Work in Arizona Jobs

Job Information

MUFG Union Bank Security Assessment and Remediation Associate (Attack Surface Reduction) in Tempe, Arizona

Security Assessment and Remediation Associate (Attack Surface Reduction) - 10045039-WD


Do you want your voice heard and your actions to count?

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), the 5th largest financial group in the world (as ranked by S&P Global, April 2020). In the Americas, we’re 13,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, developing positive relationships built on integrity and respect. It’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. We’re a team that accepts responsibility for the future by asking the tough questions and owning the solutions. Join MUFG and be empowered to make your voice heard and your actions count.


The Associate Vice President Security Assessment and Remediation will be responsible for attack surface and asset inventory discovery. Responsibilities include reviewing attack surface, automation of asset inventory, assisting with Vulnerability Management processes, providing security consulting to business developers, system designs, and engineers; developing and implementing security assessment plans; and supporting monitoring and response tools.

Job Summary


  • Implement, configure, run, and monitor attack surface and asset inventory processes.

  • Provide robust analysis, reporting, and exposure assessments on inventory and attack surface.

  • Coordinate with threat intel and vulnerability management team to provide rich information on attack surface.

  • Investigate and review new systems and networks.

  • Perform security event and incident correlation using information gathered from a variety of sources within the enterprise

  • Ensure compliance with regulatory and enterprise risk and control requirements.

  • Perform cyber incident triage to include determining scope, urgency, and potential impact; identify the specific vulnerability and make recommendations which enable expeditious remediation

  • Understand the risk appetite of the firm and appropriately manage security within these parameters.

  • Provide continuous process improvement and coordinate across business units to automate and improve efficiency.



Minimum Qualifications

  • Knowledge of inventory systems, vulnerability management processes, and asset discover methods.

  • Understanding of common protocols (SSH, RDP, HTTPS, TCP, DNS, etc.) and common vulnerability knowledge.

  • Understanding of Unix, Windows and network security concepts.

  • Must have a passion and relentless drive for continuous improvement of people, process, and technology.

  • Must be a team player that thrives on collective wins.

Beneficial Qualifications

  • Financial industry experience or practical knowledge of financial and industry regulations and frameworks

  • CISSP, GSEC, GCIH, GPEN, GEVA, CCNA, AWS certifications are helpful, but not required

  • Practical knowledge of financial and industry regulations and frameworks (PCI, SOX, GLBA, FFIEC, NIST)

  • Scripting or programming skills

  • Experience with CMDB, VM, and SEM tools such as, Service Now, Qualys, Splunk, Rapid7, Nessus, SolarWinds, QRadar, ELK

  • University undergraduate degree

The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required of personnel so classified.

We are proud to be an Equal Opportunity / Affirmative Action Employer and committed to leveraging the diverse backgrounds, perspectives, and experience of our workforce to create opportunities for our colleagues and our business. We do not discriminate in employment decisions on the basis of any protected category.

A conviction is not an absolute bar to employment. Factors such as the age of the offense, evidence of rehabilitation, seriousness of violation, and job relatedness are considered in all employment decisions. Additionally, it's the bank's policy to only inquire into a candidate's criminal history after an offer has been made. Federal law prohibits banks from employing individuals who have been convicted of, or received a pretrial diversion for, certain offenses.

Job : Technology

Primary Location : ARIZONA-Tempe

Job Posting : Jul 9, 2021, 7:54:36 AM

Shift: : Day

Schedule: : Full Time

Req ID: 10045039-WD