Data Security Specialist, VP

MUFG•Jersey City, NJ

7d•Hybrid

About The Position

Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world. With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career. Join MUFG, where being inspired is expected and making a meaningful impact is rewarded. The selected colleague will work at an MUFG office or client sites four days per week and work remotely one day. A member of our recruitment team will provide more details. Education: Degree or equivalent work experience equally preferable Bachelor's degree in Cybersecurity, Information Technology, Computer Science or Related Fields or relevant industry certifications and comparable experience Certifications: Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified Information Systems Auditor (CISA) Certified in Governance, Risk and Compliance (CGRC; formerly Certified Authorization Professional [CAP]) Certified Data Management Professional (CDMP) Certified Information Privacy Professional (CIPP) Any relevant certifications in data security, protection, and governance Work Experience: Experience in data security and protection Proven experience in Data Security Posture Management (DSPM), including the assessment, management, and improvement of an organization's data security posture Experience in implementing DSPM tools and technologies Experience in identifying and mitigating data security risks through continuous monitoring and evaluation of data security practices Proven experience in data classification and labeling technology, controls, and processes Familiarity with data security considerations for AI/ML systems, including privacy, data leakage, and regulatory risk Experience with data classification and labeling tools such as BigID and Microsoft Purview Experience working with stakeholders such as Data Privacy, IAM, Security Engineering, and Data Security teams Experience in testing alignment with governance standards and cybersecurity frameworks and advising on data security strategies Experience defining and reporting metrics and KPIs/KRIs/KCIs Cybersecurity experience in a regulated banking or financial environment preferred Functional Skills: Strong understanding of DSPM principles, including data discovery and classification across traditional data stores and AI-related data pipelines, risk assessment, policy management, incident response, and compliance management Ability to define and implement data classification patterns for scanning tools Ability to implement adaptive security measures based on data sensitivity and regulatory requirements Proficiency in using DSPM tools to gain visibility into data assets and user activities, and to enforce least privilege principles Proficiency in reporting and analyzing data security metrics Experience in developing and executing data security strategies Knowledge of data protection and data loss prevention (DLP) technologies Ability to adapt data classification requirements to security tools Experience with integrating data classification results with security tools for enrichment and enhanced security Ability to apply data classification and labeling controls to datasets used for AI training, testing, and inference Ability to integrating data classification results with downstream systems to enable safe data usage in analytics and AI-enabled platforms Foundational Skills: Excellent communication and collaboration skills Strong analytical and problem-solving abilities Ability to work independently and as part of a team Strong organizational and project management skills Ability to manage multiple priorities and meet deadlines Attention to detail and commitment to quality Strong presentation and writing skills

Requirements

Degree or equivalent work experience equally preferable Bachelor's degree in Cybersecurity, Information Technology, Computer Science or Related Fields or relevant industry certifications and comparable experience
Certified Information Systems Security Professional (CISSP)
Certified Information Security Manager (CISM)
Certified Information Systems Auditor (CISA)
Certified in Governance, Risk and Compliance (CGRC; formerly Certified Authorization Professional [CAP])
Certified Data Management Professional (CDMP)
Certified Information Privacy Professional (CIPP)
Any relevant certifications in data security, protection, and governance
Experience in data security and protection
Proven experience in Data Security Posture Management (DSPM), including the assessment, management, and improvement of an organization's data security posture
Experience in implementing DSPM tools and technologies
Experience in identifying and mitigating data security risks through continuous monitoring and evaluation of data security practices
Proven experience in data classification and labeling technology, controls, and processes
Familiarity with data security considerations for AI/ML systems, including privacy, data leakage, and regulatory risk
Experience with data classification and labeling tools such as BigID and Microsoft Purview
Experience working with stakeholders such as Data Privacy, IAM, Security Engineering, and Data Security teams
Experience in testing alignment with governance standards and cybersecurity frameworks and advising on data security strategies
Experience defining and reporting metrics and KPIs/KRIs/KCIs
Cybersecurity experience in a regulated banking or financial environment preferred
Strong understanding of DSPM principles, including data discovery and classification across traditional data stores and AI-related data pipelines, risk assessment, policy management, incident response, and compliance management
Ability to define and implement data classification patterns for scanning tools
Ability to implement adaptive security measures based on data sensitivity and regulatory requirements
Proficiency in using DSPM tools to gain visibility into data assets and user activities, and to enforce least privilege principles
Proficiency in reporting and analyzing data security metrics
Experience in developing and executing data security strategies
Knowledge of data protection and data loss prevention (DLP) technologies
Ability to adapt data classification requirements to security tools
Experience with integrating data classification results with security tools for enrichment and enhanced security
Ability to apply data classification and labeling controls to datasets used for AI training, testing, and inference
Ability to integrating data classification results with downstream systems to enable safe data usage in analytics and AI-enabled platforms
Excellent communication and collaboration skills
Strong analytical and problem-solving abilities
Ability to work independently and as part of a team
Strong organizational and project management skills
Ability to manage multiple priorities and meet deadlines
Attention to detail and commitment to quality
Strong presentation and writing skills

Nice To Haves

Cybersecurity experience in a regulated banking or financial environment preferred

Responsibilities

Implement and manage DSPM tools to enhance data protection and compliance with regulatory requirements
Collaborate with various stakeholders to ensure the alignment of DSPM initiatives with overall data security strategies
Adapting data classification requirements to security tools
Integrating data classification results with security tools for enrichment and enhanced security
Working with stakeholders such as Data Privacy, IAM, Security Engineering, and Data Security teams to gather data classification detection requirements
Defining patterns for scanning tools and ensuring alignment with governance standards
Reporting and analyzing data security metrics to inform decision-making
Advising on data security strategies and best practices
Overseeing the execution and progress of data classification and labeling initiatives
Assess and mitigate data security risks associated with AI and machine learning use cases, including training data, fine-tuning datasets, inference inputs, and outputs
Partner with AI, analytics, and engineering teams to ensure data used in AI-enabled solutions complies with classification, privacy, retention, and regulatory requirements
Support secure adoption of generative AI technologies by enforcing controls that prevent sensitive data exposure, unintended data persistence, or unauthorized reuse
Contribute to the definition of guardrails for AI data usage, including policy alignment for internal, third-party, and cloud-hosted AI services
Ensuring compliance with data security and protection regulations and standards
Liaison with governance, legal, and business divisions to maintain and update classification and labeling requirements
Presenting findings and strategies to stakeholders