×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Business Analyst IT Consultant

Assistant Vice President, IT Risk and Control

Job in Greater London, London, Greater London, EC1A, England, UK
Listing for: MUFG Americas
Full Time position
Listed on 2026-01-14
Job specializations:
  • IT/Tech
    Cybersecurity, IT Business Analyst, IT Consultant
Job Description & How to Apply Below
Location: Greater London

Do you want your voice heard and your actions to count?

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long‑term relationships, serving society, and fostering shared and sustainable growth for a better world.

With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.

Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.

The IT Risk, Security and Control (RSC) department works across Technology and the Business to perform Cybersecurity and Technology protection, governance, risk management and reporting. The department is made up of a number of specialist teams ultimately responsible for managing Cybersecurity and Technology risks in line with MUFG risk tolerance.

IT Risk & Control (ITRC) is one team within RSC responsible for Technology risk and control management. Key responsibilities of ITRC include the risk and control framework, risk and control self‑assessment (RCSA), key control testing, key risk indicators, governance and reporting and internal and external audit oversight.

MAIN PURPOSE OF

THE ROLE

To be an integral member of the ITRC team with a primary focus on planning and executing key control testing, reporting and enhancing key risk indicators, and monthly governance and reporting, which will involve liaising with all Technology departments and some business functions and other teams as necessary.

KEY RESPONSIBILITIES
  • Perform control testing to assess the design and operating effectiveness of key cybersecurity and technology controls, and report conclusions to risk and control owners.
  • Support efforts to sustain and enhance our risk and control framework to ensure material regulatory requirements are being assessed, tested and reported on.
  • Manage and enhance key risk indicators that support risk appetite and residual risk measurement and reporting to the firm's executive leadership and risk committees.
  • Support the execution of cybersecurity and technology risk management and its strategic roadmap, including management and development of new key risk indicators to enable our stakeholders to understand risk posture.
  • Play an active role in monthly governance and reporting activities, in particular managing materials and actions relating to the monthly ITRMC meeting.
  • Support complex, firm‑wide initiatives towards successful completion and develop reports to communicate progress to senior management, risk committees, and Board of Directors.
  • Work closely with cybersecurity and technology teams, in particular risk and control owners to enhance control effectiveness, drive remediation and closure of open issues.
  • Understand current cybersecurity and technology strategy and help to mature it on a continuous basis through targeted initiatives.
  • Collaborate with stakeholders to understand gaps and process improvements to enhance business operations.
  • Analyse and measure the effectiveness of existing business processes and develop sustainable, repeatable, and quantifiable improvement recommendations (business requirements definition, gap analysis, cost‑benefit analysis).
  • Recommend solutions (in terms of both technology and business outcomes) based on root cause analysis, cost / benefits, feasibility analysis, and research of sound industry practices.
  • Leverage industry frameworks, best practices, and changes in financial services sector that may impact reporting for cybersecurity and technology program and project developments.
  • Stay abreast on current state understanding of information security program developments, industry frameworks, and changes in the company that may impact reporting.
WORK EXPERIENCE
  • Experience in IT security and risk management, preferably in financial services sector
  • Experience in IT controls…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search