MUFG Union Bank Jobs

Mobile mufg Logo

Job Information

MUFG Union Bank Sr. Cloud Security Engineer in Tempe, Arizona


Do you want your voice heard and your actions to count?

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), the 5th largest financial group in the world (as ranked by S&P Global, April 2020).In the Americas, we’re 13,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, developing positive relationships built on integrity and respect. It’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. We’re a team that accepts responsibility for the future by asking the tough questions and owning the solutions. Join MUFG and be empowered to make your voice heard and your actions count.

Job Summary:

As a Senior Security Engineer at MUFG, you will be responsible for providing in depth subject matter expertise in securing Microsoft Office 365, Azure, Intune and directory/messaging services like Active Directory, LDAP, SharePoint etc.

Through your role and a variety of other experiences at MUFG, you will have the opportunity to develop technical, analytical, communication, and leadership skills that can help you to achieve your full potential. No matter what career path you eventually choose, you will be continually learning through daily responsibilities, new challenges, and colleagues. Along the way, you will have access to mentoring and training opportunities to foster and accelerate your building of new skills and abilities.

Major Responsibilities:

  • Design, implement and assess security controls to secure Microsoft Office365, Azure Active Directory and Microsoft Intune.

  • Work closely with Information Security teams for developing service and technology specific cloud security standard covering resources in Microsoft Azure, Microsoft office365 etc.

  • Provide technical experience in enterprise-level security of directory/messaging services (Active Directory, LDAP, Exchange, SharePoint).

  • Provide Subject Matter Expertise in securing Microsoft Active Directory environment, group policies, security controls and building protection profile against advanced level attacks like kerberoast, golden ticket compromise, pass the hash/ticket etc.

  • Contribute as Subject Matter Expert in securing and assessing cloud based solutions including IAAS, PAAS, SAAS and secure integration of on-premises systems with cloud services.

  • Build security threat detections and response procedures in close coordination with Security Operations Center utilizing logs from Microsoft systems and cloud services.

  • Closely work with Security Operations Center and other support groups during investigation of any security breach.

  • Triage security logs and recommend containment controls and lead remediation steps.

  • Drive continuous innovation with new ideas on improving and maturing enterprise cloud security posture.

  • Maintain metrics and supporting analytics on cloud security and directory/messaging services.



  • Undergraduate Degree in Computer Science Preferred.

  • 4 years of hands-on experience with securing Microsoft Office 365, Azure Active Directory and Microsoft Intune.

  • 4 years of hands-on experience with securing Microsoft Windows 10 and Windows servers.

  • Experience in the Banking or Finance industries preferred.

  • Proven expertise in security design and assessment of cloud solutions for new services or migration of existing once to cloud.

  • Proven expertise in securing Microsoft Azure, O365 and Active Directory.

  • Exceptional experience in securing directory/messaging services (Most importantly Microsoft Active Directory).

  • Exceptional understanding of advanced attacks against Microsoft Active Directory environment. Well versed with detective and preventive controls.

  • Hands-on experience with scripting language like PowerShell or Python is highly preferred.

  • Knowledge of AWS services and/or Splunk search language is a major plus.

  • Experience in creating trending, metrics, and management reports.

  • CISSP, GIAC(s), MS-500, AWS Security Specialty is desired, but not required.

  • Able to work independently on tasks, but also work well within a team environment.

  • Excellent communication skills and able to adapt to the audience.

The above statements are intended to describe the general nature and level of the work being performed. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified .

We are proud to be an Equal Opportunity / Affirmative Action Employer and committed to leveraging the diverse backgrounds, perspectives, and experience of our workforce to create opportunities for our colleagues and our business. We do not discriminate in employment decisions on the basis of any protected category.

A conviction is not an absolute bar to employment. Factors such as the age of the offense, evidence of rehabilitation, seriousness of violation, and job relatedness are considered in all employment decisions. Additionally, it’s the bank’s policy to only inquire into a candidate’s criminal history after an offer has been made. Federal law prohibits banks from employing individuals who have been convicted of, or received a pretrial diversion for, certain offenses.

Job: Technology

Primary Location: ARIZONA-Tempe

Other Locations: TEXAS-Arlington

Schedule Full Time

Shift Day

Req ID: 10041471-WD