Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long‑term relationships, serving society, and fostering shared and sustainable growth for a better world.
Our vision is to be the world’s most trusted financial group. We put people first, listen to new and diverse ideas, and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.
MUFG, headquartered in Tokyo, operates in over 50 countries with around 2,300 offices and is one of the world’s leading financial groups. We offer a full range of services including commercial banking, trust banking, securities, credit cards, consumer finance, asset management, and leasing.
Technology is responsible for the operation, development and support of all technology across all local and international business areas. We ensure the IT strategy, architecture solutions, and service delivery are firmly aligned to business requirements and long‑term group strategy.
Technology Functions
* Architecture and Development team – provision of shared services including architecture, middleware, new systems development, quality assurance and release management.
* Middle, Risk and Back Office Team – responsible for all applications used by these areas including the main trading system, Murex.
* Front Office Solutions – business‑oriented focus to all technological developments that affect the trading floor.
* Infrastructure team – operation of all production services, voice and data networks, other voice systems and desktop systems.
* Programme Office and Purchasing – definition, prioritisation and delivery of the annual investment portfolio as well as procurement and software licence management.
* IT Risk and Control – implementation and management of all technology related controls over IT and information risk and business continuity, support of disaster recovery solutions, risk assessments and business recovery plans. Information Security is also their responsibility.
Main Purpose of the Role
* As a Global Red Team Senior Operator at the Vice President level, you will lead and shape advanced adversary simulation exercises that rigorously test and enhance MUFG’s global security posture. This role is designed for seasoned offensive security professionals with deep technical expertise and a passion for mentoring and developing junior talent.
* You will drive complex Red Team operations, collaborate across threat intelligence and detection engineering teams, and influence strategic improvements in detection and response capabilities across the enterprise.
* To ensure effective management and control of information security, IT and information risk for MUSI and EMEA Bank by ensuring all appropriate Security, IT and common‑sense controls are in place, that these controls are being followed and that this is evidenced across the whole business and IT department.
* The role will involve liaising with other information security functions within the MUS international business and MUFG group to ensure a consistent approach to all controls, standards and policies is adopted across the organisation.
* To ensure all necessary Information Security controls are in place and an appropriate strategy to protect the firm from all cyber, external and internal threats is defined and being implemented.
* To develop, implement and manage compliance with appropriate IS and IT Security policies, standards and procedures.
* To support the relationship and associated reporting requirements between Technology and internal and external bodies such as auditors, management committees, Tokyo head office, regulators (via Compliance), Operational Risk.
Key Responsibilities
* Lead the design, planning, and execution of sophisticated Red Team engagements simulating advanced persistent threats across global enterprise environments.
* Develop and refine Tactics, Techniques, and Procedures (TTPs) aligned with MITRE ATT&CK to challenge and validate detection and response mechanisms.
* Conduct advanced adversary emulation, lateral movement, privilege escalation, and persistence operations in diverse environments.
* Reverse engineer proof‑of‑concept exploits and assess their relevance and impact within MUFG’s infrastructure.
* Partner with Blue Team, Detection Engineering, and Threat Intelligence to validate findings and enhance detection logic and response workflows.
* Deliver clear, actionable reporting of findings, attack paths, and remediation strategies to both technical and executive stakeholders.
* Lead the development and maintenance of internal Red Team tools, scripts, and infrastructure to support scalable operations.
* Mentor and coach junior Red Team members, fostering a culture of continuous learning and technical excellence.
* Stay at the forefront of emerging threats, vulnerabilities, and offensive security methodologies to inform team strategy and tooling.
* Collaborate with SOC team and selected vendor to plan and execute annual purple team testing.
* Lead and manage a team of security professionals and vendor resources to conduct regular risk assessments to identify and exploit vulnerabilities and mis‑configurations within EMEA internal & external infrastructure.
* Implement and maintain governance of any assessment findings, remediation progress, and provide regular reporting for tech and executives.
* Collaborate with other technology teams (infra, app and etc) to develop and improve defensive strategies and security measures to prevent real‑world attacks.
* Create executive report from technical assessment report.
* Support Information Security incidents where requested.
* Manage grey and black box testing solution including identified threats and vulnerabilities.
* Provide out‑of‑hours support when necessary.
Skills and Experience
* Must have combined 10+ years of experience with information technology and recent experience in information security with an offensive security discipline.
* Proven track record of leading Red Team engagements or advanced penetration testing engagements in complex enterprise environments.
* Deep familiarity with C2 frameworks (e.g., Cobalt Strike, Mythic, Sliver), evasion techniques, and post‑exploitation tooling.
* Advanced proficiency in scripting or programming languages (e.g., Python, PowerShell, Bash, C/C++).
* Expert‑level understanding of Windows and Linux internals, Active Directory, and enterprise network architecture.
* Experience with vulnerability research, exploit development, and threat emulation.
* Strong knowledge of security frameworks such as MITRE ATT&CK, NIST‑CSF, and OWASP.
* Strong ability to analyse and distil complex issues and present succinct updates to management and associated committees.
* Ability to create clear documentation relating to operational processes and procedures.
Personal Requirements
* Excellent communication skills.
* Results driven, with a strong sense of accountability.
* A proactive, motivated approach.
* Ability to operate with urgency and prioritize work accordingly.
* Strong decision‑making skills, the ability to demonstrate sound judgement.
* A structured and logical approach to work.
* Strong problem‑solving skills.
* A creative and innovative approach to work.
* Excellent interpersonal skills.
* Ability to manage large workloads and tight deadlines.
* Excellent attention to detail and accuracy.
* A calm approach, with the ability to perform well in a pressurised environment.
Seniority Level
Mid‑Senior level
Employment Type
Full‑time
Job Function
Finance and Sales
Industry: Financial Services and Banking
London, England, United Kingdom
MUFG is committed to embracing diversity and building an inclusive culture where all employees are valued, respected and their opinions count. We support the principles of equality, diversity and inclusion in recruitment and employment, and oppose all forms of discrimination on the grounds of age, sex, gender, sexual orientation, disability, pregnancy and maternity, race, gender reassignment, religion or belief and marriage or civil partnership. We make our recruitment decisions in a non‑discriminatory manner in accordance with our commitment to identifying the right skills for the right role and our obligations under the law.
#J-18808-Ljbffr