Duties & Responsibilities:
Job Overview:
Global CISO (Chief Information Security Office) is seeking Data Security and IAM professional to develop and govern our organization's identity and access management program. You will be responsible for ensuring secure access to critical business systems and data, overseeing IAM policies and technologies. This role requires strong technical expertise, critical thinking, and an ability to collaborate effectively with CTO and other cross-functional global teams to establish a robust Security framework.
You will play a critical role in establishing Data Security and IAM governance, driving adoption of Security best practices, and ensuring compliance with regulatory and industry standards.
Responsibilities:
- Ability to manage data security services such as Data loss prevention, Data classification, Data detection/scanning and data categorization.
- Ability to manage data encryption, KMS and Data/Digital rights management services.
- Drive tasks to completion for efforts associated with Data Security and Data Protection projects and initiatives; where needed, lead associated task efforts for small groups.
- Build and strengthen technical controls for protection against data exfiltration/detection.
- Define, configure, and test complex configurations to enable DLP policy implementations through various on premises and SaaS solutions.
- Ensuring that technology and processes are well managed so that every effort is made to secure all customer and sensitive data held by Nomura.
- Coordinate and prepare technical documentation for new/upgraded systems or components.
- Evaluation of Security tools, products, and solutions, and contributing to the decision process
- Demonstrable consultative and delivery skills in Information Security projects, work prioritization resource allocation, budgeting and planning with the ability to analyze complex issues, recommending, and implementing tools or solutions where appropriate.
- Ability to manage investigations of confidential issues at all levels and to apply judgement as to how these are conducted and the actions arising from them, exercising absolute discretion.
- Develop the governance framework for the IAM program, aligning it with the organization’s security strategy and business goals.
- Govern authentication and authorization frameworks, including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Access Management (AM) solutions.
- Govern identity lifecycle management processes such as ‘joiner, mover, leaver’, recertification processes etc.
- Govern the integration of Identity solutions with key platforms such as AD, LDAP, Unix/Linux servers, databases (Oracle, MS SQL) and cloud services (AWS, Azure, GCP).
- Govern and ensure the effective use of identity governance solutions such as Saviynt, Oracle Identity Governance (OIG), or similar.
- Drive the adoption of automated identity management workflows to streamline provisioning and deprovisioning.
- Oversee the integration of IAM solutions with cloud platforms, enterprise applications, and third-party systems.
- Identify and propose automated IAM processes to improve efficiency and reduce manual intervention in identity and access management tasks.
- Work closely with IT, security, HR, and business units to understand IAM requirements and ensure alignment with organizational goals across global and regional teams.
|
Knowledge, Skill, Experience Required:
Required:
- 5+ years' experience working with Cybersecurity DLP, data classification or incident response (SOC) toolsets – Forcepoint, Proofpoint, Symantec, McAfee and BigID solutions for endpoint DLP, CASB, and/or email security gateways.
- 3+ years of Technology experience – system administration, application development, system integration, database design/development, etc. with understanding of Boolean logic, Regular Expressions and/or SQL
- 2+ year of experience in Cryptographic implementation, DRM, AIP, Access control, Security Operations
- 2+ year of experience in data architecture, database technologies, and cloud services
- Knowledge of Data Classification, Data Protection, Data Governance, or data lifecycle methodologies and concepts.
- Experience with SharePoint, Archer, ServiceNow, and/or Agile - a plus
- IAM professional with at least 5 years of experience in information security, or related roles, with at least 3 years in a technical position in IAM domain.
- Demonstrable experience in IAM governance aligned with organizational policies, standards and guidelines.
- In-depth knowledge of identity configurations on underlying platforms Windows, Unix/Linux and Databases.
- Hands on experience in different facets of IAM including RBAC, ABAC, SSO, MFA, PAM, and IGA.
- Proven expertise in managing IAM solutions such as Saviynt, SailPoint, Azure AD, or similar.
- Demonstrable experience associated of IAM principles, identity lifecycle management, and access governance.
- Strong understanding on emerging IAM trends, such as Zero Trust and passwordless authentication.
- Demonstrable understanding in cloud security and IAM implementation in cloud platforms (AWS, Azure, GCP).
Beneficial:
- BigID, Azure and Symantec certifications
- Advanced security certifications such as CISSP, CISM, CCSP, or equivalent.
- Experience in developing and managing IAM programs and strategic initiatives.
- Knowledge of established information security frameworks and standards (i.e. NIST, ISO2700, CSA, SCF) and their application into diverse environments.
- Familiarity with directory services AD, LDAP and security operations tools, SIEM platforms, and incident management systems.
Personal Characteristics:
|