Mizuho Financial

Cyber Defense, Adversary Emulation

Mizuho Financial$111K — $185K *
Finance & Insurance
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • 10+ years of security domain experience, preferably in financial services
  • 5+ years of experience in a senior position related to vulnerability management
  • Proven experience in a vulnerability management program in a large enterprise
  • Strong understanding of cybersecurity risk management and standards (SOX, NIST, FISMA)
  • Ability to manage various scanning technologies across tech stacks
  • Excellent communication and leadership skills
  • Educational background in Information Technology, Computer Science, Engineering or related field

Responsibilities

  • Oversee the Threat and Vulnerability Management program
  • Prioritize work among full-time staff and third-party resources
  • Manage tools and processes related to threat management
  • Ensure effective reporting of security activities to senior leadership
  • Manage relationships with other Security and IT teams
  • Provide expertise on security incidents
  • Analyze threat intelligence and produce vulnerability reports

Benefits

  • Hybrid working program with opportunities for remote work
  • Generous employee benefits package
  • Discretionary bonus eligibility
Full Job Description

Summary

In this role you will serve as a senior leader within the Cyber Defense organization, responsible for the day‑to‑day oversight and management of the Threat and Vulnerability Management (TVM) program for Mizuho Americas Services. You will partner closely with Information Security, Infrastructure, Application, and third‑party teams to identify, prioritize, and remediate threats and vulnerabilities across the enterprise.

The role combines hands‑on technical expertise with strategic leadership, ensuring comprehensive threat identification, effective risk reporting, and continuous enhancement of security processes through automation and integration. The ideal candidate also provides subject‑matter expertise during security incidents and oversees external security consultants and vendors.

Responsibilities

  • Oversee the Threat and Vulnerability Management program
  • Prioritize work amongst full-time staff and third-party resources
  • Oversee tools, technologies, and processes related to threat management
  • Ensure effective reporting of security activities, reporting status, risks, issues, and escalations to senior leadership (CISO, CIO, and other senior stakeholders)
  • Manage relationships with other Security, Infrastructure, and Application teams to identify, mitigate, and remediate vulnerabilities and other threats in the environment
  • Provide expertise on Security Incidents
  • Map TTPs and CVEs to identified threats and prioritize appropriately
  • Recommend and implement enhancements to existing processes, focusing on automation and integration between other security tools
  • Ensure comprehensive threat identification of the entire Mizuho enterprise
  • Review daily, weekly, and monthly security reports for any anomalies or issues
  • Maintain documentation on security architecture, procedures, configurations
  • Project based work
  • Provide feedback to MAS teams to implement well engineered solutions to improve security posture
  • Identify workflow areas to proactively address potential vulnerabilities
  • Work with colleagues and vendors to assess different technologies and determine their impact within the Mizuho environment
  • Provide security requirements for the design, development, engineering, and implementation of hardware, networks, and applications
  • Conduct lessons learned exercises and RCAs after security incidents, detection of major system vulnerabilities, and ongoing compliance violations
  • Analyze threat intelligence, vulnerability and security assessments; produce vulnerability reports and work with IT teams to correct or mitigate found deficiencies

Qualifications

  • At least 10+ years9 security domain related experience, preferably within a financial services firm
  • 5+ years of experience in a similar position
  • Proven experience in a vulnerability management program within a large enterprise.
  • Strong understanding of cybersecurity risk management and information security standards (SOX, NIST, FISMA, etc.)
  • Ability to manage and use various scanning technologies across different layers of the tech stack, such as SAST, DAST, cloud infrastructure
  • Strong understanding of OWASP and other common Application Security issues and frameworks.
  • Fundamental understanding of vulnerability reporting and management processes or tools
  • Solid grasp and understanding of vulnerability scoring and classification methodologies
  • Excellent communication and leadership skills, with the ability to manage and prioritize multiple projects and initiatives
  • Strong knowledge of internet, web, application and network security platforms.
  • Strong knowledge of Linux & Windows operating system and security functions
  • Strong knowledge of Cloud Deployment and management
  • Develop, document, and maintain policies, procedures, and training plans for system administration and appropriate use
  • Strong written and verbal communication skills. Ability to clearly articulate ideas, solutions etc.
  • Educational background with BS / MS in Information Technology, Computer Science, Engineering or related area

Additional Qualifications

  • Possess security certifications (CISSP, CISM, CISA, GSEC, etc.)
  • Experience with project management and industry best practices
  • Experience working within the Financial Services industry
  • Experience in support projects and able to handle issues against defined SLA / KPI
  • Clear communication & presentation skills, and the ability to articulate complex issues concisely
  • Leadership, relationship-building and influencing skills to drive agendas across a number of teams
  • Proven track record of effectively interacting with senior management
  • Ability to work strategically and collaboratively across departments
  • Excellent organizational skills with the ability to multi-task, prioritize competing demands, be versatile and action-oriented

The expected base salary ranges from $111k-$185k. Salary offers are based on a wide range of factors including relevant skills, training, experience, education, and, where applicable, certifications and licenses obtained. Market and organizational factors are also considered. In addition to salary and a generous employee benefits package, successful candidates are eligible to receive a discretionary bonus.

#LI-Hybrid

Other requirements

Mizuho has in place a hybrid working program, with varying opportunities for remote work depending on the nature of the role, needs of your department, as well as local laws and regulatory obligations. Roles in some of our departments have greater in-office requirements that will be communicated to you as part of the recruitment process.

About Mizuho Financial

Mizuho Financial Group, Inc. is a Japanese banking holding company headquartered in the ?temachi district of Chiyoda, Tokyo, Japan. The name "mizuho" literally means "abundant rice" in Japanese. It holds assets in excess of $1.8 trillion US dollars through its control of Mizuho Bank, Mizuho Corporate Bank, and other operating subsidiaries. The company's combined holdings form the second largest financial services group in Japan. Its banking businesses rank third in Japan after Mitsubishi UFJ Financial Group and Sumitomo Mitsui Financial Group. It is the 15th largest banking institution in the world by total assets as of December 2018.
Learn more about Mizuho Financial
Size
54,492 employees
Market Cap
$35 billion
Industry
Net Income
$84.4 billion
5 Year Trend
-0.6%
NASDAQ

Similar Jobs

More Jobs at Mizuho Financial

More Finance & Insurance Jobs

Find similar Cyber Defense, Adversary Emulation jobs: