Job Title:  Security Engineer - Observability Pipeline

Job title: Security Engineer - Observability Pipeline
Corporate Title: Associate
Department: Technology
Location: Jacksonville

The pay range for this position at commencement of employment is expected to be between $95,000 and $110,000 annually.

Company overview

Nomura is a global financial services group with an integrated network spanning approximately 30 countries and regions. By connecting markets East & West, Nomura services the needs of individuals, institutions, corporates and governments through its three business divisions: Wealth Management, Investment Management, and Wholesale (Global Markets and Investment Banking). Founded in 1925, the firm is built on a tradition of disciplined entrepreneurship, serving clients with creative solutions and considered thought leadership. For further information about Nomura, visit www.nomura.com.

Aon’s Benefit Index®, Nomura’s benefits rank #1 amongst our competitors

Department overview

The Information Technology department at Nomura is at the forefront of innovation, driving technology solutions that empower our business and enhance client experiences. We leverage cutting-edge technologies to develop and maintain robust systems and infrastructure, ensuring the security, reliability, and efficiency of our operations. Join our team and be part of a dynamic and collaborative environment that embraces technological advancements to deliver value and drive our digital transformation journey.

Role description

We are seeking a skilled Security Engineer to join our team in building and maintaining a cutting-edge security observability pipeline using cloud services. This role combines security expertise with cloud engineering to create scalable detection and monitoring capabilities that protect our organization and enhance our security posture.

Key Responsibilities

Pipeline Development & Architecture

• Design, build, and maintain security observability pipelines using AWS Kinesis, Lambda, S3, Athena, and related services
• Develop real-time and batch processing workflows for security event ingestion, enrichment, and analysis
• Implement scalable data processing architectures to handle high-volume security telemetry
• Design efficient data schemas and models optimized for security analytics and storage

Security Engineering

• Create and tune security detections, alerts, and automated response mechanisms
• Develop custom parsers and data transformation logic for various security log sources
• Build correlation rules and behavioral analytics to identify threats and anomalies
• Collaborate on incident response and threat hunting initiatives

Infrastructure & Automation

• Implement Infrastructure as Code (IaC) using tools like Terraform, CloudFormation, or CDK
• Design and maintain CI/CD pipelines for security tooling and detection deployment
• Automate security operations workflows and orchestrate multi-service integrations

Skills, experience, qualifications and knowledge required

Required Qualifications

Technical Skills

• Python proficiency - Strong programming skills with experience in data processing, APIs, and automation
• AWS Cloud Services - Hands-on experience with Kinesis, Lambda, S3, Athena, CloudWatch, IAM, and other core services
• Data Processing - Experience with JSON, Parquet, Avro, and CSV parsing and manipulation
• Stream Processing - Understanding of real-time data processing concepts and streaming technologies
• Data Modeling - Ability to design efficient schemas for security data storage and analytics
• API Development - Experience building and consuming REST/GraphQL APIs
• Regular Expressions - Proficient in regex for log parsing, pattern matching, and data extraction
• Security Logging & Monitoring - Understanding of security event formats, log sources, and monitoring concepts

Experience Requirements

• SIEM Experience - Previous work with security information and event management platforms
• CI/CD Knowledge - Familiarity with continuous integration/deployment practices and tools
• Infrastructure as Code - Experience with orchestration tools (Terraform, Ansible, CloudFormation, etc.)
• Detection Engineering - Background in creating security detections, rules, and analytics

Preferred Qualifications

• Experience with additional AWS services (EventBridge, Step Functions, ECS/EKS, etc.)
• Knowledge of security frameworks (MITRE ATT&CK, NIST, etc.)
• Familiarity with threat intelligence platforms and feeds
• Experience with data visualization tools (PowerBi, Grafana, Kibana, etc.)
• Background in cloud security and compliance requirements
• Previous work with streaming data platforms (Kafka, etc.)
• SQL proficiency for complex data analysis and querying
• What You'll Work With
• Data Pipeline: Kinesis Data Streams/Firehose, Lambda functions, S3 data lakes
• Data Formats: JSON logs, Parquet analytics tables, Avro schemas, CSV exports
• Analytics: Athena queries, CloudWatch dashboards, custom analytics engines
• APIs: RESTful services, GraphQL endpoints, AWS SDK integrations
• Automation: Python scripts, AWS SDK/CLI, infrastructure automation tools
• Security Tools: Various SIEM platforms, threat intelligence feeds, security APIs

Ideal Candidate Profile

You're someone who enjoys solving complex technical challenges at the intersection of security and cloud engineering. You have a strong foundation in both security operations and modern cloud architectures, with the ability to translate security requirements into scalable technical solutions. You're comfortable working with diverse data formats and building robust data processing pipelines that can handle enterprise-scale security telemetry.

Nomura Competencies

Explore Insights & Vision

• Identify the underlying causes of problems faced by you or your team and define a clear vision and direction for the future.

Making Strategic Decisions

• Evaluate all the options for resolving the problems and effectively prioritize actions or recommendations.

Inspire Entrepreneurship in People

• Inspire team members through effective communication of ideas and motivate them to actively enhance productivity.

Elevate Organizational Capability

• Engage proactively in professional development and enhance team productivity through the promotion of knowledge sharing.

Inclusion

• Foster a culture of inclusion and psychological safety in the workplace and cultivate a "Risk Culture" (Challenge, Escalate and Respect).

*base pay offered may vary depending on multiple individualized factors, including market location, corporate and functional title and duties, job-related knowledge and advanced degrees, skills, and experience. The total compensation package for this position may also include other elements, including a sign-on bonus, restricted stock units, discretionary awards and eligibility for commissions for applicable sales roles in addition to a full range of medical, financial, and/or other benefits (including 401(k) eligibility and various paid time off benefits, such as vacation, sick time, and parental leave), dependent on the position offered. Details of participation in these benefit plans will be provided if an employee receives an offer of employment.

If hired in the U.S., employee will be in an “at-will position” and the Company reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, Company or individual department/team performance, and market factors”.

Nomura is an Equal Opportunity Employer