Job Title: Lead Information Security Analyst

Job Code: 10861

Country: IN

City: Mumbai

Skill Category: IT\Technology

Description:

Nomura Overview:

Nomura is a global financial services group with an integrated network spanning approximately 30 countries and regions. By connecting markets East & West, Nomura services the needs of individuals, institutions, corporates and governments through its three business divisions: Wealth Management, Investment Management, and Wholesale (Global Markets and Investment Banking). Founded in 1925, the firm is built on a tradition of disciplined entrepreneurship, serving clients with creative solutions and considered thought leadership. For further information about Nomura, visit www.nomura.com.

Nomura Services, India supports the group’s global businesses. With world-class capabilities in trading support, research, information technology, financial control, operations, risk management and legal support, the firm plays a key role in facilitating the group’s global operations.

At Nomura, creating an inclusive workplace is a priority. Our approach to inclusion encompasses a variety of initiatives, including sensitization campaigns, implementing conducive policies & programs, providing infrastructure support and engaging in community events. Over time, we have made meaningful progress in these areas, and this commitment has been well-recognized across the industry. We are proud recipients of the prestigious Top 10 Employers award by the India Workplace Equality Index (IWEI), IWEI Gold Employer of Choice awards, India CSR Leadership Award 2024 for Holistic Village Development Program and the YUVA Unstoppable Changemaker Awards.

Division Overview:

The Global Information Security teams are responsible for the confidentiality, integrity and availability of the firm’s information and assets. Responsible for maintaining, communicating and raising awareness of the Policy. Facilitate the effective implementation and compliance of the firm’s polices.

The Global Information Security Team is based in Europe, Asia, India and America.

Business Unit Overview:

The team’s focus is to serve as the single point of contact for all Information security related queries, concerns and technologies. Provide a high standard of user and business support in a responsive and timely manner across all businesses, take responsibility and ownership for maintaining the global strategy and controls for the delivery and operational deployment of global security initiatives in a manner consistent with the common business goals and objectives.

Position Specifications:

Corporate Title	Associate
Functional Title	Lead Information Security Analyst
Experience	5 - 8 years
Qualification	B.E / B.Tech / MCA / M.Tech
Requisition No	10861

Role & Responsibilities:

Assist in the design and deliver of cyber security - global phishing exercises with appropriate data analysis to determine effectiveness of cyber security awareness and training measures.
Develop and deliver a cyber-culture and learning programme with assistance from the wider
global cyber security team applicable for all regions.
Develop and implement annual mandatory cyber awareness training.
Create a yearly action plan of activities including developing and deploying online and face to

face training courses through the year.

Conduct regular global phishing exercises. Develop the exercise, record hit rates and reporting

rates to be broken down by region, business and location. Run re-tests. Develop executive reporting on phishing test results and future plans and follow-up training.

Draft regular and effective cyber security awareness content (messages, presentations, reports) to drive regular awareness of ongoing cyber security measures.
Develop specific training for high-risk user groups.
Work with internal communications and other key stakeholders to ensure the program is in line

with our brand guidelines and company goals

Work in collaboration with our threat intelligence team to identify the risks to the company and

what training is needed to help mitigate them.

Work in collaboration with our Security Operations centre to understand key incident trends in

order to further develop training programme.

Maintain the cyber culture and learning program to deliver long term results, not just raising

awareness but changing behaviours to create an embedded cyber secure culture

Create regular reports for key stake holders and management to show the program metrics.
Ability to constructively challenge the status quo in defining measurements for cyber security culture campaigns
Use interactive and innovative training methods to engage staff.
Help develop the Information Security team training programme to maintain constant learning.
Manage the relationships with our cyber culture and learning vendors
Project manage cyber culture and learning initiatives
Assist the wider cyber security team with business as usual activities

Mind Set

Mandatory

Desired

Domain

Ability to form complex communications/messages in a simple, clear and concise manner to present to senior management and stakeholders across the organisation.
Advanced skills in Microsoft office (MS Excel – formulas, pivots, macros. Experience in MS Power BI desirable) and MS PowerPoint.
Direct experience of delivering security culture change and shift away from compliance driven behaviours to an embedded approach to people cyber risk management

Strong communication skills, ability to work comfortably with different regions
Actively participate within internal project community
Good team player, ability to work on a local, regional and global basis and as part of joint cross location initiative
Self-motivated, able to work independently and with a team
Able to perform under pressure.

Nomura Leadership Behaviours:

	Description	Element
Exploring Insights & Vision	Comprehensively analyse the nature of the problems we face and set our focus toward the future vision	Gather Intelligence Create a vision Identify an issue
Making Strategic Decisions	Analyse options and feasibility to resolve issues, in making judgments and recommendations	Identify countermeasures Assess feasibility Make a judgment
Inspiring Entrepreneurship in People	Promotes the vision and goals to others in such a way that inspires commitment and independent contributions	Influence Inspire Commit
Elevating Organizational Capacity	Maximize organizational productivity through leadership development and engagement	Have an ownership in own development Support other‘s growth Encourage organizational growth
Inclusion	Respect diverse perspectives and promote psychological safety and the creation of a risk culture	Foster psychological safety Encourage the active participation of all talent Foster a risk culture

We are committed to providing equal opportunities throughout employment including in the recruitment, training and development of employees. We prohibit discrimination in the workplace whether on grounds of gender, marital or domestic partnership status, pregnancy, carer’s responsibilities, sexual orientation, gender identity, gender expression, race, color, national or ethnic origins, religious belief, disability or age.

*Applying for this role does not amount to a job offer or create an obligation on Nomura to provide a job offer. The expression "Nomura" refers to Nomura Services India Private Limited together with its affiliates.