Join the Mizuho team as a Security & Identity GRC Analyst!
Major Duties & Responsibilities:
The Security & Identity GRC Analyst will report to the IT Security GRC Lead. This position will focus on collaboration with the broader Security and Identity teams, the IT GRC function, Senior Management, the Information Security Office, Internal and External Auditors, and Regulators. The selected individual will have demonstrated the ability to collaborate with a variety of teams in all areas of an organization in order to achieve objectives. Reviewing and challenging Security Metrics and progressing the maturity of the Security Program is key to the success of this role. In addition, the individual will track and enable projects, initiatives, and other deliverables that fall under the Identity and Access Management (IAM) teams. The candidate will be accountable for the successful execution of the various projects under their remit. They will be involved in all phases of the project lifecycle to aid in successful project completion.
Monitor Regulatory Changes and impacts to the Firm's Security Program to maintain good standingWork with Security, Infrastructure, and Application teams to obtain and challenge evidence related to Cyber Security Audits and Regulatory InquiriesImplement, Monitor, and Challenge KRIs and KPIs to help drive Security Program performance.Interface with Senior Management, Information Security Office, Auditors, Regulators, and other Stake Holders to communicate Security Program performanceAssist in overseeing and executing Cyber Focused Programs and Projects to drive Security MaturityAssist in overseeing Risk Assessments pertaining to Security and Identity domainsWrite, review and challenge security policies, standards and procedures across the company to support business, strategic, security and regulatory needsManage Mitigation of identified compliance risks and issuesCreate and update reports and presentations for Senior Management, Board Members, Regulators, and other individuals as neededAssist in setting direction and prioritization for the Security and Identity roadmap and strategySupervise third-party vendors for various projects or services.Create operational capabilities within the security organization.Work with vendors and colleagues to assess different technologies and determine their impact on security.Troubleshoot security issues and assist with security incident responses and forensic investigations as needed.Prepare risk reports to senior management including security incidents, system vulnerabilities, and ongoing compliance functions.
Qualifications & Requirements:
At least 5+ years security domain related experience, preferably within a financial services firm.2-4+ years' of experience in a similar position.Educational background with BS / MS in Information Technology, Computer Science, Engineering or related area.Strong written and verbal communication skills. Ability to clearly articulate ideas, solutions etc.Organized with Strong Project Management skills.Strong knowledge of internet, web, application and network security platforms.Strong knowledge of Linux & Windows operating system security.Strong knowledge of Identity Governance & Administration tools/systems.Ability to perform and interpret vulnerability assessments.
Additional Qualifications:
Possess security certifications (CISSP, CISM, CISA, GSEC, etc.)Experience with project management and industry best practicesExperience working within the Financial Services industryExperience in support projects and able to handle issues against defined SLA / KPIClear communication & presentation skills, and the ability to articulate complex issues conciselyLeadership, relationship-building and influencing skills to drive agendas across a number of teamsProven track record of effectively interacting with senior managementAbility to work strategically and collaboratively across departmentsExcellent organizational skills with the ability to multi-task, prioritize competing demands, be versatile and action-oriented The expected base salary ranges from $75k-$150k. Salary offers are based on a wide range of factors including relevant skills, training, experience, education, and, where applicable, certifications and licenses obtained. Market and organizational factors are also considered. In addition to salary and a generous employee benefits package, successful candidates are eligible to receive a discretionary bonus.
#LI-Hybrid
Other requirements
Mizuho has in place a hybrid working program, with varying opportunities for remote work depending on the nature of the role, needs of your department, as well as local laws and regulatory obligations.
Company Overview
Mizuho Americas is the fastest growing region within Mizuho Financial Group (NYSE: MFG), the 15th largest bank in the world with total assets of approximately $2 trillion. Mizuho Americas is a leading provider of corporate and investment banking services to clients in the US, Canada, and Latin America and our capabilities span investment and corporate banking, capital markets, equity and fixed income sales & trading, derivatives, FX, custody and research. Mizuho Americas employs more than 3,000 professionals across 15 offices within the Americas. Learn more at www.mizuhoamericas.com.
Mizuho Americas offers a competitive total rewards package.
We are an EEO/AA Employer -M/F/Disability/Veteran.
We participate in the E-Verify program.
We maintain a drug-free workplace and perform pre-employment substance abuse testing.
#LI-MIZUHO