Senior Analyst- Data Loss Prevention

Do you want your voice heard and your actions to count?

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.

With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.

Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.

About the Role

Position Title: Data Loss Prevention (DLP), Governance & Monitoring        .          

Corporate Title: Analyst                     

Location:  Bengaluru                          

Job Profile

Job Responsibilities:
This is a governance & monitoring role, the person will be working as an individual contributor, reporting into the regional DLP team lead in ARMO-ORM of MUFG Bank overseeing the DLP governance and monitor to support APAC Business Units.

The person will be responsible for the supporting governance and monitoring relevant to DLP, this includes responding timely to the DLP questions raised from the BUs, checking the Change Management Document basic fulfilment, conducting analysis over the alert logs in periodical basis, follow-up with the business users for the suspicious transaction,   and cyber security risks to the Bank and influencing business and IT partners to take sound risk management decisions.

Job responsibilities include but not limited to:

Under supervision and guidance from regional DLP team lead, support the following activities.

 1. Reporting and periodical review of DLP alerts

• Conduct analysis over the false positive, self-attestation suspicious activity on periodical basis
• To receive generated reports in periodical basis to highlight the false positive rates
• Report to be distributed to 19 divisions and/or 11 countries business units.

2.HVA update reminder and collection

• Send reminder to BUs in semi-annual basis to revisit the High Value Asset(HVA) list to 19 divisions and/or 11 countries business units.
• Collect and consolidate the HVA updated from each BUs.
• Share the changes to DLP Rule Engineering Team to configure it to DLP system

3.Coordinate incident response

• Inform BU manager to escalate to Asia Risk Management Office / ISSP Common team and local compliance team on incident reporting requirement on potential incidents.
• To include DLP governance team on outcome of incident assessment.

• Report the outcome to APAC DLP Steering Committee necessary members.

4.Conduct periodical training to BUs

• Making use of the Reporting material prepared in monthly basis, prepare business users training material
• Conduct training towards respective BUs to raise their awareness
• Consider ways to measure maturity level of BUs on training

5.User inquiry response and Change Management

• Making use of the Reporting material prepared in monthly basis, prepare business users training material
• Conduct training towards respective BUs to raise their awareness
• Consider ways to measure maturity level of BUs on training

6.Liaze APAC DLP Steering Committee

• Consider key inputs towards BUs stakeholders reflecting APAC DLP situation including results of incidents

7. User inquiry response and Change Request Management

• Respond to user inquiry relevant to DLP and coordinate with respective stakeholders until closure of the inquiry.
• Asia Systems Office system team to keep DLP Governance informed of Change Requests approved by ARMO/ISSP Common team and/or ASO/ISSP System Management Standard team.

8. Act as required based on any other instructions from the regional DLP team lead

Job Requirements:

• Strong understanding of Information/IT governance, data loss prevention concepts with minimum 3 years of relevant experience. Experience in Financial service would be preferred.
• Is able to timely react and escalate generated alerts from DLP to ARMO Regional DLP Lead and handle queries from business units precisely.
• Experience in creation and review of work papers to document testing and/or issue closure for Information/IT issue management.
• Experience with Information/IT metrics and reporting, scorecard development utilising data metrics tools (e.g. IBM OpenPages, Tableau, Access, etc.)
• Ability to work effectively in a team environment, and takes initiatives to collaborate and challenge status quo, and adaptable to embrace new changes
• Strong interpersonal and analytical skills attributes
• Self-motivated and able to work independently and source for information, systematically evaluate options and recommend solutions

Education, Professional Qualifications and Experience

• Degree in Information Security, Computer Engineering, Information Systems, Computer Science or equivalent
   
• To have one of the following IT certifications related to Information/IT security such as ISO/IEC 27000 series, COBIT, ITIL, etc. will be advantageous

• IT professional with at least 3 years of relevant experience in Information/IT Security within the Banking and Finance industry

Mitsubishi UFJ Financial Group (MUFG) is an equal opportunity employer. We view our employees as our key assets as they are fundamental to our long-term growth and success. MUFG is committed to hiring based on merit and organsational fit, regardless of race, religion or gender.