Japan Job Openings
野村證券株式会社
Regional Chief Information Security Officer (CISO)
FULL TIME
November 6, 2024
IT: Other
Regional Chief Information Security Officer (CISO)
Executive Director
Regional Chief Information Security Officer (CISO)
Executive Director
職務内容
Job Description
Job Description
Job/Group Overview:
Nomura is a global financial services group with an integrated global network spanning over 30 countries. Japan IT (Information Technology) is a diverse environment with employees of over 25 nationalities, who work on technical support, application development and implementation of system changes for Japan Retail Wealth Management Business and Global Wholesale (Global Markets and Investment Banking). Nomura provides competitive employee benefits, training and upskilling opportunities, and is committed to promoting diversity, equity and inclusion, employee health and well-being.
Job Summary: We are seeking a highly skilled and experienced Regional Chief Information Security Officer (CISO) to oversee and manage the information security strategy and operations for our Japan headquarters.
The Regional CISO will also play a crucial role in supporting the Group CISO on global security initiatives, overseeing and implementing the lifecycle of information security within our organization in accordance with the group information security strategy and roadmap. Your role will involve developing and implementing robust security measures, managing the operational effectiveness of the group-level security protocols, ensuring the security of our information assets, managing the relationships with our regulatory bodies and external industry associations, ensuring compliance with relevant regulations, and leading a team of security professionals to protect our organization’s data and infrastructure.
Nomura is a global financial services group with an integrated global network spanning over 30 countries. Japan IT (Information Technology) is a diverse environment with employees of over 25 nationalities, who work on technical support, application development and implementation of system changes for Japan Retail Wealth Management Business and Global Wholesale (Global Markets and Investment Banking). Nomura provides competitive employee benefits, training and upskilling opportunities, and is committed to promoting diversity, equity and inclusion, employee health and well-being.
Job Summary: We are seeking a highly skilled and experienced Regional Chief Information Security Officer (CISO) to oversee and manage the information security strategy and operations for our Japan headquarters.
The Regional CISO will also play a crucial role in supporting the Group CISO on global security initiatives, overseeing and implementing the lifecycle of information security within our organization in accordance with the group information security strategy and roadmap. Your role will involve developing and implementing robust security measures, managing the operational effectiveness of the group-level security protocols, ensuring the security of our information assets, managing the relationships with our regulatory bodies and external industry associations, ensuring compliance with relevant regulations, and leading a team of security professionals to protect our organization’s data and infrastructure.
Responsibilities:
- Global Collaboration: Work closely with the Group CISO to support and implement global security initiatives and policies.
- Strategic Leadership: Develop, implement, and monitor a strategic, comprehensive information security and risk and control management program while maintaining and enhancing an information security management framework and all related policies and processes - according to the group strategy and roadmap. Protect Nomura while reducing risk, fulfilling compliance, audit and regulatory requirements. Together with planning for budget associated to security activities in Japan.
- Partnership Collaboration: Liaise with relevant business units (such as Internal Audit, Law, Finance, Safety & Security, Risk Management, HR teams), and external agencies as needed to ensure that the company maintains a strong security posture. Partner closely with all stakeholders, including business stakeholders, to identify business specific security requirements and implement them appropriately.
- Advisory Role: Provide leadership and guidance on information security topics, advising and collaborating on security processes, business continuity, and disaster recovery plans. Assist with overall technology planning, providing a current knowledge and future vision of technology and systems. Provide appropriate security controls for the business and Information Technology to ensure security policies, processes, and solutions are implemented on new products, services, and systems.
- Risk Management: Identify, assess, and mitigate information security risks across the region. Conduct regular risk assessments and audits.
- Policy Development: Create and enforce security policies, standards, and procedures to ensure compliance with regulatory requirements and best practices. Drive information security policies, standards, guidelines and oversee the dissemination of security policies and practices; identify knowledge gaps to increase the awareness of relevant information security practices across all Nomura’s entities.
- Security Governance: Lead governance, risk and control activity of Nomura Japan by implementing business centric risk management. Manage third party stakeholders and associated risks.
- Compliance: Ensure compliance with regional and international regulations, including data protection laws and industry standards.
- Security Awareness: Ensure that Nomura Japan has a healthy security culture with appropriate understanding of culture and language. Develop and implement security awareness programs to educate employees about security best practices and emerging threats. Lead the key security awareness events in the Japan region.
- Reporting: Provide regular reports on the status of the regional information security program to senior management and the Group CISO.
- Cyber Threat Management: Monitor external threat environment for emerging threats and advise relevant stakeholders on appropriate courses of action in collaboration with the global Cyber Threat Defense team.
- Incident Response: Lead and represent regional management in the response to significant information security breaches and events in the region, in conjunction with the Group CISO teams. Act as the point of contact for all cyber events regionally and manage the communication with management for incidents taking place in other regions.
- Cyber Simulation Tests: Run various security exercises such as cyber simulations. This also includes appropriate understanding of regulatory risks on Nomura and measurements to counter the risks.
- Team Management: Recruit, train, and manage a team of security professionals. Provide guidance and support to ensure the team’s effectiveness. Manage and develop security team for Nomura Japan that is capable of adequately protecting the company.
Leadership:
- Adheres to and promotes the company values and ethical framework, ensuring that the team operates to the same code of conduct.
- Leads an environment where people management and development is a top priority. Empowers, manages, coaches and mentors direct reports and others in the organization and holds their teams accountable for strong people management practices.
- Brings diverse teams together to collaborate on topics in order to achieve optimal ideas and recommendations.
- Drives the achievement of high performance overseeing effective career management, providing equitable opportunities, driving succession planning and talent management processes to ensure continuous development of people capability & delivery of results
- Acts as a role model for own team, communicating SMART business driven objectives at the beginning of the year, ensuring every team member has regular, continuous and constructive performance reviews, encouraging career development and mobility, nurturing talent and fostering diversity.
- Proactively manages tough people decisions to ensure people performance is aligned with organization imperatives and needs.
- Provides Regional view on people topics like talent, skills, seniority, development, promotion, and compensation.
- Contributes to year-end compensation process, hiring, retention, promotion and disciplinary actions.
登録資格
Requirements
Requirements
Requirements:
- Bachelor’s Degree or Advanced degree
- 10+ years of leadership experience in large, complex and global organizations.
- Broad experience across business and infrastructure disciplines as well as regulatory interaction including regulatory portfolio management, internal & external audit facilitation, performance and risk assessment, and technology & operational service delivery at both Global and Regional level.
- Experience evaluating and designing business and operational measures, managing complex change agenda, and driving strategy formulation and service delivery.
- Demonstrated executive experience leading a relevant business of similar size and complexity, including significant leadership across multiple locations as well as non-staff resource allocation, and leading through influence in a matrixed organization.
- Information security experience, possessing a strategic and operational understanding of risk frameworks as well as regional trends and best practices for managing information security within large, complex and global organizations.
- Ability to translate complex and technical security language and concepts into business risks and business cases.
- Ability to communicate with knowledge and credibility to all levels of management, including appropriate management committees, offering well considered information security solutions and recommendations.
- Demonstrated ability to develop strong relationships with regional external oversight and/or regional regulators.
- Japanese and English proficiency is critical as the position requires involvement with the global heads of security functions located in various regions.
勤務地
Location
Location
豊洲
New Job Alerts
ネクスト・ムーブ 株式会社
Business Analyst / System Bridge Engineer (NEEDED NOW)
FULL TIME
November 7, 2024
View Job DescriptionJeisys Medical Japan 株式会社 大阪オフィス
看護師・准看護師(前職給与を最大限考慮)
FULL TIME
November 7, 2024
View Job DescriptionGlobal food eCommerce company
英語を活かす/オペレーションスペシャリスト/Operations Specialist/センター・倉庫管理・運行・配車管理
FULL TIME
November 7, 2024
View Job DescriptionLooking for similar job?
ETAS
[ETAS]Regional Solution Field Manager Japan for Cyber Security business - Japan
FULL TIME
August 27, 2024
View Job Description野村證券株式会社
Global Sourcing - Regional Relationship & Implementation Lead −Japan
FULL TIME
August 29, 2024
View Job Description野村證券株式会社
Global Sourcing - Regional Relationship & Implementation Lead −Japan
FULL TIME
August 29, 2024
View Job DescriptionExpeditors
Specialist/Senior Specialist - Information Services, Regional
September 3, 2024
View Job DescriptionNew Job Alerts
ネクスト・ムーブ 株式会社
Business Analyst / System Bridge Engineer (NEEDED NOW)
FULL TIME
November 7, 2024
View Job DescriptionJeisys Medical Japan 株式会社 大阪オフィス
看護師・准看護師(前職給与を最大限考慮)
FULL TIME
November 7, 2024
View Job DescriptionGlobal food eCommerce company
英語を活かす/オペレーションスペシャリスト/Operations Specialist/センター・倉庫管理・運行・配車管理
FULL TIME
November 7, 2024
View Job Description