MUFG Investor Services Logo

Junior Associate Director IT Application Security Engineer

🇨🇾 Cyprus🔒 Cybersecurity🔴 Director

Job Description

Company Description

MUFG Investor Services is a trusted partner to many of the world’s largest public and private funds, providing asset servicing and operational solutions built for alternatives. With over $1 trillion in client assets under administration, we offer fund administration, banking, payments, fund financing, foreign exchange overlay, corporate and regulatory services, custody, business consulting, and more.

Operating from 17 locations worldwide, we help clients mitigate risk, enhance efficiency, and navigate the operational complexities of today’s investment management landscape. As a division of Mitsubishi UFJ Financial Group (MUFG), one of the world’s largest financial institutions with approximately $3 trillion in assets, we combine deep expertise with the strength and stability of a leading financial institution. To learn more, visit us at www.mufg-investorservices.com.

#LI-Hybrid

Job Description

We are seeking a proactive and collaborative Application Security Engineer who speaks the language of developers, thrives in the purple team space and is an automation advocate. The successful candidate will work closely with engineering & IT teams to enhance the security of our applications, API’s and infrastructure by implementing preventative controls and identifying risks through security testing.

You Will:

  • Act as a security champion to foster the secure by design approach across the business.
  • Support the identification and analysis of web application security vulnerabilities across the business to reduce risk.
  • Oversee daily management of application security platforms to maintain comprehensive coverage, ensure compliance and remediation of findings.
  • Conduct threat modelling and review application architectures to identify potential risks early in the SDLC.
  • Implement application security controls and proactive measures to prevent security incidents.
  • Implement and manage SAST/SCA tooling across our application repositories to identify source code risks.
  • Scale automated DAST solutions across our applications to maximise testing coverage and provide visibility into runtime security posture.
  • Provide security guidance and remediation advice to engineers where applicable.
  • Carry out penetration testing on internally developed applications to identify security defects.
  • Review and assess the security of third-party vendor applications through configuration and hardening reviews.
  • Validate remediation of security issues by the development team and 3rd parties.
  • Coordinate and arrange external penetration testing assessments to independently evaluate the security of our applications.
  • Build and maintain effective collaboration with development and IT teams.

#LI-Hybrid

Qualifications

You Have:

  • Experienced in applications security focusing on red, blue or purple team activities.
  • Experienced in software development or experience contributing to Open-Source projects.
  • Experienced with DAST tools such as Burp Suite, OWASP Zap or similar.
  • Experience with SAST/SCA tools such as Snyk, Veracode, Checkmarx or similar.
  • Proficient in one or more of the following languages - Python, JavaScript, .NET or Java.
  • Well-versed in analysis of open source and third-party library vulnerabilities.
  • Well-rounded knowledge of the Software Development Life Cycle (SDLC) and agile methodologies.
  • Hold a strong understanding and experience testing of both REST and GraphQL APIs.
  • Demonstrated experience with development tools including GitLab/GitHub, Datadog, Jira, Docker, and various IDEs.
  • Previously worked very closely with development and DevOps teams to resolve security issues.
  • Have performed security-focused code reviews to identify code level issues.
  • Experience in creating custom security tooling or scripts.

Preferred

  • Experience in the financial sector or another heavily audited industry.
  • Experience with cloud services, particularly AWS services like WAF, Cognito etc.
  • Experience working with Infrastructure as Code, Kubernetes and Containers.
  • Experience with auth mechanisms like Open ID Connect, OAuth and identity providers.
  • Experience in creating custom CI/CD pipeline jobs to carry out security related reviews or scans.

Additional Information

What’s in it for you to join MUFG Investor Services?

Take a look at our careers site and you’ll find everything you’d expect from a career with the fastest-growing business at one of the world’s largest financial groups. Now take another look. Because it’s how we defy expectations that really defines us. You’ll feel that difference in all kinds of ways.  Our vibrant CULTURE. Connected team. Love of innovation, laser client focus, and next-level LEARNING & DEVELOPMENT.  Oh, and we really walk the talk when it comes to HYBRID WORKING.

So, why settle for the ordinary?  Apply now for a Brilliantly Differentcareer.

We thank all candidates for applying; however, only those proceeding to the interview stage will be contacted.

We are an equal opportunity employer.

Share this job:
Please let MUFG Investor Services know you found this job on Remote First Jobs 🙏

9 similar remote jobs

Explore latest remote opportunities and join a team that values work flexibility.

View all jobs
Tiger Analytics logo

Senior Manager / Associate Director Technology Strategy Pricing Operations

Tiger Analytics

2 Months ago
Axon Spain logo

Senior Software Engineer II

Axon Spain

3 Days ago
Lawrence Livermore National Laboratory logo

Senior Nuclear Enterprise Systems Analyst

Lawrence Livermore National Laboratory

$175k-$267k 4 Days ago
Nexamp logo

Electrical Performance Engineer

Nexamp

$125k-$135k Month ago
Nexamp logo

Electrical Performance Engineer

Nexamp

$125k-$135k Month ago
Dexterra Group logo

Network Engineer

Dexterra Group

Month ago

Remote companies like MUFG Investor Services

Find your next opportunity with companies that specialize in Regulated Funds, Hedge Funds, Real Estate, and Real Assets. Explore remote-first companies like MUFG Investor Services that prioritize flexible work and home-office freedom.

All companies
StepStone Group Logo

StepStone Group

1001-5000 www.stepstonegroup.com

A global private markets investment firm providing customized investment solutions and advisory services.

View company profile →
Aztec Group Logo

Aztec Group

1001-5000 aztec.group

Provides fund and corporate services to the alternative assets industry, managing over €760 billion in assets.

View company profile →
GXE Logo

GXE

11-50 gxe.com

An all-in-one platform for unlisted assets and funds management.

View company profile →
Ocorian Logo

Ocorian

1001-5000 www.ocorian.com

Provides global fund administration, capital markets, corporate, and compliance solutions for diverse financial clients.

View company profile →
KKR Logo

KKR

1001-5000 www.kkr.com

A global investment firm providing alternative asset management, capital markets, and insurance solutions.

View company profile →
Goji, Euroclear group Logo

Goji, Euroclear group

51-200 www.goji.investments

Offers a digitised investment platform for private market funds, streamlining services for asset managers, fund administrators, and distributors.

View company profile →

Project: Career Search

Rev. 2026.4

[ Remote Jobs ]
Direct Access

We source jobs directly from 21,000+ company career pages. No intermediaries.

Search Jobs Post a Job
01

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

02

Advanced Filters

Filter by category, benefits, seniority, and more.

03

Priority Job Alerts

Get timely alerts for new job openings every day.

04

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

21,000+ SOURCES UPDATED 24/7
Apply