Job Description
Description:
The Information Security Department of Nomura Bank (Luxembourg) S.A. is in charge of the Information Security and Business Continuity Management. The objective is to ensure the confidentiality, integrity and availability of the Bank’s information assets and to support the continuity of its services.
The Department is responsible to maintain and improve the Bank’s security posture through creating Information Security policies and procedures, defining controls and ensuring their effectiveness, identifying risk and providing measures in accordance with the risk treatment decisions.
We have now an open position on a permanent contract to support the team in place.
Your main tasks will be to:
Perform a set of organizational and technical security controls to comply with applicable policies, procedures, audits, laws and regulations
Assess and manage IT or Business access requests
Define, validate and review the systems and applications access rights
Participate to the definition or modification of security policies or procedures
Perform tasks related to vulnerability management in accordance with the Banks’s information security framework
Inform IT team on zero-day and exploitable vulnerabilities for immediate action
Identify cyber threats and recommend control and measures to treat the risk
Monitor events, respond and investigate incidents, coordinate with the teams according to the incident response procedure and document incident reports
Maintain SIEM rules, correlation and dashboards
Develop and implement security tools/projects to define detective and protective controls
Provide support to other departments (IT, Project Management and Business departments)
Contribute to improve the Information Security posture of the Bank
Participate in internal and external audits
Recognize applicable laws and regulations in field of IT and Information Security
Job requirements:
Relevant experience in IT, Information Security or IT Audit
Educational background in Computer Sciences
Demonstrate technical capabilities and professional knowledge
Hands on experience in security systems, including some or all of the following: firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.
Familiar with identity and data governance solutions
Familiar with security frameworks, risk management methodologies, IT audits/practices
Knowledge of least privilege methodology with security rights, permissions, and groups
Well-organized and rigorous
Proactive, team-player and autonomous
Professional Ethics, Risk and Compliance awareness
Good English communication skills, both oral and written
Please be aware that in accordance with the law of July 23, 2016, the selected candidate will be requested to provide a criminal record (section 3)
If you are interested in this position and meet the job requirements, please apply via jobs.lu
,
IT / Programming
,
Security
