Principal Production Services

Overview

Nomura has a robust global Information Security department, members of which are located in all of its major regions, namely Japan, Americas, India, Asia Excluding Japan (AeJ) and EMEA. This role will report directly to the Global Head of the Information Security Architecture and Engineering (SAE) located in London and will be a member of the Information Security Architecture and Engineering (SAE) Leadership team.

Key objectives critical to success

We are looking for a talented and experienced professional to join our team as the regional Head of Information Security Engineering in India. In this role, you will lead the engineering, development, and implementation of a robust and scalable information security solutions to protect Nomura’s critical assets and infrastructure on a global scale. This role is hands-on as the security architecture and engineering strategy and roadmap are being developed. You will lead team of security engineers in India. It requires the development and implementation of people processes, policies, standards, and solutions in collaboration with the Global Heads of Information Security and key stakeholders (e.g., IT, business, legal, HR, compliance). You will play a key role in shaping our information security strategy and ensuring the resilience and effectiveness of our security solutions.

Key Responsibilities

• Develop and execute the cyber security engineering strategy  that aligns with the business objectives and the Security Risks and Controls Framework.
• Build, mentor, and manage a team of cyber security engineers.
• Foster a culture of continuous improvement, innovation, and collaboration within the team
• Develop and maintain the security solutions and products for the information security team and ensure it is fully aligned with the enterprise reference architecture developed by Security Architecture.
• Define and implement security standards, best practices, and guidelines for technology infrastructure, applications, and systems.
• Lead the engineering and implementation of secure network solutions, cloud security solutions, and endpoint protection mechanisms, including security tooling (change management, patching, upgrades etc.).
• Collaborate with cross-functional teams to evaluate and select security technologies and tools that meet Nomura’s requirements, including AI/ML, SaaS, security automation, and R&D.
• Provide technical guidance and expertise on security infrastructure design, configuration, and deployment. Provide clarity to IT (including projects) to ensure the most optimal risk reduction solutions are implemented.
• Establish a security lab (and sandbox) to evaluate security solutions for Nomura as well as assessing and testing emerging technologies for the business.
• Stay current on emerging technologies, trends, and threats in the field of information security architecture and engineering.
• Collaborate with internal and external stakeholders to ensure alignment with industry standards, regulatory requirements, and compliance frameworks.

Skills, experience, qualifications and knowledge required

• Experience in managing technical security engineering functions
• Bachelor's degree in Computer Science, Information Technology, or related field; Master's degree preferred.
• Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) certification is required.
• Minimum of 10 years of experience in information security, with a focus on security engineering.
• Strong knowledge of security technologies, protocols, and frameworks, such as ISO 27001, NIST, and OWASP.
• Experience with engineering and  implementing security controls for cloud environments, network infrastructure, data security, and software applications.
• Excellent analytical, problem-solving, and project management skills.
• Strong communication and interpersonal skills to collaborate with diverse teams and stakeholders.
• Ability to lead and mentor a team of security engineers in a global environment.