Cyber Security Threat Modeling, Vice President

1 day ago


Greendale WI United States MUFG Full time
Cyber Security Threat Modeling, Vice President

Do you want your voice heard and your actions to count?

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.

With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.

Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.

The selected colleague will work at an MUFG office or client sites four days per week and work remotely one day. A member of our recruitment team will provide more details.

Job Summary

This role will focus on integration and execution of an effective Threat Modeling program into MUFG's SDLC process and overall Application Security model. Responsibilities include performing threat modeling and providing security consulting to business developers, system designs, and engineers; developing and implementing security threat modeling plans; and supporting threat modeling tools. This role will also be responsible for development and generation of associated metrics and reporting.

Major Responsibilities

  • Monitor information security issues related to MUFG systems and workflows to ensure internal security controls are appropriate and operating as intended
  • Manage threat modeling process to help our technology teams, control partners, and business stakeholders understand the state of our technology and data control suite, while working together to prioritize and remediate identified gaps
  • Generate security trend analyses and vulnerability reports

Qualifications

  • Bachelor's Degree in Computer Science or related fields; applicable specialized training; or equivalent experience
  • 6+ years of experience in secure coding, application security, or similar disciplines
  • Knowledge of information security standards, rules and regulations related to information security and data confidentiality, and desktop, server, application, database, network security principles for risk identification and analysis
  • Experience with performing Threat Modeling on web applications
  • Conducting research into real-world threat actor tactics, techniques, and procedures.
  • Development experience using Python, PowerShell, C, or C++ preferred
  • Solid knowledge and understanding of development life cycle (SSDLC), CI/CD pipelines and Agile methodologies
  • Understanding of common software security issues and remediation techniques (OWASP Top 10, SANS 25, Mitre ATT&CK, etc.)
  • Experience with analyzing vulnerabilities and delivering clear and coherent written reporting, identifying network risks and providing mitigation recommendations
  • Excellent knowledge of Windows/AD/Linux systems administration and vulnerabilities
  • An organized and detail-oriented cyber security professional able to perform independently as well as part of a team
  • Ability to craft/deliver communication of technical information from highly-technical reports to C-suite briefs and everything in between
  • Experience in the banking or finance industries preferred
  • Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC), or other security certifications desired
  • Knowledge of information security standards, rules and regulations related to information security and data confidentiality, and desktop, server, application, database, network security principles for risk identification and analysis
  • Experience in security policy development, security education, network testing, application vulnerability assessments, risk analysis, and compliance testing required
  • Experience working in a highly-regulated environment desired

The typical base pay range for this role is between $124K - $171K depending on job-related knowledge, skills, experience and location. This role may also be eligible for certain discretionary performance-based bonus and/or incentive compensation. Additionally, our Total Rewards program provides colleagues with a competitive benefits package (in accordance with the eligibility requirements and respective terms of each) that includes comprehensive health and wellness benefits, retirement plans, educational assistance and training programs, income replacement for qualified employees with disabilities, paid maternity and parental bonding leave, and paid vacation, sick days, and holidays.

MUFG Benefits Summary

We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws. The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required of personnel so classified.

We are proud to be an Equal Opportunity Employer and committed to leveraging the diverse backgrounds, perspectives and experience of our workforce to create opportunities for our colleagues and our business.

#J-18808-Ljbffr

  • Tempe, AZ, United States Mufgamericas Full time

    Cyber Security Threat Modeling, Vice President Apply Locations: Tampa, FL; Tempe, AZ Time Type: Full time Posted on: Posted 2 Days Ago Job Requisition ID: 10067577-WD Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the...


  • Tampa, FL, United States MUFG Bank, Ltd. Full time

    Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term...


  • Tempe, AZ, United States MUFG Bank, Ltd. Full time

    Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term...


  • Whippany, NJ, United States Barclays Full time

    This exciting opportunity within the Chief Security Office focuses on the understanding, preparedness, detection and response to cyber threats and incidents to keep the bank, customers, clients and colleagues safe, secure and always on. Cyber Operations provides a global toolset to ensure confidentiality, integrity and availability of our information assets,...


  • , SC, United States Cyber Security Specialists Limited Full time

    We are growing and looking to recruit a Cyber Security Consultant with experience of supporting clients in the Public sector. We’re looking for an enthusiastic and driven individual to join our team. Client satisfaction is paramount to us and therefore strong customer facing skills are a must. We are a small Consultancy with big plans for growth, offering...


  • Washington, DC, United States Intelligence and National Security Alliance Full time

    Job Summary Cyber Threat Analysts conduct analysis, digital forensics, and targeting to identify and counter foreign cyber threats against U.S. information systems, infrastructure, and cyber-related interests. Major Duties As a Cyber Threat Analyst at CIA, you will conduct all-source analysis, digital forensics, and targeting to identify, monitor, and...


  • Greendale, WI, United States Sygnia Full time

    Sygnia is the foremost global cyber readiness and response team, applying creative approaches and battle-tested solutions to help organizations beat attackers and stay secure. With a team of deep digital combat, leading-edge, purpose-built technology, and enterprise security specialists, it enables companies to proactively build cyber resilience and defeat...


  • Washington, DC, United States Avature Full time

    The Vice President, Product Security is a “hands on” leader within Carlyle’s Global Technology & Solutions (GTS) Department responsible for maturing our product security capability and engaging with cross-functional stakeholders to ensure the safe operation of business systems. This leader will develop and implement a comprehensive product security...


  • Washington, DC, United States Central Intelligence Agency Full time

    Cyber Threat Analysts conduct all-source analysis of foreign cyber intentions and capabilities in support of U.S. Government efforts to counter threats to U.S. national security interests. Full time Bachelor’s or master’s degree Opportunities for foreign travel are possible U.S. citizens (dual U.S. citizens also eligible) At least 18 years of age Willing...

  • Threat Modeler

    4 weeks ago


    Mc Lean, VA, United States Hexaware Technologies Full time

    What Working at Hexaware offers:Hexaware is a dynamic and innovative IT organization committed to delivering cutting-edge solutions to our clients worldwide. We pride ourselves on fostering a collaborative and inclusive work environment where every team member is valued and empowered to succeed.Hexaware provides access to a vast array of tools that enhance,...


  • Wadsworth, OH, United States FirstEnergy Corp Full time

    We are a forward-thinking electric utility powered by a diverse team of employees committed to making customers' lives brighter, the environment better and our communities stronger.FirstEnergy (NYSE: FE) is dedicated to integrity, safety, reliability and operational excellence. Headquartered in Akron, Ohio, FirstEnergy includes one of the nation's largest...


  • Chicago, IL, United States Bank of America Full time

    Cyber Crime Threat Evaluation Manager Denver, Colorado; Washington, District of Columbia; Chicago, Illinois Job Description: The Cyber Crime Threat Evaluation Manager is responsible for identifying and assessing cyber threats across the cyber crime threat landscape, specifically evaluating emerging cyber crime trends and AI threats. The role involves...


  • Washington, DC, United States Central Intelligence Agency Full time

    Cyber Threat Analysts conduct analysis, digital forensics, and targeting to identify and counter foreign cyber threats against U.S. information systems, infrastructure, and cyber-related interests. Minimum Qualifications Ability to work under tight deadlines Excellent analytic abilities and relevant experience Strong critical thinking, problem solving...


  • Greendale, WI, United States RTX Full time

    CO220: 411 Galileo Ave, Schriever AFB, Colorado Springs, CO, 80912 USA RTX At RTX, we're accelerating ideas to solve some of the world's biggest challenges by bringing together the brightest, most innovative minds across aviation, space, and defense. Date Posted: 2024-10-21 Country: United States of America Location: CO220: 411 Galileo Ave, Schriever AFB,...


  • Chicago, IL, United States Digital Factory, Inc. Full time

    Vice President of Network and Security The Vice President of Network and Security will lead the strategic and operational management of the company's network infrastructure and security framework. This executive role is critical in ensuring the integrity, resilience, and efficiency of IT services and systems. The VP will oversee the development,...


  • Herndon, VA, United States ManTech Full time

    ManTech is seeking a motivated, mission-oriented Vice President / Division Manager to support our Advanced Cyber Solutions (ACS) Division based in Herndon, VA. This Vice President / Division Manager will be a key member of the Intelligence Sector Leadership Team, ensuring the effective allocation of resources to accommodate continued growth and geographic...


  • Washington, DC, United States Trustwave Full time

    Cyber Threat Intelligence Analyst (All Source) Washington, USA Job Description Posted Tuesday, November 12, 2024 at 7:00 AM About Trustwave Trustwave is a leading cybersecurity and managed security services provider focused on threat detection and response. We uncover threats that others can’t and respond quicker than others can to protect against the...


  • MA, United States State Street Corporation Full time

    About the RoleWe are seeking an experienced Vice President to lead our Controls Design and Development team within Technology Risk and Controls. The successful candidate will have a proven track record of designing and implementing effective controls to mitigate risk and ensure compliance. The role will involve collaborating with various stakeholders to...


  • Pasadena, CA, United States Inter-Con Security Full time

    Founded in 1973, Inter-Con Security Systems, Inc. is a leading global security company, providing a full range of physical security services to government and commercial customers on four continents. Inter-Con specializes in providing customized security services to clients whose needs exceed the capabilities of traditional guard firms. Clients include the...


  • Washington, DC, United States Central Intelligence Agency Full time

    Cyber Security Officers protect the integrity and availability of CIA’s data and information systems. They mitigate current threats and create innovative solutions in order to safeguard the nation. Full time Opportunities for domestic travel are possible U.S. citizens (dual U.S. citizens also eligible) At least 18 years of age Willing to move to the...