Job Description

About MUFG Global Service (MGS)

MUFG Enterprise Solutions India Private Limited (MUFG Global Service) is the Global Capabilities Centre (GCC) of Mitsubishi UFJ Financial Group (MUFG), the world\'s fifth largest financial institution by assets. Launched in 2020, our operations has expanded to a team of over 400 employees across three offices in Bengaluru and Mumbai. We are a global integrated centre of excellence for strategic cross-functional business solutions by offering and creating value, including: IT performance: Development for applications and middleware, support for infrastructure, cyber security and network monitoring, architecture support for supply chain finance and payments products Risk Advisory: KYC Quality Assurance and Control, AML & KYC Advisory, Governance , Issue Management, Conformance Global Business Services: Business Administration and Credit Analysis support.



The IRMD Cyber Security Vulnerability Management Analyst is part of the Cyber Security Team for MUFG Bank across Asia Pacific region.

This position is accountable for key activities as Vulnerability Management, Technical Security Standards and Cyber Awareness; and will implement Cyber Security initiatives across the APAC region to provide management with assurance on the security posture of IT infrastructure.

In addition, the role is responsible but not limited to the following:

• Execute cyber security Vulnerability Management program to assess the security posture and compliance of IT services and assets in the APAC region. Be part of the team to implement the vulnerability management activities, which may include vulnerability scanning, security patch management, security testing and compliance checks.
• Work in collaboration with Infrastructure and Application teams to assess security patches in response to security advisories. Monitor the patch level of Infrastructure and Applications, assess the risks and report overdue patches for management attention.
• Carry out vulnerability assessment, penetration tests, and other types of security assessments of Infrastructure and Applications to proactively identify risks for mitigation.
• Perform security baseline compliance scanning on existing IT infrastructure assets using automated tools to validate security configurations settings.
• Research and develop security baselines for IT software and technology platforms.
• Coordinate and perform regular review of Firewall Rules and ACLs to remove obsolete, redundant and risky rules.
• Provide trend analysis and reporting of security metrics and KRI related to security posture and vulnerability management to management.
• Perform security risk assessment of new technology initiatives from ASO
• Develop and maintain strong stakeholder management with key stakeholders within MUFG.
• Work in partnership with colleagues in the global Cyber Security teams in the regional offices of Japan, Europe, America and other offices to share knowledge, support regional/global initiatives and best practices on cyber security.
• Work in partnership with colleagues in the Asia Pacific region to play a regional role to support regional cyber security improvement plans to ensure a consistent level of maturity in technology and processes across the region.
• Work in partnership with various departments within ASO and regional branches to implement cyber security projects to uplift the current cyber security capability against the various cyber threats and to meet regulatory expectations.
• Draft responses to questions or reporting requirements as required from the local authorities, second or third line of defenses.

MUFG Global Service (MGS)