Risk And Control Analyst Risk And Threat Identification Management, AVP

Union Bank, N.A. Raleigh , NC 27611

Posted 2 months ago

Do you want your voice heard and your actions to count?

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), the 5th largest financial group in the world (as ranked by S&P Global, April 2018). In the Americas, we're 13,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, developing positive relationships built on integrity and respect. It's part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. We're a team that accepts responsibility for the future by asking the tough questions and owning the solutions. Join MUFG and be empowered to make your voice heard and your actions count.

Risk and Control Analyst Risk and Threat Identification Management, AVP

Job Summary

As part of an effective risk and control framework, Operations and Technology for the Americas (OTA) has developed a team of Risk and Control Analysts for each of its technology risk governance processes. Collectively the Risk and Control Analysts work collaboratively to maintain a strong and consistent risk management standard across the technology environment. With a team of Risk and Control Analysts and Managers appointed for each technology risk governance process, OTA has developed a comprehensive coverage and joint accountability model that promotes early identification and assessment of operational and technology risk, effective design and evaluation of controls, and sustainable solutions to mitigate operational and technology risk. The Risk and Control Analyst is responsible for supporting the implementation of and monitoring adherence to all defined risk and technology management processes to manage information risk under the leadership of the Business Unit Risk Control Officer (BURCO) First Line Risk Executive.

Responsibilities:

  • Perform a Risk and Threat Identification and Analysis and support the review and documentation of the validity of newly-identified or updated risks and threats with Process Owners

  • Execute the Change Management process to update the risk, threats, and control objectives library and provide updated control objective mappings to threat scenarios

  • Support the annual review of the risks, threats, and control objectives library

  • Review the threat scenario prioritization, provide feedback, and participate in tabletop exercise to simulate response to top threat materialization

  • Monitor and perform ongoing management of risks, policy non-compliance and control gaps and escalate issues to Risk and Control Managers

  • Identify emerging risks and support the maintenance of the risk, threat and controls libraries in line with second line tools and methods

  • Partner with control colleagues across OTA and engage with other lines of defense as needed including Compliance, Risk, Legal, and Audit

  • Participate in cross business and function governance to effectively manage risk

  • Proactively seek and report on opportunities to strengthen processes via automation

  • Work collaboratively with Risk and Control team to execute against technology risk governance procedures

  • Maintain compliance with applicable second line policies

  • Prepare materials for ongoing team meetings and meetings with OTA senior management

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Threat Management Specialist

PSI Pax

Posted 5 days ago

VIEW JOBS 11/13/2019 12:00:00 AM 2020-02-11T00:00 PSI Pax is currently recruiting for a Threat Management Specialist to support our government customer in Morrisville, NC. Duties & Responsibilities: The Threat Management Specialist will perform deep-dive incident analysis by correlating data from various sources and determines if a critical system or data set affected. Handle incidents as defined in Playbooks and SOPs. They also advise on remediation actions. * Identification of Cybersecurity problems which may require mitigating controls * Analyze network traffic to identify exploit or intrusion related attempts * Recommend detection mechanisms for exploit and or intrusion related attempts * Provide subject matter expertise on network based attacks, network traffic analysis, and intrusion methodologies * Escalate items which require further investigation to other members of the Threat Management team * Execute operational processes in support of response efforts to identified security incidents Required Qualifications: * Must be able to work Monday – Friday 3:30 pm – 12:00 am * Over five (5) years of Apple hardware/software support related experience and/or training, or equivalent combination of training, experience * Over thee (3) years IT security experience * Over two (2) years' experience in network traffic analysis * Strong working knowledge of: * Boolean Logic * TCP/IP Fundamentals * Network Level Exploits * Threat Management * Regular Expressions * Knowledge of Control Frameworks and Risk Management techniques * Excellent oral and written communication skills * Excellent interpersonal and organizational skills * Strong understanding of IDS/IPS technologies, trends, vendors, processes and methodologies * Strong understanding of common IDS/IPS architectures and implementations * Strong understanding of IDS/IPS signatures, content creation and signature characteristics including both signature and anomaly-based analysis and detection Education Requirements: Bachelors of Science in Computer Science, Information Technology or related field or significant work experience in government related SOC. Certifications such as GIAC Certified Enterprise Defender (GCED), GIAC Certified Security Essentials (GSEC), CISSP, or SSCP PSI Pax is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, marital status, disability, veteran status, sexual orientation, or genetic information. PSI Pax Raleigh NC

Risk And Control Analyst Risk And Threat Identification Management, AVP

Union Bank, N.A.