MUFG Union Bank Data Protection/Insider Threat Associate in Charlotte, North Carolina
Data Protection/Insider Threat Associate - 10043232-WD
Do you want your voice heard and your actions to count?
Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), the 5th largest financial group in the world (as ranked by S&P Global, April 2018). In the Americas, we’re 14,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, developing positive relationships built on integrity and respect. It’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. We’re a team that accepts responsibility for the future by asking the tough questions and owning the solutions. Join MUFG and be empowered to make your voice heard and your actions count.
MUFG is seeking an experienced insider threat analyst to contribute to our Insider Threat Program. This person will help support day to day operational needs of the Insider Threat Program including event detection, response, incident triage, escalation, building metrics and reporting around trends and recommendations that need to be shared with senior leadership. This position is located in the Operational Monitoring area of Enterprise Information Security and will report directly to the Insider Threat Program Manager. This position will require someone with an analytics mind, a quick learner and the ability to create key indicators, deliver briefings, propose and execute program initiatives, and collaborate with a wide range of key stakeholders.
Exhibit analytical capabilities in security operational monitoring
Provide day to day analysis and oversight of insider threat events
Evaluate data sources and use cases for consideration in the improvement and expansion of the insider threat program
Act as a UEBA and DLP analyst for intelligence lead detection
Support the continued development of an insider threat framework
Responsible for day to day operational support and escalation of DLP events
Evaluate existing SIEM queries, reports and dashboards to make recommendations on changes of events being monitored
Support the Insider Threat Program Manager with the development and expansion of the insider threat roadmap
Produce key metrics and reports that help to analyze trends of different insider threat scenarios
Support the Insider Threat Program Manager in regulatory and audit requirements given relating to DLP and Insider Threat
Produce documentation that will help to educate and socialize program updates to our key stakeholders
Exceptional time management is required to balance strategic and operational support needs in your day to day activities
2 years’ experience with a combination of technical, investigations, network and system responsibilities
2 years’ experience in Data Loss Prevention (DLP) and Insider Threat Program responsibilities is REQUIRED
2 years’ working in big data solutions such as Hadoop and Splunk
Experience in the financial sector a plus
An ability to act independently, prioritizing and organizing day to day tasks and needs as appropriate
Possess excellent communication and presentation skills
Demonstrated capabilities to do data analytics and draw risk conclusions based on activities seen
Experience with UEBA technology and solutions
Experience with DLP and big data technology
Experience with O365 and other cloud technology solutions
Documentation writing skills that present both a business and technical viewpoint
CISSP highly desired
The above statements are intended to describe the general nature and level of the work being performed. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified.
We are proud to be an Equal Opportunity / Affirmative Action Employer and committed to leveraging the diverse backgrounds, perspectives, and experience of our workforce to create opportunities for our colleagues and our business. We do not discriminate in employment decisions on the basis of any protected category.
A conviction is not an absolute bar to employment. Factors such as the age of the offense, evidence of rehabilitation, seriousness of violation, and job relatedness are considered in all employment decisions. Additionally, it’s the bank’s policy to only inquire into a candidate’s criminal history after an offer has been made. Federal law prohibits banks from employing individuals who have been convicted of, or received a pretrial diversion for, certain offenses.
Job : Technology
Primary Location : NORTH CAROLINA-Charlotte
Job Posting : Apr 22, 2021, 1:18:40 PM
Shift: : Day
Schedule: : Full Time
Req ID: 10043232-WD