Cybersecurity Risk Assessment Lead, Vice President
Location: Jersey City
Posted on: October 12, 2018
Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), the 5th largest financial group in the world (as ranked by S&P Global, April 2018) with total assets of over $2.9 trillion (106.2 (JPY) as of March 30, 2018) and 150,000 colleagues in more than 50 countries. In the U.S., we're 13,000 strong, working together to positively impact every customer, organization, and community we serve. We achieve this by delivering on our values, putting people first, fostering long-term relationships built on honesty and mutual understanding, and inspiring the best in each other. This is all part of our inclusive, high-performing culture supported by Total Rewards that include our cash balance pension plan. Join a team that's working to fulfill its vision to be the world's most trusted financial group.
The Cybersecurity Risk Assessment Lead will support the Enterprise Information Security Risk Management process within the bank. The primary responsibilities of this position are to assess security related controls supporting IT and business processes in order to ensure operational effectiveness. Calculate the level of current and residual risks and communicate these risks to business units and management.
- The Cybersecurity Risk Assessment Lead is a key position providing assurance on key controls supporting the bank's processes. Responsibilities will include:
- Assessments against corporate technology and security standards
- Identifying and communicating key control deficiencies to business units
- Assisting stakeholders with recommendations to address key control deficiencies
- Maintaining familiarity with industry trends and security best practices
- Contributing to the teams' continuous improvement efforts; perform control framework analysis, drive improvements across testing methodology
- SWIFT Annual Assessment
- Performing duties and responsibilities specific to department functions and activities
- Execution of Quality Assurance testing for assessment functions
Most Difficult and Complex Problems
- To effectively apply information security theories and concepts to specific circumstances
- To analyze test results in an objective and quantifiable manner
- To identify gaps in information security controls and determine how to mitigate the control deficiencies
- Minimum of 8-10 years' experience in a combination of risk management, information security and IT jobs.
- Bachelor's in business or related technology field.
- Proven track record of project/program management
- Understanding of FFIEC, PCI, SOX, HIPPA, GLBA regulatory and compliance requirements
- Professional certification such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or other industry recognized information security credential preferred.
- Knowledge of security policies, standards, risk assessments, training, and 3rd-party reviews.
- Excellent time management, organization and attention to detail
- Experience in creating program level presentations
- Knowledge of Software Development Life Cycle (SDLC) and Project Management (PM) processes.
- Effective oral and written communication skills.
To learn more about MUFG, review all current career opportunities, and apply please visit us online: www.mufg-americas.com/careers
The above statements are intended to describe the general nature and level of the work being performed. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified.
We are proud to be an Equal Opportunity / Affirmative Action Employer and committed to leveraging the diverse backgrounds, perspectives, and experience of our workforce to create opportunities for our colleagues and our business. We do not discriminate in employment decisions on the basis of any protected category.
A conviction is not an absolute bar to employment. Factors such as the age of the offense, evidence of rehabilitation, seriousness of violation, and job relatedness are considered in all employment decisions. Additionally, it's the bank's policy to only inquire into a candidate's criminal history after an offer has been made. Federal law prohibits banks from employing individuals who have been convicted of, or received a pretrial diversion for, certain offenses.
Keywords: MUFG, Jersey City , Cybersecurity Risk Assessment Lead, Vice President, Executive , Jersey City, New Jersey
Didn't find what you're looking for? Search again!