Vice President, IAM Governance Manager in London

Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world's leading financial groups. Across the globe, we're 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long‐term relationships, serving society, and fostering shared and sustainable growth for a better world.

With a vision to be the world's most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career. Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.

As one of the top financial groups globally with a vision to be the world's most trusted, we want to attract, nurture and retain the most talented individuals in the market. The size and range of MUFG's global business creates opportunities for our employees to stretch themselves and reap the rewards, whilst our common values, to behave with integrity and responsibility, and to build a culture which is fair, transparent, and honest, underpin everything that we do.

Number of Direct Reports: 4-5

Main Purpose of the Role

This is a critical role to provide oversight of risks and controls relating to Identity and Access Management (IAM). We are embarking on a multi‐year uplift of our IAM processes and controls, and this role forms a key part of both our remediation plans during and post‐remediation to provide oversight and monitoring of IAM controls to ensure effective operation in line with regulatory and audit expectations. The role will deliver reporting, governance and escalation over all aspects of identity and access management, ensuring all participants are adhering to controls and standards in the IAM lifecycle. A key aspect of this will be the oversight of implementation and operation of the Toxic Combination framework. Reporting to the Head of Technology Risk Governance, you will play a key and highly visible role in the management of IAM risks across the MUFG business.

Key Responsibilities

• Work with the Identity and Access Management team to help define key controls for the IAM function, ensuring they are effectively designed to mitigate IAM risks and meet audit and regulatory requirements.
• Develop Key Control Indicators, Key Risk Indicators and continuous control monitoring strategies to assess the performance of key controls.
• Develop a testing strategy to formally test key IAM controls.
• Work with the IAM team to develop remediation strategies and monitor remediation effectiveness.
• Coordinate and oversee the Toxic Combination framework, ensuring full participation from business and technology stakeholders, and manage the violations process to address identified toxic combinations.
• Coordinate IAM Governance meetings to transparently report IAM processes and controls performance and provide escalation where controls are not adhered to or potential violations arise.
• Serve as the point of contact to ensure IAM risks are addressed via the SDLC process.
• Engage with both internal and external audit regarding identity and access management risk and controls.

Work Experience

• Experience in Identity and Access Management, preferably in financial services sector.
• Experience delivering multi‐year remediation IAM programs.
• Experience working with business stakeholders to define a Toxic Combination framework.
• Very strong understanding of internal, external audit expectations and SOX requirements.
• Good knowledge of control frameworks such as NIST, CRI, DORA, SOX.
• Understanding of investment banking business processes and applications for credible engagement with application owners and business owners on segregation of duties topics.
• Experience developing continuous control monitoring, key risk indicators and key control indicators, with automation of reporting and data production where possible.
• Experience developing effective and efficient control testing strategies.
• Excellent written and verbal communication skills.

Personal Requirements

• Self‐motivated and proactive.
• Balance risk with opportunity and prioritize.
• Ability to influence up to senior levels of the organisation.
• Excellent reporting and presentation skills.
• Confident in delivering difficult messages to senior management.
• Organised and results‐focused.
• Innovative communicator who uses data to simplify complex concepts for technical and non‐technical audiences.
• Collaboration and partnership building with technical and non‐technical members.
• Strategic thinking with a structured and logical approach to work.
• Ability to work to tight deadlines.
• Logical and objective even under pressure.
• Results‐driven with a strong sense of accountability.
• Strong decision‐making skills and sound judgement.
• Meticulous attention to detail.

We are open to considering flexible working requests in line with organisational requirements. MUFG is committed to embracing diversity and building an inclusive culture where all employees are valued, respected and their opinions count. We support the principles of equality, diversity and inclusion in recruitment and employment, and oppose all forms of discrimination on the grounds of age, sex, gender, sexual orientation, disability, pregnancy and maternity, race, gender reassignment, religion or belief and marriage or civil partnership.

We make our recruitment decisions in a non‐discriminatory manner in accordance with our commitment to identifying the right skills for the right role and our obligations under the law.