IT Security Analyst
London, London, GB, EC4R 3AB
Nomura
Nomura Holdings website. Group companies, news releases, services, CSR, IR, careers information.Job Title: IT Security Analyst
Corporate Title: Associate
Department: IT Security
Location: London
Company overview
Nomura is a global financial services group with an integrated network spanning approximately 30 countries and regions. By connecting markets East & West, Nomura services the needs of individuals, institutions, corporates and governments through its three business divisions: Wealth Management, Investment Management, and Wholesale (Global Markets and Investment Banking). Founded in 1925, the firm is built on a tradition of disciplined entrepreneurship, serving clients with creative solutions and considered thought leadership. For further information about Nomura, visit www.nomura.com
Department overview:
Nomura employs a robust IT Security department, members of which are located in all of its major regions, namely EMEA, Americas, India, Asia excluding Japan (AeJ) and Japan. This team is responsible for reviewing UK regional users’ queries and ensures Nomura’s IT Security Policy and strategy is always followed.
Role description:
The candidate will need to coordinate Regionally IT Security functions across Nomura wholesale. The role will require in-depth understanding of IT Security principles, technologies and best practices.
- Collaborate with business users and IT professionals, to gather information, review requirements and provide security recommendations.
- Provide regional support for implementation of security controls as part of the IT Security roadmap and initiatives
- Identify and document security risks identified during project initiatives and BAU activities.
- Review technology changes to ensure that they do not introduce security weaknesses.
- Provide regional support for BAU activities including review of end user exception requests.
- Provide regional IT Security operational support for investigation of security alerts
- Provide regional support to Third Party Risk Management team with security assessments.
- Provide support for disaster recovery plans in the event of any security breaches.
- Conduct internal training, workshops, and information dissemination on IT security.
- Validate vulnerability findings and provide guidance during remediation efforts.
The position will also be required to work along with other teams in these security areas:
- Vulnerability Management
- Security Architecture
- Threat Intelligence
- Security Operations Centre
- Security Surveillance
- Vender Risk Management
- Cyber Incident Response and Forensics
- Penetration Testing and Red Team Exercises
- Governance, Risk, and Compliance (GRC)
Skills, experience, qualifications and knowledge required:
- Bachelor’s degree in computer science or related field, minimum 3+ years of progressive experience in information Security and banking industry.
- Certification is required, such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Certified Information Systems Auditor (CISA) or similar industry recognized certifications (or willingness to pursue).
- Ability to prioritize and effectively document issues.
- Ability to effectively balance time between day-to-day support work and project-related tasks.
- Ability to cope with business needs and to respond to and address production situations promptly.
- Knowledge and understanding of relevant legal and regulatory requirements in the UK.
- Knowledge and understanding of Cyber risk governance processes and metrics.
- Experience in networking, firewall and internet proxy technologies.
Preferred
- Experience in Third party and supply chain risk security processes.
- Experience in Vulnerability Management processes.
- Experience in Third party and supply chain risk security processes.
- Experience in Data Loss Prevention technologies.
- Experience with Threat Intelligence Platforms.
- Experience in Application and Network Penetration Testing Methodologies.
Right to Work
The UK Government have taken steps to reduce net migration to the UK by limiting the number of overseas workers from outside the EEA coming to the UK for employment. Please note that whilst we are able to consider applications from overseas workers from outside the EEA (who require a Tier 2 (General) visa) we can only employ them if we can provide evidence that there are no other suitable candidates for this vacancy from inside the EEA.
Please contact us if you are visiting our offices and require any form of personal assistance or physical adaptations to be provided for your appointment. A member of staff will be happy to help.
Diversity Statement
Nomura is committed to an employment policy of equal opportunities, and is fundamentally opposed to any less favourable treatment accorded to existing or potential members of staff on the grounds of race, creed, colour, nationality, disability, marital status, pregnancy, gender or sexual orientation. If you require any assistance or reasonable adjustments due to a disability or long-term health condition, please do not hesitate to contact us.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Banking CEH CISA CISSP Compliance Computer Science Firewalls Forensics Governance Incident response Pentesting Red team Risk management Security assessment Strategy Surveillance Threat intelligence Vulnerability management
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs