Threat Detection & Response, AVP - Tier 2 - NJ

Benefits

Additional Information

Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world's leading financial groups. Across the globe, we're 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world. With a vision to be the world's most trusted financial group, it's part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career. Join MUFG, where being inspired is expected and making a meaningful impact is rewarded. The selected colleague will work at an MUFG office or client sites four days per week and work remotely one day. A member of our recruitment team will provide more details. EDUCATION - Degree or equivalent work experience equally preferable. - Bachelor's degree in Information Technology, Cyber Security, Computer Science or related discipline CERTIFICATIONS - Preferred Certifications: CISSP, ISSMP, SANS, GSEC, GCFA, GNFA, GIAC and/or GCIH WORK EXPERIENCE - Experience in Information Security or other Information Technology fields - Experience working in global, complex, matrix-managed organization - Experience in threat and vulnerability management - Extensive experience working in global, complex, matrix-managed organization - Experience in vulnerability management - Experience working in global, complex, matrix-managed organization - Experience working directly in Cybersecurity Operations or Information Security - Experience working within the Financial Services Industry preferred - Experience creating trending, metrics, and management reports - Experience across the following technical concentrations: - -Network-Based Security Controls (Firewall, IPS, WAF, MDS, Proxy, VPN) - -Anomaly Detection and Investigation - -Host and Network Forensics - -Operating Systems - -Web Applications and Traffic - Experienced with EnCase, FTK, SIFT, Splunk, Redline, Volatility, Wireshark, tcpdump, and open-source forensic tools - Experience responding to cyber events in public cloud environments such as AWS, Azure, Google Cloud, etc. - Security experience in all phases of product and service development lifecycle including architecture, design, development, testing, release, and operational maintenance. - Experience with cloud computing security, network, operating system, database, application, and mobile device security. - Extensive knowledge of vulnerability management and remediation. - Experience with information security risk management, including conducting information security audits, reviews, and risk assessments. - Experience in two or more security domains including Security Governance and Oversight, Security Risk Management, Network Security, Threat and Vulnerability Management, and Incident Response and Forensics FUNCTIONAL SKILLS - Knowledge of models/frameworks such as Kill Chain and MITRE ATT&CK - Well-developed analytic, qualitative, and quantitative reasoning skills - Demonstrated creative problem-solving abilities - Security event monitoring, investigation, and overall incident response process - Planning and project management - Development of information security policies, standards, and procedures - Strong time management skills to balance multiple activities and lead junior analysts as needed - Understanding of offensive security to include common attack methods - Understanding of how to pivot across multiple datasets to correlate artifacts for a single security event - A diverse skill base in both product security and information security including organizational structure and administration practices, system development and maintenance procedures, system software and hardware security controls, access controls, computer operations, physical and environmental controls, and backup and recovery procedures. - Detailed knowledge and experience in security and regulatory frameworks (ISO 27001, NIST 800 series, FFIEC, SOC2, FedRAMP, STAR, etc.) - In-depth knowledge in one or more security domains including Security Governance and Oversight, Security Risk Management, Network Security, Threat and Vulnerability Management, and Incident Response and Forensics FOUNDATIONAL SKILLS - Communicates effectively - Identifies multiple paths to success using analytical and critical thinking as well as decision-making skills - Exercises sound judgement, prioritizes effectively, and strives for continuous improvement - Effectively collaborates with colleagues - Leverages available technology to drive efficiency and results - Understands and applies industry trends and best practices - Exhibits optimism, resilience, flexibility, and openness to others' ideas - Values learning as a lifelong professional objectiv