ICT and Security Risk Officer – CDI

The ICT and Security Risk Department of Nomura Bank (Luxembourg) S.A. is in charge of information security, IT and cyber security risk of the Bank. ICT and Security Risk Department defines the security requirements by establishing a comprehensive framework including policies, procedures and controls to respond to evolving threats, business and regulatory requirements.

We are looking for an ICT and Security Risk Officer on a permanent contract to join a team of information security professionals.

Your main tasks will be to:

1. Support the department in implementing the collective objectives of information security at the second line of defence
2. Actively collaborate with IT Teams to review and improve Identity and Access Management (IAM) landscape incl. tooling, processes and policies
3. Collaborate with other team members and with the Head of Department to improve the ICT and security risk management framework
4. Support the vulnerability management processes to ensure treatment and identify threats and risks in the IT landscape
5. Perform, review and test ICT risk treatment and controls
6. Monitor and verify the security posture of the Bank
7. Participate in IT and security projects as required (ad-hoc basis)
8. Conduct reviews and suggest improvements for technical IT/security architecture

Job requirements:

1. First experience in information security and ICT risk management
2. Educational background in Computer Science, IT, Information Security or a similar field
3. Have a strong understanding of cybersecurity and ICT Risk Management frameworks, industry standards and regulations (e.g. ISO27 Standards, NIST Framework, DORA)
4. Knowledge of IT operational security and monitoring (SIEM) and experience with corresponding tools is an added value
5. Experience working on Identity & Access Management (IAM) topics/ initiatives is a plus
6. Ability to work and communicate well with teams across different functions
7. Proactively support business and IT teams in assessing and understanding security and ICT risks
8. Adopting a growth mind-set within the team and organization – promote security culture
9. Excellent team player with proactive and autonomous work ethics
10. Strong analytical skills with attention to detail
11. Awareness of professional ethics, risk and compliance
12. Fluent in English

Please be aware that in accordance with the law of July 23, 2016, the selected candidate will be requested to provide a criminal record (section 3)

If you are interested in this position and meet the job requirements, please apply by clicking on our Nomura Recruitment Gateway.