Principal Information Security Specialist

Nomura

10 - 15 years

13 - 17 Lacs

mumbai

Posted:None| Platform:

Apply

Skills Required

computer science cism information security risk assessment iso 27001 investment banking risk management information technology financial services recruitment

Work Mode

Work from Office

Job Type

Full Time

Job Description

Be a point of contact for all the regional regulatory requirements, internal and external audit queries, and ensure that the CISO Risk Register is maintained and updated regularly with new risks, issues, control gaps, recommendations, etc.

Manage required reporting to regional management as required.
Support global security GRC requirements as well as assist other regions whenever needed.
Track and manage the requirements of information security policies, standards, and processes.
Demonstrate strong knowledge and practical experience in Information Security Management frameworks such as ISO, NIST, CRI, etc.
Experience in managing regulatory inquiries and audits, including coordinating responses and remediation efforts.
Perform security threat and risk assessments on key topics following our methodology; as needed, collaborate with the Security Architecture and Engineering Team regarding technical solutions and controls.
Demonstrate handson experience in businessaligned risk assessments on information systems, applications, and thirdparty vendors, cloud platforms.
Demonstrate strong collaboration skills along with the ability to effectively communicate complex security related information to a business audience including risk identification, assessment, and remediation activity.
Remain up to date with security risk and control methodologies and frameworks, assessment techniques, and evolving cyber threats and risks and share new developments with the regional and global teams as needed.
Maintain relationships with the global information security teams (e.g., Security Architecture, Data Protection, Cyber Threat Intel), legal, communications, IT, risk, finance, control, and HR groups.
Educate and contribute to increasing awareness of security risk and control management across the organization.
Support and embed practices for the effective and timely reporting to appropriate security risk and control committees on the evolution and progress of the Information Security Strategy including regular status updates for reporting to the Group CISO.
Understand the impact of our deliverables on the business including ensuring a cost/benefit analysis is conducted to ensure service value add is understood.
Provide ongoing reporting of cyber risk exposure into governance committees, meetings with key stakeholders, and escalate problems.
Liaise with external agencies and informationsharing networks as needed.

Skills, experience, qualifications and knowledge required

Must have 10+ years of experience in Information Security GRC preferably in the financial industry, or related roles, with at least 5 years in a senior technical position in the GRC domain.
Bachelor's degree in computer science, information technology, cybersecurity, or a related field; advanced degree preferred.
Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) certification or equivalent is required.
Strong knowledge of industry best practices, standards, and regulations related to security, such as ISO 27001, NIST, and CRI, while also keeping up to date with other regulators.
Excellent communication and interpersonal skills, with the ability to effectively collaborate with crossfunctional teams and communicate complex security (and technical) concepts to nontechnical stakeholders.
Proven ability to think strategically, prioritize tasks, and make sound decisions under pressure.
Build trusted working relationships with other security functional heads, risk and compliance counterparts, operational risk teams, and business unit stakeholders.
Ability to run with multiple tasks concurrently and manage expectations appropriately.
Exceptional communication and interpersonal skills in English.
Committed to continuous improvement for team and self.
High level of integrity, professionalism, and attention to detail.
Note that there may be occasional offhours and weekend work required.

More Jobs at Nomura

Assistant Vice President

Mumbai

8 - 10 yrs

INR 25 - 30 Lacs

HR-Reward, Mobility and HRMI

Mumbai

1 - 3 yrs

INR 3 - 5 Lacs

FIN_Global Middle Office_Associate

Mumbai

6 - 8 yrs

INR 8 - 10 Lacs

Principal Business Analyst

Mumbai

10 - 17 yrs

INR 30 - 40 Lacs

IAU-Non-Auditor

Mumbai

3 - 7 yrs

INR 5 - 9 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start Job-Specific Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.