Walkin -VAPT/Engineering (Splunk)/Infra Architecture(system hardening)

WALKIN DRIVE -

11th, 12th Sept:between 2 pm to 5 pm only.

13th Sept, Saturday:between 9 am to 12 pm only.

Mizuho Global Services Pvt Ltd (MGS) is a subsidiary company of Mizuho Bank, Ltd, which is one of the largest banks or so called Mega Banks of Japan. MGS was established in the year 2020 as part of Mizuhos long-term strategy of creating a captive global processing center for remotely handling banking and IT related operations of Mizuho Banks domestic and overseas offices and Mizuhos group companies across the globe.

At Mizuho we are committed to a culture that is driven by ethical values and supports diversity in all its forms for its talent pool. Direction of MGSs development is paved by its three key pillars, which are Mutual Respect, Discipline and Transparency, which are set as the baseline of every process and operation carried out at MGS.

Whats in it for you?

• Immense exposure and learning
• Excellent career growth
• Company of highly passionate leaders and mentors
• Ability to build things from scratch

Company website

1)

About the Role:

We are seeking a highly skilled and experienced Vulnerability Assessment SME to join our dynamic team. You will play a critical role in safeguarding our organization's information assets by identifying, assessing, and mitigating vulnerabilities.

Roles and Responsibilities:

• Conduct vulnerability assessments using industry-leading tools (e.g., Nessus, Tenable, Qualys).
• Analyze vulnerability assessment results to identify and prioritize risks.
• Develop and maintain vulnerability management processes and procedures.
• Coordinate vulnerability remediation activities with relevant stakeholders.
• Perform penetration testing to assess the effectiveness of security controls.
• Stay up-to-date on the latest security threats and vulnerabilities.

Relevant Skills and Experience:

• 5-10 years of experience in vulnerability assessment, penetration testing, or a related field.
• Strong understanding of vulnerability management concepts, principles, and best practices.
• Proficiency in using vulnerability assessment tools (e.g., Nessus, Tenable, Qualys).
• Experience in conducting penetration testing using various methodologies (e.g., black box, gray box, white box).
• Knowledge of common security threats, vulnerabilities, and attack vectors.
• Experience with network and system security tools (e.g., firewalls, intrusion detection systems, antivirus).
• Experience with scripting languages (e.g., Python, PowerShell).
• Experience with cloud security (e.g., AWS, Azure, GCP).

Qualifications:

• Bachelor's degree in computer science, information technology, or a related field.
• Security certifications (e.g., CISSP, CISM, CEH, OSCP).
• Strong problem-solving and analytical skills.
• Excellent communication and interpersonal skills.
• Ability to work independently and as part of a team.

Additional Skills (Preferred):

• Experience with source code analysis tools.
• Experience with web application security testing.
• Experience with mobile application security testing.
• Experience with security incident response.

1)

About the Role:

We are seeking three skilled and dedicated professionals to join our team focused on advanced security solutions. This expanding team will include Junior Engineers who will collaborate on security tools management, programming tasks, and detection engineering. These positions aim to fortify our organizations security infrastructure with comprehensive expertise in Splunk Enterprise Security, SOAR solutions, Linux administration, and SIEM capabilities.

Roles and Responsibilities:

Splunk Enterprise Security

• Develop and fine-tune SPL queries for alerts, reports, and dashboards.
• Execute Splunk application upgrades to maintain system robustness.
• Onboard data sources efficiently, ensuring data completeness for security applications.
• Configure and validate Splunk Use Cases aligned with organizational security requirements.

Security and Monitoring (SIEM):

• Perform Detection Engineering tasks to identify potential security configuration blind spots.
• Proactively address missing data sources to improve overall system integrity and response quality.

SOAR (XSOAR):

• Develop and modify SOAR playbooks to optimize workflows or create new ones as needed.
• Ensure seamless integration of SOAR workflows with existing security systems.

Linux Administration:

• Implement syslog configurations and manage log rotation to maintain system performance and reliability.
• Deploy and configure virtual appliances for integrating security tools into IT infrastructure.

Additional Scope:

• Stand up and configure security servers and appliances for improved data monitoring environments.
• Efficient onboarding of logs from diverse systems to create a robust repository for analytics and validation.
• Configure XSOAR environments while tailoring workflows to suit specific operational needs.
• Develop and modify SOAR playbooks to optimize workflows or create new ones as needed.
• Ensure seamless integration of SOAR workflows with existing security systems.

Relevant Skills and Experience:

For Junior Engineering Resources:

• 24 years of experience supporting security-based system configurations.
• Understanding of Splunk features like dashboards and data onboarding.
• Familiarity with basic Linux configurations and SOAR playbook scripting techniques.

Qualifications:

• Bachelors degree in Computer Science, Cybersecurity, Information Systems, or a related field.
• Relevant certifications in Splunk Enterprise Security or SOAR tools are a strong advantage.
• Excellent troubleshooting capabilities and a proactive approach to system fortification.

Additional Skills (Preferred):

• Detection of advanced security threats through specialized SIEM analysis techniques.
• High adaptability in handling virtual appliance setups and large-scale log configurations.
• Strong interpersonal skills to collaborate across teams while ensuring adherence to best practices aligned with the organizations security framework.

2)

About the Role:

Roles and Responsibilities:

Application and Infrastructure Security Hardening:

• Deliver clear and practical security hardening guidance for various platforms, including Web Servers, Databases, Operating Systems, and Infrastructure components.
• Document security hardening processes comprehensively to ensure clarity and repeatability.
• Provide remediation support to address vulnerabilities identified during hardening audits.
• Collaborate with application and infrastructure teams to implement security configurations based on identified hardening requirements.
• Conduct periodic reviews of platforms to detect deviations from the hardening benchmarks and facilitate immediate rectifications.

Scope of Work:

• Coordinate efforts with offshore teams to research optimal security configurations tailored to the organizations needs.
• Partner with infrastructure and application teams to apply updated system configurations and monitor adherence to security guidance.
• Assist in periodic assessments of system platforms, ensuring that deviations from security standards are promptly addressed.
• Recommend and implement best practices to maintain a secure environment across multiple system layers.

Relevant Skills and Experience:

For Senior Architecture Resource:

• 57 years of experience in application and infrastructure security domains.
• Expertise in documenting and guiding application/system hardening processes.
• Proven track record of implementing security configurations across complex platforms.
• Strong ability to coordinate remediation tasks with diverse teams.

Qualifications:

• Bachelors degree in Computer Science, Cybersecurity, Information Systems, or a related field.
• Relevant certifications in security hardening or infrastructure hardening are preferred.
• Proven experience in identifying vulnerabilities and collaborating on remediation efforts.

Additional Skills (Preferred):

• Familiarity with automated tools and frameworks for ensuring compliance with hardening standards.
• Strong communication skills to simplify security configurations for diverse teams while maintaining technical accuracy.
• Adaptable research capabilities to align hardening recommendations with industry best practices.

Address: -

Mizuho Global Services India Pvt.

11th Floor, Q2 Building Aurum Q Park, Gen 4/1,

Ttc, Thane Belapur Road, MIDC Industrial Area,

Ghansoli, Navi Mumbai- 400710.

Please Note :

WALKIN DRIVE -

11th, 12th Sept:between 2 pm to 5 pm only.

13th Sept, Saturday:between 9 am to 12 pm only.