This job has expired, please see additional jobs below
Control Testing Specialist, Assistant Vice President
Mitsubishi UFJ Financial Group
Tempe, AZ, United States
Job Details - this job has expired, please see similar jobs below
Description
Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), the 5th largest financial group in the world with total assets of over $2.4 trillion (as ranked by SNL Financial, April 2016) and 140,000 colleagues in nearly 50 countries. In the U.S., we’re 13,000 strong, working together to positively impact every customer, organization, and community we serve. We achieve this by delivering on our values, putting people first, fostering long-term relationships built on honesty and mutual understanding, and inspiring the best in each other. This is all part of our inclusive, high-performing culture supported by Total Rewards that include our cash balance pension plan. Join a team that’s working to fulfill its vision to be the world’s most trusted financial group.
Summary:
The Controls Testing Analyst will support the implementation of the Security Risk Assessments control testing plan and initiatives for Enterprise Information Security (EIS) per MUFG’s processes and procedures. As a part of this role, the Control Testing Analyst will support the identification of controls that need to mitigate to an acceptable level. They will develop and maintain the control guidance, processes, and procedures. In addition, they will support the development of materials to provide continuous updates to EIS senior management on the progress of the control initiatives.
Major Responsibilities:
• Supports the identification of required preventative and detective controls to mitigate risk to an acceptable level
• Analyses and determines the effectiveness of the controls as it relates to mitigating the impact or likelihood of each identified threat exploiting a vulnerability within the critical assets
• Conducts benchmarking of the control environment against industry and regulatory frameworks such as the FFIEC Cybersecurity Assessment, NIST Cybersecurity Framework, PCI, and GLBA
• Coordinates with stakeholders to initiate, scope and plan controls assessments of new and existing information systems
• Assists stakeholders with recommendations to address key control deficiencies
• Supports the evaluation of Management’s responses to ensure remediation tasks adequately address identified gaps
• Maintains familiarity with industry trends and security best practices
• Contributes to the teams’ continuous improvement efforts
• Conducts information security assessment of information systems as per MUFG processes and procedures
• Supports the interpretations and applications of IT controls in an enterprise environment
• Identifies, documents, and communicates key control deficiencies to stakeholders
• Provides support in assisting stakeholders with recommendations to address key control deficiencies
• Evaluates management responses to ensure remediation tasks adequately address identified gaps
• Maintains familiarity with industry trends and security best practices
• Contributing to the teams’ continuous improvement efforts
• Performs risk assessments and analyzes risk trends at a macro level, identifying signs of changing risk levels and/or symptoms of process control breakdowns
• Identifies and understands controls within a changing environment
• Validates evidence before identified risks are closed
Qualifications
• Minimum of 3+ years of experience in risk assessment and information security practices
• Minimum of a BA/BS degree, preferable business, computer science or equivalent
• Experience working within the Financial Services Industry preferred with large, complex entity or another highly- regulated industry
• Familiarity with one or more of the following areas is highly desirable:
◦ IP networks infrastructure (network topology, switches, routers, firewalls, intrusion detection / prevention)
◦ Windows Active Directory (policies, structure, elements)
◦ Databases (SQL, Oracle, DB2, monitoring tools)
◦ Standards / Frameworks (CoBIT 5, ITIL, ISO 15504, ISO 20000, ISO 27000, ISO 31000, ISO 38500, NIST series 800 guidance)
• Demonstrates outstanding oral and written communications skills
• Demonstrates critical thinking, analytical, and project management skills
Why Work for MUFG?
We are a financially strong and stable bank.
We value workplace diversity.
We are committed to the training and development of our employees.
Innovative vacation benefits.
We offer a matching 401K, a Retirement Plan, and a variety of Flexible Health Benefits.
The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified.
To learn more about MUFG, review all current career opportunities, and apply please visit us online: www.mufg-americas.com/careers
We are proud to be an Equal Opportunity/Affirmative Action Employer and committed to leveraging the diverse backgrounds, perspectives and experience of our workforce to create opportunities for our colleagues and our business. We do not discriminate in employment decisions on the basis of any protected category.