MUFG

Cyber Security Threat Modeler – VP

MUFG

full-time

Posted on:

Location Type: Hybrid

Location: TampaArizonaFloridaUnited States

Visit company website

Explore more

AI Apply
Apply

Salary

💰 $140,000 - $173,000 per year

Job Level

Lead

Tech Stack

Linux

About the role

  • Monitor information security issues related to MUFG systems and workflows to ensure internal security controls are appropriate and operating as intended
  • Manage threat modeling process to help our technology teams, control partners, and business stakeholders understand the state of our technology and data control suite, while working together to prioritize and remediate identified gaps
  • Generate security trend analyses and vulnerability reports
  • Utilize the MITRE ATT&CK framework to identify and mitigate threats effectively
  • Identify and implement controls to mitigate identified threats
  • Cross-train other teams on threat modeling techniques and best practices

Requirements

  • 6+ years of experience in secure coding, application security, or similar disciplines
  • Knowledge of information security standards, rules and regulations related to information security and data confidentiality
  • Experience with performing Threat Modeling on web applications
  • Conducting research into real-world threat actor tactics, techniques, and procedures
  • Solid knowledge and understanding of development life cycle (SSDLC), CI/CD pipelines and Agile methodologies
  • Understanding of common software security issues and remediation techniques (OWASP Top 10, SANS 25, Mitre’s ATT&CK)
  • Excellent knowledge of Windows/AD/Linux systems administration and vulnerabilities
  • Experience in the banking or finance industries preferred
  • Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC), or other security certifications desired
  • Experience working in a highly-regulated environment desired
Benefits
  • comprehensive health and wellness benefits
  • retirement plans
  • educational assistance and training programs
  • income replacement for qualified employees with disabilities
  • paid maternity and parental bonding leave
  • paid vacation
  • sick days
  • holidays
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
secure codingapplication securitythreat modelingvulnerability reportsMITRE ATT&CK frameworkSSDLCCI/CD pipelinesAgile methodologiesOWASP Top 10SANS 25
Soft Skills
cross-trainingcommunicationcollaborationproblem-solving
Certifications
Certified Information Systems Security Professional (CISSP)Global Information Assurance Certification (GIAC)