Principal Information Security Specialist

Responsibilities:
o Provide inputs to the delivery roadmap ensuring timely delivery in alignment with overall security and business objectives.
o Implement consistent data loss prevention (DLP) solutions across channels such as Email, Web, USB etc.
o Implement data discovery, classification, and labelling activities using tools such as BigID, Microsoft Information Protection (MIP), and other related solutions.
o Develop automated workflows and processes for data protection across structured and unstructured data sources.
o Implement data security technologies and tools such as key management, encryption, masking, and tokenization.
o Implement, design, and manage PKI infrastructure, including certificate authorities (Cas), and certificate lifecycle management.
o Implement and manage encryption solution for Data-at-rest and data0in-transit, including symmetric and asymmetric encryption, digital signatures, and hashing.
o Implement industry standard practices for source code management, versioning, branching and central documentation etc.
o Follow SDLC processes in-line with Nomura’s software development processes.
o Act as the subject matter expert (SME) on data security topics and provide guidance to leadership and technical teams.

Knowledge, Skill, Experience Required:
Required:
o
Data Security Engineer with at least 5 years within the broader IT Security engineering disciplines and technologies and 3 years of experience in data security engineering.
o Hands-on experience in setting up development/engineering activities throughout SDLC including integration with CI/CD pipeline.
o Strong understanding of industry best practices on coding standards, maintenance, versioning, branching and documentation.
o Hands-on experience with data security tools such as BigID, Microsoft Information Protection (MIP), Symantec DLP, or IBM Guardium, or similar.
o Expertise in data protection technologies, including DLP, DRM, data classification, encryption, masking, and tokenization.
o Proficiency in scripting (e.g., Python, PowerShell) and programming languages (e.g. Java, C#) for automation, custom development etc.
o Experience in secrets management tools and technologies, such as HashiCorp Vault, Conjur, or AWS Secrets Manager or similar.
o Demonstrable understanding in cloud security and securing data in cloud platforms (AWS, Azure, GCP).
o Good understanding of Japanese language(Reading and writing both)
Beneficial:
o Advanced security certifications such as CISSP, CISM, CCSP, or equivalent.
o Experience in developing and managing data security programs and strategic initiatives.
o Knowledge of established information security frameworks and standards (i.e. NIST, ISO2700, CSA, SCF) and their application into diverse environments.
o Knowledge of emerging technologies such as artificial intelligence and machine learning for data security analytics.
o Familiarity with security operations tools, SIEM platforms, and incident management systems.

Personal Characteristics:
o Excellent interpersonal skills with the ability to build and influence; and self-motivated.
o Committed to continuous improvement.
o Ability to run with multiple tasks concurrently and manage expectations appropriately.
o High level of integrity, professionalism, and attention to detail.