Senior Associate, Security Operations
Limassol, Cyprus
MUFG Investor Services
MUFG Investor Services is an industry leader in fund administration, asset servicing, banking and fund financing.Company Description
MUFG Investor Services is a leading asset servicing provider for the global investment management industry. From 16 locations around the world, MUFG Investor Services, through its suite of solutions, helps clients mitigate risk, execute seamlessly, and increase efficiencies in their pre and post-trade operations. With over $770 billion in assets under administration, MUFG Investor Services is one of the top fund administrators globally. Its nearly 500 clients represent hedge funds, asset managers, private equity, real assets, fund of funds, and more, and benefit from a broad range of additional solutions including fund financing, foreign exchange, custody, trustee services, depository, middle-office outsourcing, securities lending, and other banking services.
MUFG Investor Services is a division of Mitsubishi UFJ Financial Group, Inc (MUFG) one of the largest banks in the world with $3.3 trillion in assets. To learn more, please visit us at www.mufginvestorservices.com
Job Description
Security Operations is responsible for securing an environment that is dynamic, always growing and evolving – a global network that provides reliable and secure applications 24x7. You will bring a unique perspective to a team that maintains a secure and reliable environment hosted across both cloud and on-premise infrastructure.
We are looking for a Senior Associate, Security Operations, who will work with technical leadership to determine overall security technology, standards and strategy across on-premise, AWS and MS Azure cloud environments.
Reporting to the Director, Head of Security Operations, You Will
- Design, develop, implement and administrate cloud security technologies to support MUFG applications and technology solutions
- Implement and administrate AWS Core Security which includes, but is not limited to, Security Groups, Guard Duty, Cloud Trail and WAF
- Perform Security Monitoring from multiple monitoring sources including firewalls, SIEM and other supporting security tools, identifying events that meet certain criteria, performing incident response activities or escalating them to, and working with, other support teams
- Drive Threat Modelling activities across our business, through identifying, understanding threats & mitigations and communicating these to relevant stakeholders and, establishing this as a Business as Usual activity
- Participate in Security Incident Response to information security related incidents - and working with the relevant parties to resolve them
- Take part in Vulnerability Assessments which involve identifying security weaknesses in infrastructure and systems, assessing the weaknesses and communicating them to the relevant teams for resolution
- Contribute to Risk Management by identifying security risks across the application estate and the infrastructure and support the IT support team members in remediating those risks
- Ensure systems are protected by defining access privileges, control structures, and resources.
Qualifications
Essential:
- A bachelor's degree in a field such as Computer Science, Computer Programming, or an equivalent combination of education and work experience
- Possess one or more of the following certifications – AWS Certification(s) Solutions Architect, DevOps, SysOps and/or Security Architect
- 3+ years working with all core AWS Infrastructure Service, including Security
- Experience implementing /maintaining security for cloud-based systems /applications in AWS
- Knowledge of security technologies such as SIEM, Firewall, XDR and hybrid/Cloud Security environments
- Experience in malware detection, analysis and removal
- Experience with vulnerability management and VM tools such as Qualys VMDR, Rapid7, AWS Inspector, Nessus or similar
Preferred:
- Experience with Microsoft Azure and M365 security
- Experience with Information security risk assessments, application security, and information systems audit
- Preferred Certifications: SIEM Solution, Vulnerability Scan Platform, SANS GIAC, OSCP, CISSP
- Understanding of OWASP Top 10 and typical defense mechanisms
Additional Information
At MUFG Investor Services, we are exceptionally proud of our approach to Hybrid Working. It enables the flexibility to thrive from wherever our employees work and, stay connected to their team and our culture. When we make Hybrid Working plans, we get to know the individual and pride ourselves in underpinning all our decisions with fairness and consistency.
MUFG Investor Services provides all of its employees with an extremely attractive compensation package. In addition to base salary, there is a group medical insurance scheme, group pension scheme, reimbursement of professional subscriptions, paid holidays and assistance towards gym memberships.
We thank all candidates for applying; however, only those proceeding to the interview stage will be contacted. If you are contacted for a job opportunity, please advise us of any accommodations needed to ensure fair and equitable access throughout the recruitment and selection process. All accommodation information provided will be treated as confidential and used only to provide an accessible candidate experience.
MUFG is an equal opportunity employer.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security AWS Azure Banking CISSP Cloud Computer Science DevOps Firewalls GIAC Incident response Malware Monitoring Nessus OSCP OWASP Qualys Risk assessment Risk management SANS SIEM Strategy Vulnerability management XDR
Perks/benefits: Equity Health care Team events
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open IT Security Engineer jobs
- Open Senior Cyber Security Specialist jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs