Senior Penetration Tester, Vice President

Mitsubishi UFJ Financial Group

Jersey City, New Jersey

JOB DETAILS
SKILLS
Applications Security, Artificial Intelligence (AI), Cloud Computing, Coaching, Computer Science, Computer Security, Continuous Improvement, County Ordinances, Develop Test Tools, Diversity, Documentation, Documentation Standards, Finance, Financial Regulations, Financial Services, Futures, GPEN - GIAC Penetration Tester, Genetics, Infrastructure as a Service (IaaS), Internal Audit, Leadership, Legal, Linux Operating System, Machine Tool, Maintain Compliance, Mentoring, Microsoft Active Directory, Microsoft Exchange Server, Microsoft Windows Operating System, Military, Mobile Devices, Operating Systems, Operations Processes, Penetration Testing, Process Development, Productivity Management, Project Execution, Project/Program Management, Quality Assurance, Quality Assurance Methodology, Quality Management, Regulatory Requirements, Risk, Risk Management, Securities, Security Analysis, Software as a Service (SaaS), Standards Development, State Laws and Regulations, Strategic Planning, Team Lead/Manager, Technical Leadership, Test Plan/Schedule, Test Program, Test Scenario, Test Tools, Testing, Time Management, Unix Operating Systems
LOCATION
Jersey City, New Jersey
POSTED
6 days ago

Do you want your voice heard and your actions to count?

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.

With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.

Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.

The selected colleague will work at an MUFG office or client sites four days per week and work remotely one day. A member of our recruitment team will provide more details.

Job Summary:

The Penetration Testing Lead (Vice President) serves as the senior hands‑on leader and standard bearer for the internal penetration testing function. This role combines deep technical expertise with day‑to‑day team leadership, ensuring consistent, high‑quality execution of penetration testing assessments across MUFG’s environment.

Acting as a player‑coach, this individual leads by example—providing hands‑on guidance in complex testing scenarios while developing the technical and professional capabilities of the team. The role is responsible for driving short‑ and medium‑term execution, maintaining delivery quality, and ensuring alignment with organizational priorities so that senior leadership can focus on broader strategic initiatives.

This position evaluates the security posture of traditional enterprise systems in a highly regulated environment, focusing on identifying exploitable vulnerabilities, validating controls, and delivering clear, actionable remediation guidance to reduce enterprise risk.

Key Responsibilities:

Team Leadership & Development

  • Serve as the day‑to‑day leader for the penetration testing team, setting expectations for quality, consistency, and delivery
  • Act as a player‑coach by providing hands‑on technical guidance, mentorship, and real‑time support during engagements
  • Develop and manage the professional development plans, including technical growth and career progression for direct reports
  • Lead by example and mentor team members in the adoption of next generation penetration testing tactics, techniques, procedures, and tooling including strategies and tools for testing using AI in SaaS, and Hybrid environments.
  • Foster a high‑performance team culture focused on accountability, collaboration, and continuous improvement
  • Review team outputs to ensure high standards for technical accuracy, clarity, and risk articulation

Operational Execution

  • Own and manage the team’s short‑ and medium‑term deliverables, ensuring engagements are completed on time and at a high standard
  • Coordinate resources and priorities across multiple concurrent testing efforts
  • Lead the operational adoption of AI and other automated solutions to expand the capabilities and scope of the penetration testing team raising the skill floor and expanding coverage to more systems and services
  • Act as an escalation point for complex testing issues and high‑risk findings

Technical Oversight & Quality Assurance

  • Provide technical oversight across application and infrastructure penetration testing engagements
  • Contribute to the design and architecture of next generation penetration testing solutions including integrating AI into penetration testing
  • Validate findings, severity ratings, and remediation guidance for consistency and accuracy
  • Ensure adherence to established methodologies, tools, and reporting standards
  • Continuously improve testing approaches, methodologies, and repeatable processes

Program Development & Project Execution

  • Lead and drive internal projects such as deployment of new security testing tools and development of internal testing infrastructure
  • Design and optimize workflows to improve team efficiency and testing coverage
  • Apply project management discipline to plan, execute, and deliver team initiatives
  • Lead the integration of frontier models and agentic solutions into penetration testing procedures to enable sustainable testing at scale

Standards, Documentation & Governance

  • Develop and maintain documentation that defines testing standards, methodologies, and operating procedures
  • Establish consistent processes for engagement execution, reporting, and quality assurance
  • Ensure alignment with internal policies, audit requirements, and regulatory expectations

Stakeholder Engagement

  • Translate technical findings into clear, risk‑based insights for stakeholders
  • Partner with engineering, infrastructure, and security teams to improve overall security posture
  • Provide operational visibility and execution support to the Director

Qualifications:

  • 10+ years of experience in penetration testing or offensive security
  • 2+ years of experience leading teams, mentoring staff, or acting in a technical lead / player‑coach capacity
  • Experience conducting penetration testing in highly regulated environments (e.g., financial services)
  • Proven ability to manage projects and drive execution of team‑level initiatives
  • Strong experience developing documentation, standards, and repeatable operational processes
  • Familiarity with industry frameworks such as OWASP and MITRE ATT&CK

Technical Expertise:

Strong hands‑on experience in multiple of the following areas, with the ability to guide others:

  • Application and API security testing
  • Network and infrastructure penetration testing
  • Identity and enterprise environments (Active Directory, endpoints, mobile devices)
  • Operating systems (Windows, Linux/Unix)
  • Databases and data platforms
  • AI development

Preferred / Differentiating Skills

  • Experience with cloud, SaaS, and IaaS penetration testing and security assessments
  • Exposure to AI/ML systems and associated security risks (e.g., LLM misuse scenarios)
  • Experience building or maturing an internal penetration testing program
  • Relevant certifications (OSCP, GXPN, GPEN, GWAPT, or similar)

Education:

•Bachelor's degree in Computer Science or a closely-related discipline, or an equivalent combination of formal education and experience

Visa sponsorship/support is based on business needs. We do not anticipate providing visa sponsorship/support for this position.”

The typical base pay range for this role is as follows:

  • New York / New Jersey: $158k – $194k

depending on job-related knowledge, skills, experience and location. This role may also be eligible for certain discretionary performance-based bonus and/or incentive compensation. Additionally, our Total Rewards program provides colleagues with a competitive benefits package (in accordance with the eligibility requirements and respective terms of each) that includes comprehensive health and wellness benefits, retirement plans, educational assistance and training programs, income replacement for qualified employees with disabilities, paid maternity and parental bonding leave, and paid vacation, sick days, and holidays. For more information on our Total Rewards package, please click the link below.

Our hybrid work schedule is four days on-site and work remotely one day per week.

MUFG Benefits Summary

We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws (including (i) the San Francisco Fair Chance Ordinance, (ii) the City of Los Angeles’ Fair Chance Initiative for Hiring Ordinance, (iii) the Los Angeles County Fair Chance Ordinance, and (iv) the California Fair Chance Act) to the extent that (a) an applicant is not subject to a statutory disqualification pursuant to Section 3(a)(39) of the Securities and Exchange Act of 1934 or Section 8a(2) or 8a(3) of the Commodity Exchange Act, and (b) they do not conflict with the background screening requirements of the Financial Industry Regulatory Authority (FINRA) and the National Futures Association (NFA). The major responsibilities listed above are the material job duties of this role for which the Company reasonably believes that criminal history may have a direct, adverse and negative relationship potentially resulting in the withdrawal of conditional offer of employment, if any.

The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required of personnel so classified.

We are proud to be an Equal Opportunity Employer and committed to leveraging the diverse backgrounds, perspectives and experience of our workforce to create opportunities for our colleagues and our business. We do not discriminate on the basis of race, color, national origin, religion, gender expression, gender identity, sex, age, ancestry, marital status, protected veteran and military status, disability, medical condition, sexual orientation, genetic information, or any other status of an individual or that individual’s associates or relatives that is protected under applicable federal, state, or local law.

 

About the Company

M

Mitsubishi UFJ Financial Group