Cyber Threat Intelligence Analyst, AVP - Remote

Your potential. Your opportunity.

Do you want your voice heard and your actions to count?

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), the 5th largest financial group in the world. Across the globe, we're 180,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.

With a vision to be the world's most trusted financial group, it's part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.

Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.

This is a remote position. A member of our recruitment team will discuss location preferences with you in more detail.

Job Summary:

MUFG is seeking a highly experienced threat intelligence colleague to contribute to our threat intelligence program. This person will help support day to day operational needs of the MUFG Threat Intelligence Center (MTIC) including daily threat briefings, global threat analysis, daily, weekly and monthly report generation, cross-team collaboration, global threat trends, and recommendations that need to be shared with senior leadership.

This position will require someone with an analytical mind, a quick learner, and the ability to create and deliver briefings, propose, and execute program initiatives/improvement, and collaborate with a wide range of key stakeholders.

In this role you will research threats posed by threat actors to various systems, technologies, operations, and programs and analyze research todetermine threat actors capabilities, intentions, and attack approaches. Additionally, produce reports and briefings that include perspectives on the behavior and trends of adversaries.

This position is in the Cyber Security Operations area of Enterprise Information Security and will report directly to the MTIC Program Manager.

Major Responsibilities:

• Daily threat intelligence monitoring through open and closed sources
• Provide day to day analysis of threats that have the potential to impact MUFG and its affiliates
• Evaluate data sources for consideration in the improvement and expansion of the threat intelligence program
• Responsible for day-to-day tactical/operational support and escalation of threat intelligence events
• Present key trends and analysis to peer teams and executive management
• Produce key metrics and reports that help to promote the value of threat intelligence
• Respond to computer security incidents in compliance with industry best practices
• Perform basic network security analysis in support of intrusion detection operations, including the development and enrichment of indicators used to enhance the network security posture
• Contribute to a team of cyber threat intelligence analysts to analyze threat data, write reports, brief event details to leadership, and coordinate remediation activities across multiple organizations
• Analyze the potential impact of new threats and exploits and communicate risks to relevant business units and leadership.
• Provide cyber risk and threat identification by proactively and continuously monitoring the internal and external landscape for relevant events, risks, and threats related to the cyber landscape
• Provide enterprise threat analysis by reviewing potential and current threats based upon a defined and repeatable threat analysis methodology
• Provide finished intelligence products/communications to key groups and the enterprise regarding potential threats and remediation efforts - including the ability to develop write-ups that provide effective analysis and actionable intelligence based on relevant security events
• Exceptional time management is required to balance strategic and operational support needs in day-to-day activities

Qualifications:

• 5+ years experience directly related to development and support of cyber threat intelligence services, providing threat monitoring, assessment and communication of potential and current information security risk and threats (preferable in the financial services industry)
• Bachelor's degree or equivalent experience
• Previous government/military experience with threat intelligence preferred
• Experience with threat intelligence and SOC/CIRT interaction
• Possess excellent communication and presentation skills
• Experience with SIEM big data technology
• Splunk experience is highly preferred
• Experience with threat intelligence vendors
• Experience with EDR technologies
• Writing skills that present both a business and technical viewpoint
• Knowledge of threat hunting techniques, the intelligence cycle, and analysis methodologies
• Understanding of cyber threat actors, advanced cyber threats, and the "kill chain" methodology
• Understanding of back-channels typically used by actors for malicious activity
• Understanding of how to successfully access networks anonymously, obfuscation techniques and best practices for ensuring device non-attribution
• Understanding of vulnerability scanning and reporting
• Understanding of security event and incident handling
• Understanding of ethical hacking tools and techniques
• Familiarity with MITRE ATT&CK
• Experience using the third-party cyber threat intelligence platforms
• Understanding of network infrastructure (including firewalls), web proxy and/or email architecture - particularly as they apply in a mitigating control functionality
• Ability to act independently, prioritizing and organizing day to day tasks and needs as appropriate
• CISSP highly desired

Salary

The typical base pay range for this role is between $95K - $120K depending on job-related knowledge, skills, experience and location. This role may also be eligible for certain discretionary performance-based bonus and/or incentive compensation. Additionally, our Total Rewards program provides colleagues with a competitive benefits package (in accordance with the eligibility requirements and respective terms of each) that includes comprehensive health and wellness benefits, retirement plans, educational assistance and training programs, income replacement for qualified employees with disabilities, paid maternity and parental bonding leave, and paid vacation, sick days, and holidays

The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required of personnel so classified.

We are proud to be an Equal Opportunity/Affirmative Action Employer and committed to leveraging the diverse backgrounds, perspectives and experience of our workforce to create opportunities for our colleagues and our business. We do not discriminate on the basis of race, color, national origin, religion, gender expression, gender identity, sex, age, ancestry, marital status, protected veteran and military status, disability, medical condition, sexual orientation, genetic information, or any other status of an individual or that individual's associates or relatives that is protected under applicable federal, state, or local law.

#LI-Remote