Data & Cloud Security SME

Expected experience: 5-8 years

Job requirements:

1. Cloud Security Expertise
• Strong hands-on experience managing and overseeing security across multi-cloud environments (Azure, AWS, GCP, OCI) and containerized workloads.
• Ability to review cloud architectures for security gaps and implement mitigations.
2. Policy, Standards & Compliance
• Deep understanding of NIST, ISO27002, CIS frameworks and ability to enforce MUFGs Cyber Security policies and standards.
• Ensure compliance monitoring, staff awareness, and risk control alignment.
3. Technical Skills in Security Tools
• Proficiency in Cloud Security tools (e.g., CSPM), DLP technologies, and administration (policy configuration, upgrades, patching).
• Experience with integrated workflows (e.g., ServiceNow) for alert tracking and incident management.
4. Risk Management & Governance
• Capability to conduct security reviews for on-prem, cloud, and third-party systems, ensuring alignment with risk appetite.
• Support operational risk reporting, audits, regulatory liaison, and timely remediation of security incidents.
5. Collaboration & Leadership
• Act as a Cloud Security center of excellence, liaising with IT, technology, and business teams to address threats and vulnerabilities.
• Maintain up-to-date knowledge of laws, regulations, and best practices, and drive continuous improvement in security posture.