Executive Director, Head of IT Security & Risk Management

Mizuho Bank Ltd is the banking subsidiary of Mizuho Financial Group of Japan, one of the world's largest financial service providers. In 1974, one of Mizuho's legacy bank commenced its branch operation in Singapore and for over 50 years, we have a presence in Singapore.

Mizuho Bank Singapore Branch holds a Full Bank License and provides banking services to more than 2,000 Japanese and non–Japanese customers, operating with staff strength of more than 1,000. Its principal business encompasses corporate finance, trade finance, cash management, funds transfers, project finance and treasury. It also collaborates with its affiliate company, Mizuho Securities, to provide investment banking solutions to its customers.

Singapore Branch also serves as a regional office for bank's Asia & Pacific operations.

Responsible for the leadership and management of cybersecurity and technology risk (first line of defense) for Mizuho Bank, Singapore Branch (“MHBKSG”). Acts as the key risk advisor for MHBKSG senior management, and Singapore and head office technology teams, providing expert guidance on risk management, cybersecurity, and regulatory compliance.

• Responsibilities shall be carried out in accordance with MHBKSG Code of Conduct, Values and Guiding Principles.
• Create a high-performing team in a diverse workplace.
• Ensure that employees understand the goals, embrace the values, and support and reinforce the expected behaviors that contribute to the success of the bank
• Support employees to deliver their mandate successfully and sustainably and keep them focused on the business priorities and values creation.
• Establish succession plans for key positions.
• Promote a mindset for agility, sustained success, growth, and diversity.
• Formulate and enforce cybersecurity policies and standards, risk management framework, operating procedures, and control standards in alignment with local regulations and head office policies.
• Lead and manage risk assessment, audits, findings, and drive holistic action plans with IT and outside of IT to address such risks and issues sustainably.
• Monitor risk indicators and challenge business and IT decisions to ensure adherence to security and risk policies.
• Create forward-looking operating and financial plans aligned to business and IT priorities.
• Inform and advise senior management and stakeholders about significant regulatory, technology risk, and cyber security developments
• Collaborate across the organization to create a secure IT operating environment for business, leveraging strengths in department and enterprise to achieve efficiencies and synergies.
• Uplift employee experience and knowledge to keep pace with the rapidly evolving cybersecurity and risk management landscape; strengthen the risk awareness and culture.

Job Requirements :

• Tertiary degree in Computer Science, Information Systems, Engineering, or a related IT field
• At least 10 years of hands-on experience in technology risk management, cybersecurity, compliance, and/or audit within financial services industry.
• Familiar with MAS Notices and guidelines relevant to IT.
• Proven regulator and stakeholder management skills with professionalism and integrity.
• CISSP, CISA, CISM and/or GIAC qualification preferred.
• Understand “big picture”, align teams accordingly, and communicate vision and goals with passion.
• Strong negotiation skills.
• Collaborate across organization and with external providers to solve complex problems creatively.
• Excellent oral and written skills in English.