Job Title:  Principal Infrastructure and Platform Engineer

Overview:
 
Nomura is a global financial services group with an integrated network spanning approximately 30 countries and regions. By connecting markets East & West, Nomura services the needs of individuals, institutions, corporates and governments through its three business divisions: Wealth Management, Investment Management, and Wholesale (Global Markets and Investment Banking). Founded in 1925, the firm is built on a tradition of disciplined entrepreneurship, serving clients with creative solutions and considered thought leadership. For further information about Nomura, visit www.nomura.com
 
Nomura Services India, (Powai) supports Nomura’s businesses around the world. Powai’ s world class capabilities in trading support, research, information technology, financial control, operations, risk management and legal support have played a key role in facilitating Nomura’s global operations and are an integral part of Nomura’s global expansion plans. The Powai operation is a critical part of the platform to support the growth of Nomura’s global business.

Role Specifics

    Corporate Title: Vice President 
    Functional Title: Principal 

Required Experience & Skills
    Overall experience of 10+ years working on AWS in a design and/or Devops engineering role with proven experience of design, deployment and enterprise scale implementation on AWS
    7-9 years of experience in building or operating a multi account AWS Landing Zone working with the AWS Governance suite of services including:
-    AWS Control Tower & AFT
-    Creation of new AWS accounts process
-    AWS Service Catalogue
-    AWS Organizations
-    IAM roles, policies, Permissions Boundaries, Resource Based Policies and Service Control Policies (SCPs)
-    AWS Config
-    AWS Networking constructs – VPC, Subnets, Route tables, direct connect, Direct Connect gateways, DHCP, DNS & Route 53
-    AWS Identity constructs – SSO via IdP federation
-    AWS Logging and monitoring concepts – CloudTrail, CloudWatch, s3 replication, bucket policies
-    AWS Images – AMI’s and AMI build processes
    7-9 years of experience in Code development using AWS SDK/Boto and Python
    Highly proficient in writing Terraform IAC for AWS Cloud  
    Strong working experience with Gitlab Enterprise and Version control best practices 
    Experience in documenting designs, system & process workflows in JIRA / Confluence
    Strong hands-on experience of Designing, testing, and deploying/implementing landing zone modular constructs for provisioning accounts according to defined policy and best practice. This should be implemented on a foundation based upon AWS Control Tower and Account Factory for Terraform.
    Creative use of available tools to efficiently produce solutions in the cloud technology space. 
    Experience with Enterprise Security requirements is a plus
    Requires clear & precise communication 
    Should be able to provide mentoring to junior team members including line management, technical oversight and workload prioritization.
    AWS Certified Solution Architect – Professional 

Key Responsibilities and Duties:
-    Architecture and design for creation of AWS account constructs in control tower
-    Implementation of controls at OU/Account level, including SCP's and permissions boundary
-    Integration between Control Tower and on premise Terraform Enterprise for account factory for terraform
-    Design and build standardized Terraform modules to manage core account constructs for network connectivity, monitoring, identity, and governance. Eg, VPC/Subnets, CloudTrail, CloudWatch, IdP SSO etc.
-    Design, build, and integrations with shared services such as Route 53, Direct Connect Gateways, API gateways
-    Complex or abstract problem statements summarization, solutioning & successful deployment to Production  
-    Development of Cloud platform Roadmaps and driving the continued evolution of AWS cloud
-    Patterns for interaction and integration with existing Nomura systems such as CMDB or observability platforms such as Prometheus/Grafana stack
-    Writing microservices/serverless architectures that can provide integration to Nomura systems such as IPAM and others.
-    Ability to analyze requirements and make/contribute to  strategic decision making 

Equal Opportunity Employer:
 
Nomura is an equal opportunities employer. We are committed to providing equal opportunities throughout employment including in the recruitment, training and development of employees (including promotion, transfers, assignments and beliefs). We prohibit discrimination in the workplace whether on grounds of gender, marital or domestic partnership status, pregnancy, career’s responsibilities, sexual orientation, gender identity, race, color, national or ethnic origins, religious belief, disability or age. Our objective is to attract job applications and applications for development from the best possible candidates and to retain the best people.