MUFG Union Bank VP of Cybersecurity Vulnerability Management in Singapore
Do you want your voice heard and your actions to count?
Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), the 5th largest financial group in the world. Across the globe, we’re 180,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.
With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.
Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.
Oversees and manages the Cyber Security Vulnerability Management process for MUFG Bank across Asia Pacific region.
This position is accountable for key activities as Vulnerability Management, Security Review, Security Testing and Cyber Awareness; and will implement the initiatives across the APAC region to provide management with assurance on the security posture of IT infrastructure.
Cyber Security Functions
Drive cyber security Vulnerability Management program to assess the security posture and compliance of IT services and assets in the APAC region, covering network infrastructure, application systems, servers, endpoints and public cloud.
Work in collaboration with Infrastructure and Application teams to assess security patches in response to security advisories. Monitor the patch level of Infrastructure and Applications, assess the risks and report overdue patches for management attention.
Carry out vulnerability assessment, penetration tests, and other types of security assessments of Infrastructure and Applications to proactively identify risks for mitigation.
Provide security advisory services to review security design of new technology initiatives and projects / systems.
Perform security baseline compliance scanning on existing IT infrastructure assets using automated tools to validate security configurations settings.
Review proposed changes to Firewall Rules and coordinate the regular review of firewall rules to remove obsolete, redundant and risky rules.
Collaborate with Application teams to embed security practices into DevOps CI/CD processes; and review the security risks and controls of CI/CD implementations.
Work with global team to perform periodic email phishing simulation exercise for the AsiaPac region and promote awareness on cyber security.
Provide accurate reporting of security metrics and KRI to management on the state of security posture and vulnerability management.
Develop and maintain strong stakeholder management with key stakeholders within MUFG.
Work in partnership with colleagues in the global Cyber Security teams in the regional offices of Japan, Europe, America and other offices to share knowledge, support regional/global initiatives and best practices on cyber security.
Work in partnership with colleagues in the Asia Pacific region to play a regional role and support regional cyber security improvement plans to ensure a consistent level of maturity in technology and processes across the region.
Work in partnership with various departments within ASO and regional branches to uplift the current cyber security capability against the various cyber threats and to meet regulatory expectations.
Draft responses to questions or reporting requirements as required from the local authorities, second or third line of defences.
Responsible for managing (e.g. objective setting & performance management) and developing (e.g. coaching, career progression & training) cyber security assurance professionals in the region
Ensure team adherence to all company policies / guidelines.
Support, coach, guide and motivate the team on complex security matters.
Strong knowledge of cyber security controls, processes and standards, such as NIST cybersecurity framework, and IT controls framework.
Minimum 8 years of cyber security experience, out of which a minimum of 5 years of experience in cyber security Vulnerability Management.
Minimum 2 years of team leadership experience.
Prior experience or exposure to the banking or finance industry, with good understanding of corporate banking products and services.
Strong written and verbal communication skills with ability to influence senior management, heads of department, technical managers and other key stakeholders.
Strong stakeholder management skills to collaborate with Head Office, regional and branch offices.
Strong working knowledge of industry trends, products and technology in the Cyber Security domains (e.g., data, network, system, virtualization, IoT and cloud).
Self-driven and independent, with good attention to detail and quality.
Willing to take on new tasks and initiatives to contribute towards continuous improvement.
We regret to inform that only shortlisted applicants will be notified.
MUFG Bank Ltd & MUFG Securities Asia Limited (collectively referred to as “MUFG”) is an equal opportunity employer. We view our employees as our key assets as they are fundamental to our long-term growth and success. MUFG is committed to hiring based on merit and organsational fit, regardless of race, religion or gender.