Head of Security Architecture and Engineering

Company Description

MUFG Investor Services is a leading asset servicing provider for the global investment management industry. From 16 locations around the world, MUFG Investor Services, through its suite of solutions, helps clients mitigate risk, execute seamlessly, and increase efficiencies in their pre and post-trade operations. With over $770 billion in assets under administration, MUFG Investor Services is one of the top fund administrators globally. Its nearly 500 clients represent hedge funds, asset managers, private equity, real assets, fund of funds, and more, and benefit from a broad range of additional solutions including fund financing, foreign exchange, custody, trustee services, depository, middle-office outsourcing, securities lending, and other banking services.

MUFG Investor Services is a division of Mitsubishi UFJ Financial Group, Inc (MUFG) one of the largest banks in the world with $3.3 trillion in assets. To learn more, please visit us at www.mufginvestorservices.com

Job Description

At MUFG Investor Services, technology and data are at the heart of our service proposition to our clients and their investors.  Our business is entrusted with their information every day and we take their security seriously.

We are looking for an experienced Head of Security Architecture and Engineering to be an integral part of our information security organisation, with overall responsibility for the security architectural and engineering vision, roadmap and standards, and ensuring that these meet the needs of our business through alignment with industry good practice and complying with all relevant laws, regulatory obligations and client requirements.

Reporting to the Chief Information Security Officer, You Will

• Lead the review and refresh of our security architectural and engineering strategies, developing a vision for these critical areas that is aligned with our broader business strategy
• Establish processes to ensure our security architecture remains current and aligns with industry good practice
• Foster collaborative working relationships with the wider Technology Architecture, Product and Development teams, all whom are critical partners and key to ensuring an effective Security by Design approach is adopted – embedding security in all change initiatives at an appropriate time and level
• Embed security architecture requirements in governance processes such as the Architectural Review Forum and the Information Security, Privacy and Data Governance Forum
• Oversee the production and publication of security coding standards, as part of wider non-functional requirements definition
• Lead the introduction and on-going management of a single developer security platform, consolidating and learning from existing MUFG Investor Services activity and experience to date
• Review and refresh our application security assessment activities, ensuring consistent application security involvement across all operational platforms, development and change initiatives
• Support internal policy and procedure development, ensuring security architecture and application security engineering requirements are appropriately captured
• Participate in operational and incident escalations and investigations, as required
• Contribute to risk management initiatives by identifying and overseeing risks across security architecture and application security engineering areas

Qualifications

Essential: 

• Extensive architectural / security architectural experience, with a focus on Cloud strategy development and application of either the SABSA or TOGAF frameworks
• Strong focus on architectural and application security governance and its implementation
• Technical knowledge of security, with the ability to demonstrate practical application of controls
• Experience of designing and implementing security within an Agile driven environment
• Strong attention to detail, with excellent analytical skills
• Ability to communicate constructively and confidently and work well with others
• Ability to communicate clearly and effectively with senior stakeholders, including executive committee members, with strong skills in influencing outcomes and influencing long-term change
• Strong people management skills, with good emotional intelligence skills
• A firm grasp of the potential threats that a global investor services business faces and the potential compensating measures to implement in response

Preferred: 

• Familiarity with governance, compliance and assurance standards such as the ISO 27000 series and, SOC1 and SOC2 attestations
• Understanding of information security risk with the ability to make pragmatic business-focussed decisions
• Strong project management skills

Additional Information

At MUFG Investor Services, we are exceptionally proud of our approach to Hybrid Working. It enables the flexibility to thrive from wherever our employees work and, stay connected to their team and our culture. When we make Hybrid Working plans, we get to know the individual and pride ourselves in underpinning all our decisions with fairness and consistency.

MUFG Investor Services provides all of its employees with an extremely attractive compensation package. In addition to base salary, there is a group medical insurance scheme, group pension scheme, reimbursement of professional subscriptions, paid holidays and assistance towards gym memberships.

We thank all candidates for applying; however, only those proceeding to the interview stage will be contacted. If you are contacted for a job opportunity, please advise us of any accommodations needed to ensure fair and equitable access throughout the recruitment and selection process. All accommodation information provided will be treated as confidential and used only to provide an accessible candidate experience.

MUFG is an equal opportunity employer.