Assistant Vice President - Information Security Analyst
Join to apply for the Assistant Vice President - Information Security Analyst role at Mizuho
Assistant Vice President - Information Security Analyst
Join to apply for the Assistant Vice President - Information Security Analyst role at Mizuho
Get AI-powered advice on this job and more exclusive features.
We are looking for an AVP to join our Cyber Security Team in London.
Duties & Responsibilities
Incident Response and Security Monitoring:
* Analyse, develop and refine security monitoring controls, practices and use-cases to detect anomalies and incidents across the applications and infrastructure estate.
* Monitor activity upon specified information systems and devices. Identify and report suspicious, improper, malicious or harmful activity. To include regular and ad-hoc reporting.
* Undertake complex IR investigations into specific threats or security incidents both internal and external.
* Identification, escalation and reporting of security incidents and breaches. Co-ordination of responses to these breaches, assess the impact and improving the overall Incident Response process.
* Experience in incident investigation, and analytics of network and host-based artifacts.
* Experience with IR and Forensics tools, packet inspection tools
Security Engagement & Best Practice
* Work alongside the company’s independent penetration testing program.
* Work closely with other technical and business departments to mitigate security/cyber risk:
* Implement SOPs and refine processes.
* Identify potential security threats and risks that may need review.
* Assist in risk assessment/acceptance/remediation processes
* Develop and mature the Incident Response and Threat hunting capabilities.
* Implementation of Incident Response frameworks/methodologies such as Kill Chain, MITRE, Threat Modelling, Diamond Model.
* Development of Threat Intelligence capabilities and integration of such controls with the security monitoring framework.
* Development of Security monitoring use cases and implementing custom IOC within the controls to detect suspicious and unusual traffic.
* Development of Vulnerability Management program within the organisation.
* Provide support to the IR practises such as IR investigations, and forensics procedures/processes.
Other
* Providing subject matter expertise in Cyber Security as needed.
* Contribute to the design and delivery of security monitoring and control effectiveness reporting measures.
* Availability to cover anywhere from 7am to 7pm on all business days noting that ad-hoc cover outside of the normal work day may sometimes be needed.
Qualifications, Skills & Experience
* Relevant experience in an Incident Response and Security Monitoring;
* Relevant experience in working with threat modelling frameworks.
* Experience in finding, analysing, and extracting attack related payload from packet captures and host forensics images.
* Experience in a banking, investment banking or investment management environment;
* Managing cyber security incidents;
* Experience working with Cyber Security and Incident Response frameworks such as NIST, Kill Chain, Attack life Cycle, & MITRE).
* Relevant experience with MITRE Att&Ck alignment with security monitoring use cases.
* Relevant experience with cloud security assessments aligning it to industry standard benchmarking such as CIS.
* In depth knowledge of a broad spectrum of security technologies incorporating network, operating system and application security;
* Working knowledge over a range of operating systems and platforms including: Windows Server, Windows XP, UNIX (Solaris, Linux), Stratus;
* Working knowledge of networks: LAN, WAN, routers (Cisco), switches (Cisco), Firewalls, remote access solutions, VPNs;
* In-depth experience with SIEM tools with a strategic oversight on appropriate use case methodologies. Implementation of robust security monitoring use cases and Threat hunting capabilities.
* Incident Response experience with forensics capabilities. Experience with packet analysis on wireshark or any other network protocol analyser including hands on exp with IR tools.
* Experience with Advance threat detection, IAM solutions and DLP is preferred.
* Working knowledge of security products: network based intrusion prevention systems, vulnerability assessment and compliance monitoring solutions, content management tools.
* Strong knowledge on Vulnerability Management, with proven record of Remediation plans to reduce the threats and risk to Information Assets.
* Understanding of VMware technology stack.
* Full understanding of CIS security standards, assessment of the builds to ensure the alignment with CIS benchmarking and working with business to achieve the target state.
* Knowledge of SSL inspection and encryption methods.
* Sound knowledge and understanding of information security principles and best practices;
* In-depth understanding of legislation affecting security, privacy and systems assurance; experiencing working to recognised standards – e.g. NIST, COBIT.
* GCIA, GCIH, GCFA or equivalent.
We champion a flexible work environment, as we understand the need for people to meet other commitments or simply strike a good work-life balance.
At Mizuho we are committed to supporting equality and diversity, and seek to create a workplace that is fully inclusive. We welcome applications from all sections of the community that we operate in and from all ethnic backgrounds, sexual orientation, beliefs, gender identities and disabilities.
If you require more information about our equal opportunities policy or wish to discuss any accessibility requirements or reasonable adjustments please contact the recruitment team – recruitment@mhcb.co.uk and we will be happy to help.
Seniority level
* Seniority level
Mid-Senior level
Employment type
* Employment type
Full-time
Job function
* Job function
Information Technology
Referrals increase your chances of interviewing at Mizuho by 2x
Sign in to set job alerts for “Vice President Information Security” roles.
London, England, United Kingdom 18 hours ago
London, England, United Kingdom 2 days ago
London, England, United Kingdom 5 hours ago
Vice President, Business Analyst (Operations - Markets and Securities)
London, England, United Kingdom 3 days ago
London, England, United Kingdom 3 days ago
Vice President – Business Analyst (Operations | Markets & Securities)
Head of Information Security - Contractor
London, England, United Kingdom 1 week ago
Securities Services - End to End Onboarding Product Development - Vice President
London, England, United Kingdom 2 weeks ago
London, England, United Kingdom 1 week ago
Head of Global Information Security Transformation & EMEA BISO
London, England, United Kingdom 3 weeks ago
London, England, United Kingdom 1 day ago
London, England, United Kingdom 6 days ago
London, England, United Kingdom 1 week ago
London, England, United Kingdom 1 week ago
London, England, United Kingdom 1 week ago
London, England, United Kingdom 14 hours ago
Data Owner – Client Data Domain Vice President
London, England, United Kingdom 4 days ago
Vice President, Senior Audit Manager, Cybersecurity and Infrastructure
London, England, United Kingdom 3 days ago
Stratford, England, United Kingdom 20 hours ago
Assistant Vice President, Network and Security Engineer
London, England, United Kingdom 1 week ago
London, England, United Kingdom 4 months ago
London, England, United Kingdom 2 weeks ago
Data Owner – Client Data Domain Vice President
London, England, United Kingdom 2 weeks ago
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr