VAPT, Splunk, Infrastructure Architecture

Mizuho Global Services Pvt Ltd (MGS) is a subsidiary company of Mizuho Bank, Ltd, which is one of the largest banks or so called ‘Mega Banks’ of Japan. MGS was established in the year 2020 as part of Mizuho’s long-term strategy of creating a captive global processing centre for remotely handling banking and IT related operations of Mizuho Bank’s domestic and overseas offices and Mizuho’s group companies across the globe.

At Mizuho we are committed to a culture that is driven by ethical values and supports diversity in all its forms for its talent pool. Direction of MGS’s development is paved by its three key pillars, which are Mutual Respect, Discipline and Transparency, which are set as the baseline of every process and operation carried out at MGS.

1) VAPT SME

About the Role:

We are seeking a highly skilled and experienced Vulnerability Assessment SME to join our dynamic team. You will play a critical role in safeguarding our organization's information assets by identifying, assessing, and mitigating vulnerabilities.

Roles and Responsibilities:

· Conduct vulnerability assessments using industry-leading tools (e.g., Nessus, Tenable, Qualys).

· Analyze vulnerability assessment results to identify and prioritize risks.

· Develop and maintain vulnerability management processes and procedures.

· Coordinate vulnerability remediation activities with relevant stakeholders.

· Perform penetration testing to assess the effectiveness of security controls.

· Stay up-to-date on the latest security threats and vulnerabilities.

Relevant Skills and Experience:

· 5-10 years of experience in vulnerability assessment, penetration testing, or a related field.

· Strong understanding of vulnerability management concepts, principles, and best practices.

· Proficiency in using vulnerability assessment tools (e.g., Nessus, Tenable, Qualys).

· Experience in conducting penetration testing using various methodologies (e.g., black box, gray box, white box).

· Knowledge of common security threats, vulnerabilities, and attack vectors.

· Experience with network and system security tools (e.g., firewalls, intrusion detection systems, antivirus).

· Experience with scripting languages (e.g., Python, PowerShell).

· Experience with cloud security (e.g., AWS, Azure, GCP).

Qualifications:

· Bachelor's degree in computer science, information technology, or a related field.

· Security certifications (e.g., CISSP, CISM, CEH, OSCP).

· Strong problem-solving and analytical skills.

· Excellent communication and interpersonal skills.

· Ability to work independently and as part of a team.

Additional Skills (Preferred):

· Experience with source code analysis tools.

· Experience with web application security testing.

· Experience with mobile application security testing.

· Experience with security incident response.

2) Architecture

About the Role:

We are looking for professionals—a Senior Architect to join our team focused on application and infrastructure security hardening. These individuals will play a crucial role in enhancing the security posture of the organization's platforms by providing actionable hardening guidance, assisting with remediation efforts, and collaborating with teams to ensure compliance with security standards.

Roles and Responsibilities:

Application and Infrastructure Security Hardening:

Deliver clear and practical security hardening guidance for various platforms, including Web Servers, Databases, Operating Systems, and Infrastructure components.

Document security hardening processes comprehensively to ensure clarity and repeatability.

Provide remediation support to address vulnerabilities identified during hardening audits.

Collaborate with application and infrastructure teams to implement security configurations based on identified hardening requirements.

Conduct periodic reviews of platforms to detect deviations from the hardening benchmarks and facilitate immediate rectifications.

Scope of Work:

Coordinate efforts with offshore teams to research optimal security configurations tailored to the organization’s needs.

Partner with infrastructure and application teams to apply updated system configurations and monitor adherence to security guidance.

Assist in periodic assessments of system platforms, ensuring that deviations from security standards are promptly addressed.

Recommend and implement best practices to maintain a secure environment across multiple system layers.

Relevant Skills and Experience:

For Senior Architecture Resource:

5–7 years of experience in application and infrastructure security domains.

Expertise in documenting and guiding application/system hardening processes.

Proven track record of implementing security configurations across complex platforms.

Strong ability to coordinate remediation tasks with diverse teams.

Qualifications:

Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or a related field.

Relevant certifications in security hardening or infrastructure hardening are preferred.

Proven experience in identifying vulnerabilities and collaborating on remediation efforts.

Additional Skills (Preferred):

Familiarity with automated tools and frameworks for ensuring compliance with hardening standards.

Strong communication skills to simplify security configurations for diverse teams while maintaining technical accuracy.

Adaptable research capabilities to align hardening recommendations with industry best practices.

3.Enterprise Security

Develop and fine-tune SPL queries for alerts, reports, and dashboards.

Execute Splunk application upgrades to maintain system robustness.

Onboard data sources efficiently, ensuring data completeness for security applications.

Configure and validate Splunk Use Cases aligned with organizational security requirements.

Security and Monitoring (SIEM):

Perform Detection Engineering tasks to identify potential security configuration blind spots.

Proactively address “missing” data sources to improve overall system integrity and response quality.

SOAR (XSOAR):

Develop and modify SOAR playbooks to optimize workflows or create new ones as needed.

Ensure seamless integration of SOAR workflows with existing security systems.

Linux Administration:

Implement syslog configurations and manage log rotation to maintain system performance and reliability.

Deploy and configure virtual appliances for integrating security tools into IT infrastructure.

Additional Scope:

Stand up and configure security servers and appliances for improved data monitoring environments.

Efficient onboarding of logs from diverse systems to create a robust repository for analytics and validation.

Configure XSOAR environments while tailoring workflows to suit specific operational needs.

Develop and modify SOAR playbooks to optimize workflows or create new ones as needed.

Ensure seamless integration of SOAR workflows with existing security systems.

Relevant Skills and Experience:

For Junior Engineering Resources:

2–4 years of experience supporting security-based system configurations.

Understanding of Splunk features like dashboards and data onboarding.

Familiarity with basic Linux configurations and SOAR playbook scripting techniques.

Qualifications:

Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or a related field.

Relevant certifications in Splunk Enterprise Security or SOAR tools are a strong advantage.

Excellent troubleshooting capabilities and a proactive approach to system fortification.

Additional Skills (Preferred):

Detection of advanced security threats through specialized SIEM analysis techniques.

High adaptability in handling virtual appliance setups and large-scale log configurations.

Strong interpersonal skills to collaborate across teams while ensuring adherence to best practices aligned with the organization’s security framework.

Address : Address:

Mizuho Global Services India Pvt. Ltd,

11th Floor, Q2 Building Aurum Q Park, Gen 4/1,

Ttc, Thane Belapur Road, MIDC Industrial Area,

Ghansoli, Navi Mumbai- 400710.

Please Note : Candidates residing within 20 KMs will be preferred.

Interested candidates send resume on mgs.rec@mizuho-cb.com along with the below details.

Current CTC

Expected CTC

Notice period

Relevant Experience

Available for F2F ?

thanks