Manager - Soc

About MUFG Global Service MGS MUFG Bank Ltd is Japan s premier bank with a global network spanning in more than 40 markets Outside of Japan the bank offers an extensive scope of commercial and investment banking products and services to businesses governments and individuals worldwide MUFG Bank s parent Mitsubishi UFJ Financial Group Inc MUFG is one of the world s leading financial groups Headquartered in Tokyo and with over 360 years of history the Group has about 120 000 employees and offers services including commercial banking trust banking securities credit cards consumer finance asset management and leasing The Group aims to be the world s most trusted financial group through close collaboration among our operating companies and flexibly respond to all the financial needs of our customers serving society and fostering shared and sustainable growth for a better world MUFG s shares trade on the Tokyo Nagoya and New York stock exchanges For more informat About Us MUFG Bank Ltd is Japans premier bank with a global network spanning in more than 40 markets Outside of Japan the bank offers an extensive scope of commercial and investment banking products and services to businesses governments and individuals worldwide MUFG Banks parent Mitsubishi UFJ Financial Group Inc MUFG is one of the worlds leading financial groups Headquartered in Tokyo and with over 360 years of history the Group has about 120 000 employees and offers services including commercial banking trust banking securities credit cards consumer finance asset management and leasing The Group aims to be the worlds most trusted financial group through close collaboration among our operating companies and flexibly respond to all the financial needs of our customers serving society and fostering shared and sustainable growth for a better world MUFGs shares trade on the Tokyo Nagoya and New York stock exchanges MUFG Global Service Private Limited Established in 2020 MUFG Global Service Private Limited MGS is 100 subsidiary of MUFG having offices in Bengaluru and Mumbai MGS India has been set up as a Global Capability Centre Centre of Excellence to provide support services across various functions such as IT KYC AML Credit Operations etc to MUFG Bank offices globally MGS India has plans to significantly ramp-up its growth over the next 18-24 months while servicing MUFGs global network across Americas EMEA and Asia Pacific Position details In this role you will focus on researching threats posed by cyber criminals to various systems technologies operations and programs and analyzing research to determine a cyber criminals capabilities intentions and attack approaches including those with multiple phases Responsibilities include rapidly responding to incidents to minimize risk exposure and ensure system availability proactively monitoring internal and external-facing environments seeking opportunities to automate detection and remediation and reduce response times for incidents and producing reports and briefings that include perspectives on the behavior of adversaries Roles and Responsibilities Manage SOC 24x7 operations including technology and people management Perform cybersecurity threat detection assessment and mitigation efforts Support inquiries from compliance teams such as IT risk management and internal and external audit to ensure documentation is complete and in compliance with information security policies Identify evaluate and monitor continually threats that could affect operational and business activities Manage development of security operations playbooks to ensure threat detection monitoring response and forensics activities align with best practices minimize gaps in detection and response and provide comprehensive mitigation of threats Create Enhance and manage security use cases dashboards and alerts using Splunk Research and look for opportunities to adopt the best practices and industry standards to enhance the SIEM and SOAR platforms Job Requirements Bachelor s Degree in Business Management Computer Sciences or equivalent prior work experience in a related field Minimum of 10 years overall experience working in global complex matrix-managed organization Minimum of 5 years of people management experience is preferred Minimum of 8 years experience in either Threat detection response and or vulnerability management Incident Response and Forensic Investigations work Cybersecurity Operations or Information Security Minimum of 3 years working directly in Cybersecurity Operations or Threat and Vulnerability management Experience across the following technical concentrations Network-Based Security Controls Firewall IPS WAF MDS Proxy VPN Anomaly Detection and Investigation Host and Network Forensics Operating Systems Web Applications and Traffic Experienced with EnCase FTK SIFT Splunk Redline Volatility WireShark TCPDump and open-source forensic tools Experience responding to cyber events in public cloud environments such as AWS Azure Google Cloud etc Experience creating trending metrics and management reports Security experience in all phases of product and service development lifecycle including architecture design development testing release and operational maintenance Experience with cloud computing security network operating system database application and mobile device security Extensive knowledge of vulnerability management and remediation Experience with information security risk management including conducting information security audits reviews and risk assessments Experience in two or more security domains including Security Governance and Oversight Security Risk Management Network Security Threat and Vulnerability Management and Incident Response and Forensics Knowledge of models frameworks such as Kill Chain and MITRE ATT CK Strong time management skills to balance multiple activities and lead junior analysts as needed Well-developed analytic qualitative and quantitative reasoning skills Understanding of offensive security to include common attack methods Understanding of how to pivot across multiple datasets to correlate artifacts for a single security event A diverse skill base in both product security and information security including organizational structure and administration practices system development and maintenance procedures system software and hardware security controls access controls computer operations physical and environmental controls and backup and recovery procedures Detailed knowledge and experience in security and regulatory frameworks ISO 27001 NIST 800 series FFIEC SOC2 FedRAMP STAR etc In-depth knowledge in one or more security domains including Security Governance and Oversight Security Risk Management Network Security Threat and Vulnerability Management and Incident Response and Forensics Knowledge of Splunk Phantom Python CrowdStrike Tanium Defender Azure AWS and forensic security tools is preferred Experience working within the Financial Services Industry preferred One to three years of experience in Splunk Splunk Enterprise Security or Splunk Phantom is preferred Strong analytical skills i e technical and non-technical problem solving skills Maintain certifications in an information security related field The following are recommended CySA CISSP ISSMP SANS GCIA CISM EnCE CEH GCFA GCFE GCIH or GSEC and or Splunk Certifications