Security Engineering - Analyst

Do you want your voice heard and your actions to count?

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.

With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.

Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.

Position details

The Cyber Security Analyst is a hands‑on role within MUFG’s Cyber Security function, responsible for the day‑to‑day operation, monitoring, and support of cybersecurity controls. The role contributes to the ongoing maintenance, improvement, and implementation of security solutions, helping to ensure cyber security platforms remain effective, resilient, and aligned with organisational requirements.

The role requires solid technical capability across infrastructure, networking, and security tooling, with a focus on operational stability, analysis, and issue resolution. Responsibilities include supporting security incidents, assisting with investigations, contributing to remediation activities, and supporting security‑related changes in line with established change and governance processes.

The Cyber Security Analyst works closely with senior engineers and stakeholders across the cyber estate, providing operational support and technical input across a range of security controls. The role includes maintaining accurate documentation, procedures, and evidence to support operational, audit, and governance requirements. This position suits an individual who enjoys problem solving, is comfortable working in technical environments, and is keen to continue developing their skills across network security and cyber engineering.

Roles and Responsibilities

The role involves acting as a supporting point of contact for internal audit, IT risk, and security governance teams, assisting with alignment to regulatory frameworks such as ISO 27001, SAMA, and SWIFT CSCF, as well as internal security standards. The analyst will support the operation, monitoring, and ongoing maintenance of network security platforms across the EMEA Bank and EMEA Securities technology estate and will work closely with senior engineers, vendors, and internal teams to support the implementation and continuous improvement of network security controls.

• Domain Experince – Network Security
  • Good experience in network security operations, with an understanding of TCP/IP, routing, switching, and traffic‑flow analysis.
  • Hands‑on experience supporting perimeter security controls, including next‑generation firewalls and intrusion prevention systems (IPS).
  • Experience working with cloud‑based edge security platforms including exposure to WAF, DDoS protection, and Zero Trust / ZTNA capabilities.
  •  Experience supporting web security and Secure Web Gateway (SWG) or proxy solutions, including URL filtering, SSL inspection, and user‑based access controls.
  • Exposure to network visibility and microsegmentation tools, including application dependency mapping and east‑west traffic analysis.
  • Experience supporting network security policy management processes, including firewall rule changes, reviews, and compliance activities.
  • Experience working in multi‑vendor network security environments, supporting integrations across diverse firewall and security platforms.
  • Exposure to cloud network security concepts, including VPC/VNet security, security groups, and integration with cloud‑native security controls.
  • Familiarity with Network Access Control (NAC) solutions such as Cisco ISE or similar.
  • Good understanding of security best practices, including Zero Trust principles, least‑privilege access, and network segmentation strategies.

• Risk Identification and Mitigation
  • Identify potential security risks posed by threat actors and gaps in existing deployments.
  • Collaborate with internal teams and vendors to develop mitigation plans and track remediation progress through ServiceNow.
  • Support organistaions security risk profile and associated operational risk reporting.
• Process Optimisation
  • Support continuous improvement of operational processes and workflows.
  • Identify opportunities for operational efficiencies, automation, or standardisation.
• Audit and Governance Support
  • Support internal and external audits by ensuring activities are documented and accessible in central respositries.
  • Align improvements and mitigation activities with organisational risk policies and governance frameworks.
• General
  • Support Information Security incidents where requested.
  • Support Operational Security duties where requested.
  • Responsibility covers EMEA for Bank and EMEA for Securities technology
• Key Deliverables
  • Fully supported and documented security tooling across multiple domains.
  • Timely and effective resolution of tooling and platform-related incidents.
  • Implementation packages and handover documents for new control deployments.
  • Accurate reporting of vulnerability status and policy compliance gaps.
  • Automation scripts, dashboards, or integrations that reduce manual workload.
  • Audit-ready documentation and evidence packs as required.

Job Requirements:

• Education and Experience:
  • Strong secondary-level education is required, ideally to A-level or equivalent standard, in a technical or analytical discipline.
  • A university degree is not essential, though a qualification in Cyber Security, Information Technology, Risk Management, or a related field would be considered advantageous.
  • 2 – 4 years of experience in cyber security or information security roles.
• Knowledge and Skills:
  • Strong technical experience in Windows Server and Linux environments.
  • Strong technical understanding of infrastructure, networking, and operating systems.
  • Hands-on experience with one or more enterprise cyber security tools
  • Knowledge of regulatory frameworks (e.g., ISO 27001, CIS, NIST).
  • Comfortable supporting log analysis, access control configurations, and data protection tools.
  • Proficiency in troubleshooting integrated systems involving AD, DNS, GPO, and networked assets
  • Scripting or automation exposure (Python, Ansible, or PowerShell) is desirable.
  • Experience collaborating with audit, risk, and compliance stakeholders.
  • Excellent written and verbal communication skills for technical and non-technical audiences.

• Success Measures
  • High availability and performance of cyber tooling platforms.
  •  Reduction in platform-level incidents through proactive support or automation.
  •  Timely delivery of project tasks and handover documentation.
  •  Positive feedback from IT partners, operations, and audit stakeholders.
  •  Contribution to ongoing improvements in detection, compliance, and control effectiveness.

• Soft Skills:
  • Excellent communication skills, with the ability to convey technical findings to non-technical stakeholders.
  • Strong collaboration skills, with a focus on cross-functional teamwork and vendor relationship management.
  • Process oriented with keen attention to detail.
  • Supporting problem identification
  • Contributing to improvements
  • Assisting audit activities
• Certifications (Nice to have)
  • Security+, CEH, or equivalent foundational security certifications.
  • Vendor or platform certifications (e.g., Microsoft, AWS) are advantageous.

Desired but not necessary:

• Experience working with cloud platforms (Azure, AWS) or virtualized environments (e.g., VMware).
• Familiarity with ServiceNow ITSM.
• Knowledge of security frameworks such as CIS Benchmarks, ISO 27001, or NIST 800-53.

Mitsubishi UFJ Financial Group (MUFG) is an equal opportunity employer. We view our employees as our key assets as they are fundamental to our long-term growth and success. MUFG is committed to hiring based on merit and organsational fit, regardless of race, religion or gender.