Job Title: Principal Information Security Specialist
Key objectives critical to success
We are looking for a talented and experienced professional to join our team as Security Engineer with specific focus on network security and boundary controls. In this role, you will part of a team leading the engineering, development, and implementation of a robust and scalable information security solutions to protect Nomura’s critical assets. This role is technical and hands-on as the security architecture and engineering strategy and roadmap are being developed and requires deep understanding of network security and best practices in cybersecurity. It requires the development and implementation of processes, policies, standards, and solutions in collaboration with the Global Head of information security engineering and key stakeholders You will play a key role in ensuring the resilience and effectiveness of network security solutions.
Key Responsibilities
- Develop and maintain a deep understanding of the organization's network security needs.
- Evaluate and deploy network security technologies and tools including network detect and respond, web application firewalls to enhance security posture that aligns with the business objectives and the Security Risks and Controls Framework.
- Develop and enforce security policies, standards, and guidelines in alignment with regulatory requirements and network security best practices.
- Deploy and operate network security controls on premise and cloud to protect our network infrastructure from unauthorized access, data loss, and other security threats
- Collaborate with cross-functional teams to evaluate and select network security technologies and tools that meet Nomura’s requirements.
- Provide guidance and technical leadership to project teams to ensure network security requirements are properly understood
- Conduct the relevant network security assessments to identify gaps, vulnerabilities, and areas for resilience improvement.
- Stay current on emerging technologies, trends, and threats in the field of network security and protection
- Collaborate with internal and external stakeholders to ensure alignment with industry standards, regulatory requirements, and compliance frameworks.
Skills, experience, qualifications and knowledge required
- Bachelor's degree in Computer Science, Information Technology, or related field; Master's degree preferred.
- Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) certification is required.
- 5-8 of years of experience in information security, with a focus on network security
- Proven experience in designing and implementing network security solutions in an enterprise environment (IDS /IPS, NDR)
- Strong knowledge of security technologies on security network protocols, and frameworks, such as ISO 27001, NIST, and OWASP.
- Familiar with network segmentation strategies to limit the spread of security incidents and improve the overall security posture of our network.
- Familiar with implementing network security controls for cloud
- Excellent analytical, problem-solving, and project management skills.
- Strong communication and interpersonal skills to collaborate with diverse teams and stakeholders.