Senior Analyst - DLP [T500-25420]

About Us:

MUFG Bank, Ltd. is Japan’s premier bank, with a global network spanning in more than 40 markets. Outside of Japan, the bank offers an extensive scope of commercial and investment banking products and services to businesses, governments, and individuals worldwide. MUFG Bank’s parent, Mitsubishi UFJ Financial Group, Inc. (MUFG) is one of the world’s leading financial groups. Headquartered in Tokyo and with over 360 years of history, the Group has about 120,000 employees and offers services including commercial banking, trust banking, securities, credit cards, consumer finance, asset management, and leasing. The Group aims to be the world’s most trusted financial group through close collaboration among our operating companies and flexibly respond to all the financial needs of our customers, serving society, and fostering shared and sustainable growth for a better world. MUFG’s shares trade on the Tokyo, Nagoya, and New York stock exchanges.

MUFG Global Service Private Limited:

Established in 2020, MUFG Global Service Private Limited (MGS) is 100% subsidiary of MUFG having offices in Bengaluru and Mumbai. MGS India has been set up as a Global Capability Centre / Centre of Excellence to provide support services across various functions such as IT, KYC/ AML, Credit, Operations etc. to MUFG Bank offices globally. MGS India has plans to significantly ramp-up its growth over the next 18-24 months while servicing MUFG’s global network across Americas, EMEA and Asia Pacific.

Senior Analyst, Data Loss Prevention (DLP), Governance & Monitoring in MUFG Global Service Private Limited.

(Onshore: Risk Management Office for Asia (ARMO) – Operational Risk Management (ORM), MUFG Bank, Ltd).

Job Responsibilities:

This is a governance & monitoring role, the person will be working as an individual contributor, reporting into the regional DLP team lead in ARMO-ORM of MUFG Bank overseeing the DLP governance and monitor to support APAC Business Units.

The person will be responsible for the supporting governance and monitoring relevant to DLP, this includes responding timely to the DLP questions raised from the BUs, checking the Change Management Document basic fulfilment, conducting analysis over the alert logs in periodical basis, follow-up with the business users for the suspicious transaction, and cyber security risks to the Bank and influencing business and IT partners to take sound risk management decisions.

Job responsibilities include but not limited to:

• Under supervision and guidance from regional DLP team lead, support the following activities.

Reporting and periodical review of DLP alerts:

• Conduct analysis over the false positive, self-attestation suspicious activity on periodical basis.
• To receive generated reports in periodical basis to highlight the false positive rates.
• Report to be distributed to 19 divisions and/or 11 countries business units. 2.HVA update reminder and collection.
• Send reminder to BUs in semi-annual basis to revisit the High Value Asset (HVA) list to 19 divisions and/or 11 countries business units.
• Collect and consolidate the HVA updated from each BUs.
• Share the changes to DLP Rule Engineering Team to configure it to DLP system 3. Coordinate incident response.
• Inform BU manager to escalate to Asia Risk Management Office / ISSP Common team and local compliance team on incident reporting requirement on potential incidents.
• To include DLP governance team on outcome of incident assessment.
• Report the outcome to APAC DLP Steering Committee necessary members. 4.Conduct periodical training to BUs.
• Making use of the Reporting material prepared in monthly basis, prepare business users training material.
• Conduct training towards respective BUs to raise their awareness.
• Consider ways to measure maturity level of BUs on training 5. User inquiry response and Change Management.
• Making use of the Reporting material prepared in monthly basis, prepare business users training material.
• Conduct training towards respective BUs to raise their awareness.
• Consider ways to measure maturity level of BUs on training MUFG Bank, Ltd Singapore Branch 6. Liaze APAC DLP Steering Committee.
• Consider key inputs towards BUs stakeholders reflecting APAC DLP situation including results of incidents 7. User inquiry response and Change Request Management.
• Respond to user inquiry relevant to DLP and coordinate with respective stakeholders until closure of the inquiry.
• Asia Systems Office system team to keep DLP Governance informed of Change Requests approved by ARMO/ISSP Common team and/or ASO/ISSP System Management Standard team. 8. Act as required based on any other instructions from the regional DLP team lead.

Job Requirements:

• Strong understanding of Information/IT governance, data loss prevention concepts with minimum 3 years of relevant experience. Experience in Financial service would be preferred.
• Is able to timely react and escalate generated alerts from DLP to ARMO Regional DLP Lead and handle queries from business units precisely.
• Experience in creation and review of work papers to document testing and/or issue closure for Information/IT issue management.
• Experience with Information/IT metrics and reporting, scorecard development utilizing data metrics tools (e.g. IBM OpenPages, Tableau, Access, etc.).
• Ability to work effectively in a team environment, and takes initiatives to collaborate and challenge status quo, and adaptable to embrace new changes.
• Strong interpersonal and analytical skills attributes.
• Self-motivated and able to work independently and source for information, systematically evaluate options and recommend solutions MUFG Bank, Ltd Singapore Branch.

Education, Professional Qualifications and Experience:

• Degree in Information Security, Computer Engineering, Information Systems, Computer Science or equivalent.
• To have one of the following IT certifications related to Information/IT security such as ISO/IEC 27000 series, COBIT, ITIL, etc. will be advantageous.
• IT professional with at least 3 years of relevant experience in Information/IT Security within the Banking and Finance industry We regret to inform that only shortlisted applicants will be notified.