IT Governance and Security- 7+yrs

Mizuho Global Services Pvt Ltd (MGS) is a subsidiary company of Mizuho Bank, Ltd, which is one of the largest banks or so called Mega Banks of Japan. MGS was established in the year 2020 as part of Mizuho’s long‑term strategy of creating a captive global processing centre for remotely handling banking and IT related operations of Mizuho Bank’s domestic and overseas offices and Mizuho’s group companies across the globe.

At Mizuho we are committed to a culture that is driven by ethical values and supports diversity in all its forms for its talent pool. The direction of MGS’s development is paved by its three key pillars, which are Mutual Respect, Discipline and Transparency, and which are set as the baseline of every process and operation carried out at MGS.

• Immense exposure and learning
• Excellent career growth
• Company of highly passionate leaders and mentors
• Ability to build things from scratch

Know more about MGS: https://www.mizuhogroup.com/asia-pacific/mizuho-global-services

Position: IT Governance and Security – 7+ years

Job location: Ghansoli (Work from office)

Shifts: rotational shifts

No. of Vacancy: 1

The ideal candidate will possess a strong understanding of IT governance, risk management, cybersecurity, and regulatory compliance, with experience in the banking or financial services industry.

IT Governance:

1. Develop, implement, and maintain IT governance frameworks to ensure alignment with the bank’s strategic objectives and regulatory requirements.

2. Establish and enforce policies, standards, and procedures for IT operations, ensuring consistency and adherence across the organization.

3. Conduct regular assessments and audits of IT governance practices to identify areas for improvement and ensure compliance with industry best practices.

4. Collaborate with business units to align IT strategies with organizational goals and ensure proper resource allocation.

5. Monitor and report on IT governance metrics and performance indicators and prepare the monthly reports for the same.

Information Security:

1. Design and implement the bank’s information security strategy, ensuring the protection of sensitive data and systems from cyber threats.

2. Develop, enforce, and regularly update information security policies, procedures, and standards.

3. Conduct risk assessments to identify vulnerabilities and implement mitigation strategies to reduce security risks.

4. Lead incident response efforts, including investigation, reporting, and resolution of security breaches.

5. Ensure compliance with laws, regulations, and standards related to information security (e.g., ISO 27001).

6. Manage the deployment and maintenance of security tools, technologies, and systems (e.g., firewalls, intrusion detection systems, encryption technologies, antivirus).

Regulatory Compliance and Risk Management:

1. Monitor and ensure compliance with local and international regulations related to IT governance and information security.

2. Liaise with regulatory bodies and external auditors to address compliance requirements and audits.

3. Identify and assess IT‑related risks, developing mitigation plans and ensuring proper risk management processes are in place.

4. Provide regular updates and reports to CTO/IT Governance Lead on compliance, risks, and security posture.

Awareness to Staff:

1. Prepare training and awareness program material (e.g., e‑mail reminders, pamphlets) to staff on information security topics.

• Strong knowledge of IT governance frameworks (e.g., COBIT, ITIL) and information security standards (e.g., ISO 27001, NIST).
• Expertise in risk management, cybersecurity, and regulatory compliance.
• Excellent communication and interpersonal skills.
• Ability to work collaboratively across departments and with external stakeholders.

1. IT governance and information security regulations and standards compliance.

2. Reduction in security incidents and vulnerabilities.

3. Timely completion of risk assessments and audits.

4. Effectiveness of IT governance frameworks and security policies.

5. Staff training and awareness levels regarding IT governance and security.

Exposure to ITIL processes (Incident, Event, and Change Management) is highly desirable. Certification in IT/Networking (e.g., CompTIA A+, ITIL Foundation, CCNA) is a plus.

7+ years in IT governance frameworks and information security standards (e.g., ISO 27001, NIST CSF).

Preferred candidate should be located in Mumbai and within 20 kilometres.

Interested candidates can share and carry your updated CV to mgs.rec@mizuho-cb.com

Mizuho Global Services India Pvt. Ltd,
11th Floor, Q2 Building Aurum Q Park, Gen 4/1,
Ttc, Thane Belapur Road, MIDC Industrial Area,
Ghansoli, Navi Mumbai - 400710.