Sr. Support Analyst

Nomura Holdings, Inc. • Indiana, PA, United States • $200k - $250k / year • 3w ago

Global CISO (Chief Information Security Office) is seeking a Data Security and IAM professional to develop and govern our organization's identity and access management program. You will be responsible for ensuring secure access to critical business systems and data, overseeing IAM policies and technologies. This role requires strong technical expertise, critical thinking, and an ability to collaborate effectively with the CTO and other cross-functional global teams to establish a robust Security framework.

You will play a critical role in establishing Data Security and IAM governance, driving the adoption of Security best practices, and ensuring compliance with regulatory and industry standards.

Responsibilities:

Manage data security services such as Data Loss Prevention, Data Classification, Data Detection/Scanning, and Data Categorization.
Manage data encryption, KMS, and Data/Digital Rights Management services.
Drive tasks to completion for efforts associated with Data Security and Data Protection projects and initiatives; lead associated task efforts for small groups when needed.
Build and strengthen technical controls for protection against data exfiltration/detection.
Define, configure, and test complex configurations to enable DLP policy implementations through various on-premises and SaaS solutions.
Ensure that technology and processes are well managed to secure all customer and sensitive data held by Nomura.
Coordinate and prepare technical documentation for new/upgraded systems or components.
Evaluate Security tools, products, and solutions, and contribute to the decision process.
Demonstrate consultative and delivery skills in Information Security projects, work prioritization, resource allocation, budgeting, and planning, with the ability to analyze complex issues and recommend and implement tools or solutions where appropriate.
Manage investigations of confidential issues at all levels and apply judgment as to how these are conducted and the actions arising from them, exercising absolute discretion.
Develop the governance framework for the IAM program, aligning it with the organization’s security strategy and business goals.
Govern authentication and authorization frameworks, including Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Access Management (AM) solutions.
Govern identity lifecycle management processes such as ‘joiner, mover, leaver’, and recertification processes.
Govern the integration of Identity solutions with key platforms such as AD, LDAP, Unix/Linux servers, databases (Oracle, MS SQL), and cloud services (AWS, Azure, GCP).
Govern and ensure the effective use of identity governance solutions such as Saviynt, Oracle Identity Governance (OIG), or similar.
Drive the adoption of automated identity management workflows to streamline provisioning and deprovisioning.
Oversee the integration of IAM solutions with cloud platforms, enterprise applications, and third-party systems.
Identify and propose automated IAM processes to improve efficiency and reduce manual intervention in identity and access management tasks.
Work closely with IT, security, HR, and business units to understand IAM requirements and ensure alignment with organizational goals across global and regional teams.
5+ years' experience working with Cybersecurity DLP, data classification, or incident response (SOC) toolsets – Forcepoint, Proofpoint, Symantec, McAfee, and BigID solutions for endpoint DLP, CASB, and/or email security gateways.
3+ years of Technology experience – system administration, application development, system integration, database design/development, etc., with an understanding of Boolean logic, Regular Expressions, and/or SQL.
2+ years of experience in data architecture, database technologies, and cloud services.
Knowledge of Data Classification, Data Protection, Data Governance, or data lifecycle methodologies and concepts.
Experience with SharePoint, Archer, ServiceNow, and/or Agile - a plus.
IAM professional with at least 5 years of experience in information security, or related roles, with at least 3 years in a technical position in the IAM domain.
Demonstrable experience in IAM governance aligned with organizational policies, standards, and guidelines.
In-depth knowledge of identity configurations on underlying platforms Windows, Unix/Linux, and Databases.
Hands-on experience in different facets of IAM including RBAC, ABAC, SSO, MFA, PAM, and IGA.
Proven expertise in managing IAM solutions such as Saviynt, SailPoint, Azure AD, or similar.
Demonstrable experience associated with IAM principles, identity lifecycle management, and access governance.
Strong understanding of emerging IAM trends, such as Zero Trust and passwordless authentication.
Demonstrable understanding of cloud security and IAM implementation in cloud platforms (AWS, Azure, GCP).

Beneficial:

BigID, Azure, and Symantec certifications.
Advanced security certifications such as CISSP, CISM, CCSP, or equivalent.
Experience in developing and managing IAM programs and strategic initiatives.
Knowledge of established information security frameworks and standards (i.e., NIST, ISO2700, CSA, SCF) and their application in diverse environments.
Familiarity with directory services AD, LDAP, and security operations tools, SIEM platforms, and incident management systems.
Ability to manage multiple tasks concurrently and manage expectations appropriately.
High level of integrity, professionalism, and attention to detail.

#J-18808-Ljbffr