Job Description

Mizuho Global Services Pvt Ltd (MGS) is a subsidiary company of Mizuho Bank, Ltd, which is one of the largest banks or so called ‘Mega Banks’ of Japan. MGS was established in the year 2020 as part of Mizuho’s long-term strategy of creating a captive global processing center for remotely handling banking and IT related operations of Mizuho Bank’s domestic and overseas offices and Mizuho’s group companies across the globe.

At Mizuho we are committed to a culture that is driven by ethical values and supports diversity in all its forms for its talent pool. Direction of MGS’s development is paved by its three key pillars, which are Mutual Respect, Discipline and Transparency, which are set as the baseline of every process and operation carried out at MGS.

What’s in it for you?

o Immense exposure and learning

o Excellent career growth

o Company of highly passionate leaders and mentors

o Ability to build things from scratch

Know more about MGS: -

https://www.mizuhogroup.com/asia-pacific/mizuho-global-services

Position: - Cybersecurity Security Professional ( third party payroll)

Job Location: - Ghansoli

Shifts: - General shift work from office

Job Summary: -

We are seeking a Cybersecurity Security Professional responsible for URL scanning and vulnerability assessment/management plays a key role in identifying, analysing, and mitigating threats from malicious URLs and system vulnerabilities. This role ensures the organization’s digital assets remain secure by proactively detecting threats and managing weaknesses before they can be exploited.

Roles & Responsibilities:

Threat Monitoring & Incident Response

Oversee Security Operations Center (SOC) activities, including threat detection, monitoring, and response.
Lead incident response planning, execution, and post-incident reviews.
Ensure timely breach notifications in line with regulatory requirements (e.g., 72-hour reporting under PDPA/GDPR).

Technology & Controls

URL Scanning

Monitor and Analyze URLs: Use automated tools to scan incoming and outgoing URLs for signs of phishing, malware, or other malicious activity.
Threat Intelligence Integration: Leverage threat feeds and databases to identify known malicious domains.
Incident Response: Investigate suspicious URLs reported by users or detected by systems, and take appropriate action (e.g., block, quarantine, educate users).
Reporting: Document findings and communicate risks to relevant stakeholders.

Vulnerability Assessment:-

Asset Identification: Maintain an up-to-date inventory of all IT assets (servers, endpoints, applications, etc.).
Conduct Scans: Regularly run vulnerability scans using automated tools (e.g., Nessus, Qualys, Rapid7) to detect security weaknesses.
Analysis and Prioritization: Evaluate scan results, prioritize vulnerabilities based on risk level, exploitability, and business impact.
Remediation Coordination: Work with IT and development teams to address and patch vulnerabilities, track remediation progress.
Validation: Re-scan systems to confirm vulnerabilities have been resolved.

Vulnerability Management

Policy Development: Help define and enforce vulnerability management policies and procedures.
Continuous Improvement: Monitor emerging threats, update scanning tools and processes, and recommend security enhancements.
Compliance: Ensure vulnerability management practices meet regulatory and organizational requirements (e.g., PCI DSS, HIPAA).
Reporting: Provide regular reports to management on vulnerability status, trends, and risk posture.

Stakeholder Engagement

Collaborate with IT, risk, compliance, and business units to embed cybersecurity into operations.
Act as a liaison with regulators, auditors, and external partners on cybersecurity matters.
Present cybersecurity reports and recommendations to executive committees and the board.

Qualifications:

Bachelor’s degree in Information Security, Computer Science, or related field.
Professional certifications such as CISM, CEH, or equivalent would be an advantage

Relevant Experience:

Minimum 3 years of experience in Vulnerability assessment and URL scanning.
Familiarity with URL scanning solutions (e.g., VirusTotal, Cisco Umbrella, Zscaler).
Experience with vulnerability scanners (e.g., Nessus, Qualys, Rapid7).
Familiarity with ITIL frameworks is a plus.
Strong knowledge of cybersecurity frameworks (ISO 27001, NIST CSF, COBIT).
Proficiency in security tools (SIEM, IDS/IPS, IAM, DLP, endpoint protection).
Understanding of risk assessment, remediation workflows, and incident response.
Strong analytical, communication, and documentation skills.
Excellent communication and interpersonal skills, with the ability to collaborate effectively across teams.

Interested can share the updated cv in [email protected] preferred candidates with relevant exp

subjected - Cyber security professional

Address:-

Mizuho Global Services India Pvt. Ltd.

11th Floor, Q2 Building Aurum Q Park,Gen 4/1,

Ttc,Thane Belapur Road ,MIDC Industrial Area,

Ghansoli, Navi Mumbai- 400710.