Job Description

Company Profile
MIZUHO BANK, LTD. IS A SUBSIDIARY OF THE JAPAN-BASED MIZUHO FINANCIAL GROUP, INC. (LISTED ON THE TOKYO STOCK EXCHANGE AND NYSE) AND IS ONE OF THE LARGEST FINANCIAL SERVICES COMPANIES IN THE WORLD. MIZUHO BANK, LTD. PROVIDES FINANCIAL AND STRATEGIC SOLUTIONS FOR THE INCREASINGLY DIVERSE AND SOPHISTICATED NEEDS OF ITS CLIENTS WITH OFFICES LOCATED IN ALL THE MAJOR CITIES OF THE WORLD SUCH AS TOKYO, NEW YORK, LONDON, HONG KONG AND SINGAPORE.

Job Responsibilities

Regional Information Security Officer (ISO) to Asia Pacific Corporate Function and Coordination Department (APCF) is responsible for managing ISO team as section head and report to APAC Regional Chief Information Security Officer (CISO), managing 15 countries in Asia Pacific, to oversight countries system and technology from information security perspective and lead countries IT to comply the region initiative made by CISO

Managing Cyber Security Risk

• Ensure that country/ region\'s exposure to each form of technology / cyber risk is understood and managed. Act as the first line risk owner at the appropriate level.
• Effective management of all technology/ cyber risks, especially high/ significant rated based on bank\'s risk appetite. Timely and proactive update to relevant stakeholder including relevant forums/ committees
• Act quickly and decisively when any risk and control weakness becomes apparent and ensure they are addressed within an appropriate timeframe and escalated through the relevant forums/ committees.
• Perform the Cyber Security related tasks and team roles such as:

• Proactive efforts against potential cyber-attacks
• Introduction of systems such as for traffic monitoring systems against targeted cyber-attacks
• Regular VAPT for the early detection of vulnerabilities
• Formulation and Implementation of training programs on Cyber Security
• Response to the authorities
• Coordinating and responding to external audits field work

Governance
Support the Regional CISO to implement group policies and procedures in the region relates to technology & digital agenda. Ensure adequate change management process is in place to govern Project Change Management. Establish and maintain rigor in monitoring performance against budgets. Balance business performance delivery and cost management with risk and control matters to ensure that it does not materially threaten the Group, remaining within risk appetite

Job Requirements
Job Requirements

\xc2\xb7 Minimum of 15 years\' experience in information security related tasks.
\xc2\xb7 Strong knowledge in security solutions at various levels - application, infrastructure, and data.
\xc2\xb7 Experience in building, maintaining and operating various security tools.
\xc2\xb7 Hands on experience in various security systems such as firewalls, EDR / XDR, authentication systems, log management, content filtering, and web proxies.
\xc2\xb7 Good understanding of various security frameworks such as MITRE ATT&CK and NIST Cybersecurity Framework
\xc2\xb7 Professional certifications such as CISSP, CISA, and CISM.
\xc2\xb7 Effective communication skills with senior management including presentations and report writing skills.
\xc2\xb7 Analytical mindset and problem-solving abilities
\xc2\xb7 Good understanding of the cloud environment.
\xc2\xb7 Familiarity in scripting or automation is an advantage
\xc2\xb7 Experience in financial services or regulated environments is preferred

eFinancialCareers