Security Operations Analyst

Join Mizuho as a Security Operations Analyst!

In this role you will be a leading member of our security operations staff. You will work closely with other members of the Security Operations and Security teams to actively prioritize day to day operational activities, identify and respond to security risks and incidents, recommend and implement solutions, work with affected departments to address the risk, and ensure that the remedy remains in effect. The ideal candidate is experienced in Cyber Defense, response automation, leading as Incident Commander, SOC environment and ability to combine hands-on experience with an understanding of theory and practice. You should have the ability to own, refine, and participate in the end-to-end IR lifecycle to ensure consistency and adherence across the company and subsidiaries. You will also be involved with monitoring and oversight of security consultants and other supporting third parties. Your responsibilities will include operational aspects of monitoring and remediating security events, including working with vendors and other IT departments to address the event and escalating to senior members of the team as necessary .

• Perform day to day administration and support of security infrastructure tools and systems, including but not limited to SIEM, IDS/IPS, EDR, SNOW, Email Protection, and other Network or System Monitoring tools
• Manage relationships with SOC, MSSP, and other security vendors
• Recommend and implement enhancements to existing processes, focusing on automation and integration between other security solutions.
• Review security logs of critical systems to identify risks, security threats, or configuration errors
• Review daily, weekly, and monthly security reports for any anomalies or issues
• Provide first level support on security issues and guidelines from end-users, developers, desktop-support specialists and system administrators
• Troubleshoot security issues and assist with security incident responses and forensic investigations
• Prepare Incident Response documentation, IR Playbooks, KRI\KPIs, clearly communicate technical details for Senior Management
• Lead and contribute to detection and response capabilities, focusing on creating high fidelity alerts and developing tuning adjustments for repeated events
• Perform forensic activities along with malware analysis of suspicious files during major cyber incidents
• Hands on experience with SIEM/SOAR platform, playbook creation and detection models to reduce alert fatigue and improve detection accuracy

• Implement well engineered solutions to improve security posture
• Work with colleagues and vendors to assess different technologies and determine their impact within the Mizuho environment
• Provide technical support to design, develop, engineer and implement cybersecurity requirements for new and existing hardware, networks, and applications
• Prepare formal and informal reports with security requirements on security incidents, system vulnerabilities, and ongoing compliance functions
• Develop and lead Incident Response initiatives to mature existing or future cybersecurity services to reduce the threat landscape across the bank

• 3-5+ years of proven cybersecurity experience in a similar position
• Strong communication skills. Ability to clearly and concisely articulate ideas, solutions, etc.
• Strong educational background with BS / MS in Computer Science, Engineering, or related area
• Experience with scripting (PowerShell or Python preferred)
• Deep understating of log analysis and correlation across large data sets
• Take an automation-first approach to mature cyber hygiene
• Good analytical and problem solving skills to troubleshoot and resolve security issues
• Developing complex SPL and EDR alerts to improve detection abilities
• Knowledge of Proxies, Web Servers, Cloud, IDS/IPS and Packet Captures
• Understanding of TCP/IP, Routing, Switching, Firewalls, and other Network functionality
• Knowledge of Linux, Windows, and Virtualization security
• Self-driven to learn and develop skills