Analyst, Cybersecurity
MUFG
Description
Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.
With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.
Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.
Overview Of The Department/Section The MENA Systems Team was established in 2010 to provide local support for MUFG staff in Dubai, Doha and Bahrain further where possible MENA Systems will back up our Systems Team in Riyadh and if needed provide regional support to offices such as Almaty, Cairo, Jo-Berg and Tehran. All local and internationally deployed technologies and applications are support by MENA Systems, this includes for example; Desktops, Servers, Network Appliances, Voice Recorders, Laptops, Tablets, Mobiles, Operating Systems, Desktop Applications, Internet Browsing, etc.
NUMBER OF DIRECT REPORTS
0
MAIN PURPOSE OF THE ROLE
The Cybersecurity Analyst will assist in protecting the Confidentiality, Integrity, and Availability of the organization’s information systems. This role supports awareness campaign, threat detection, incident response, and compliance initiatives in line with local and international regulatory frameworks relevant to financial institutions in DIFC, QFC, and KSA.
Key Responsibilities Threat Intelligence
- Processing of Threat Intel from various sources via the correct escalation route
- Local escalation of immediate risks to prioritize resources to respond.
- Log recording of all items processed.
- Prepare metrics for KRIs in this area.
- Ensure IOC’s are passed on and circulated.
Vulnerability Assessment and Remediation - BAU
- Registration and Tracking to conclusion of advertised vulnerabilities
- Reporting and advising seniors of completed remediation activities.
- Raise tickets on ServiceNow to formalize remediation requests
- Be able to raise SII’s for Vulnerabilities which cannot be resolved immediately.
- Become SME locally for Email DLP solution
Awareness Campaign
- Regular Cyber briefings via Email to Staff and Management
- Regular Regional Cyber briefings to colleagues via MENA News Service
- Processing and understand metrics for Phishing and other simulations
- Organise and plan Cyber training days
- Manage circulation of Critical documents (Cyber Policy) which must be acknowledged by all staff.
- Manage locally Cyber Incident Response Training Plan
Identity and Access Management
- Perform Bi-annual permissions review for the region to the point of Sign off by Management
Cyber KRI’s / KPI’s
- Regular analysis of the following such as :
- Monitoring Backups are restored and tested
- Email encryption is working
- Phishing metrics
- Training Metrics
- Compliance with Local Frameworks etc
- Manage Cyber KRI’s to be measured during BCM / DR exercises.
General Duties
- Conduct Cyber Induction Training
- Support MENA Systems as needed
- Regular Task list –
- Support MENA Systems BAU as needed (if busy or resource issue)
- Work on weekends as needed
- Establish and Manage Cyber MS Teams Channels as needed
- Support CISO in KSA as needed.
- Become IAUM for the Branch
- Establish and maintain excellent communications with Information Security Team in London
- Manage all Cyber Based exceptional handling
Cyber GRC (Governance