional alignment.
Continuous Improvement:
Monitor trends in cyber threats and incident response best practices.
Integrate lessons learned from real incidents and exercises into future planning.
Lead a continuous-improvement cycle that rapidly incorporates lessons learned, threat changes, and business shifts into plans, playbooks, and exercises.
Champion modernization and operational excellence in incident response planning and operations, promoting repeatable processes and measurable improvements.
Qualifications
Bachelor’s degree in Cybersecurity, Information Technology, or related field.
7 years or more in cybersecurity, with experience in incident response or threat management.
Excellent communication, facilitation, writing and analytical skills.
Experience designing and facilitating tabletop exercises or cyber simulations.
Ability to document and explain technical details in a concise, understandable manner.
Relevant technical and industry certifications in cybersecurity.
Experience with information security risk management, including information security audits, reviews, and risk assessments.
Strong understanding of CRI, NIST, MITRE ATT&CK, and other cybersecurity frameworks.
Ability to work cross-functionally and influence without direct authority.
Prior work experience in a global company preferred.
Japanese language proficiency is a major advantage.
Desired Skills
Knowledge in one or more security domains including Incident Response and Forensics, Security Governance and Oversight, Security Risk Management, Network Security, or Threat and Vulnerability Management.
Knowledge of cloud security, AI security, networks, databases, and applications.
Knowledge of the various types of cyber-attacks and their implementations.
Experience in operational processes such as security monitoring, data correlation, troubleshooting, security operations, etc.
Other
As per MUFG’s work policy for all personnel, candidates must work onsite for 4 days and 1 day remotely out of Jersey City, NJ.
The typical base pay range for this role is between $123K - $180K depending on job-related knowledge, skills, experience, and location. This role may also be eligible for certain discretionary performance-based bonus and/or incentive compensation. Additionally, our Total Rewards program provides colleagues with a competitive benefits package (in accordance with the eligibility requirements and respective terms of each) that includes comprehensive health and wellness benefits, retirement plans, educational assistance and training programs, income replacement for qualified employees with disabilities, paid maternity and parental bonding leave, and paid vacation, sick days, and holidays. For more information on our Total Rewards package, please click the link below.