Nomura is an Asia-based financial services group with an integrated global network spanning over 30 countries. By connecting markets East & West, Nomura services the needs of individuals, institutions, corporates and governments through its three business divisions: Retail, Asset Management, and Wholesale (Global Markets and Investment Banking). Founded in 1925, the firm is built on a tradition of disciplined entrepreneurship, serving clients with creative solutions and considered thought leadership. For further information about Nomura, visit www.nomura.com
Department Overview ________________________________________
The department is a key part of Nomura's corporate governance and the department's primary objectives are to review the company's control environment and report any weaknesses identified to the Audit Committee and senior management. The Wholesale Technology Audit function forms part of the Global CAO audit team, which is global split across Operations and IT audit specialists reporting to the Global Head of CAO/CFO Audit based in London, who in turn reports to the Global Head of Wholesale Audit who is also based in London. This position will be based in EMEA but will be expected to work on global IT Infrastructure audit assignments.
Duties of the Role ________________________________________
The Internal Audit (IA) department covers technology risk through the audit of technology functions and through technology audit procedures integrated in all audits. There is a vacancy for a Technology Vice President to lead global audit work for Technology functions, including Infrastructure, IT Security, IT Governance, Access Management, Service Management and Software Development. The role also includes EMEA responsibility for Business Continuity Management, and technology audit coverage for EMEA regional offices. The successful candidate will report to the global Technology Portfolio Director (TPD).
The role's responsibilities are: * Managing global audits. Including planning, fieldwork and reporting. This involves managing the global team assigned to the audit, delivery of the audit within the planned timelines, reviewing all workpapers to meet departmental quality standards, and taking full ownership of key deliverables such as audit plans and audit reports. * Risk Assessments. This involves interaction with technology stakeholders, review of relevant metrics as well as other internal and external material, and full ownership of the final deliverables. * Continuous Monitoring. Including ownership of relationships with key technology stakeholders, review of metrics as well as other relevant internal and external material, evaluation of changes to the risk profile, any and full ownership of the final continuous monitoring deliverables. * Issue Tracking. Including determining the audit procedures required to validate the closure of audit issues, oversight of the work performed by the Issue Validation team, and review of the deliverables to meet departmental quality standards. * Data Analytics. Supporting IA's strategic initiative for Data Analytics by being an active supporter and contributor to this initiative. Advocate and develop audit colleagues to utilise data analysis to improve and enhance the audit approach. * Continuous Learning. Study public material or attend courses to remain abreast of changes in cyber security, information security, infrastructure technology, financial services industry, regulatory changes, and audit practices.
Skill and Experience Requirements * Strong knowledge of IT security, including both technical and business controls. * Strong experience of project management and systems development practices and processes. * Relationship management: Has proven ability to build strong relationships with auditees and can effectively manage upwards at senior levels. Demonstrates clear understanding of the business needs and exceeds expectations. Able to network and manage relationships at senior levels across the organisation and in the wider financial services industry. * Confident manner and strong communication skills, both oral and written. * Sound judgement on the criticality and impact of issues identified, with a risk and commercial focus. * Strong time and project management skills, consistently delivering to deadlines (budget and time). * Expert knowledge of leading infrastructure technologies including: Red Hat Linux, Microsoft Windows Server, Oracle MySQL, Oracle SQL, Microsoft SQL Server, Tibco Rendezvous, Tibco EMS, IBM MQ, IBM WebSphere, Solace, Amazon Web Services, Microsoft Azure, Cisco virtualization, VMWare virtualization, and Cisco networking products. * Experience in assessing controls based on COBIT or other leading technology risk management and governance control framework. * Experience in assessing controls based on NIST, SANS, ISO27000 or other leading cyber security framework * Qualifications: Required: CISSP, CISA. Highly desirable: ITIL, COBIT, CIA.
Nomura competencies Trusted Partner Understand clients' needs and issues, and provide solutions utilizing Nomura Group company's resources, earn the clients' trust Acquire a wide range of knowledge as an employee of Nomura, instead of focusing only on one's own area of expertise; play a part in improving the company's services level and corporate value Entrepreneurial leadership Take on new challenges for improvement and cultivate a corporate culture of challenge by driving change in business operations Teamwork Collaboration Ensure views are not biased, accept different opinions and perspectives, and collaborate with other members to create common values Influence Provide appropriate guidance to others and act in a manner that places emphasis on the performance and growth of the organization Integrity Improve further the understanding and awareness of corporate philosophy, professional ethics, compliance risk management, and code of conduct, and make decisions and take actions from a management position
Right to Work The UK Government have taken steps to reduce net migration to the UK by limiting the number of overseas workers from outside the EEA coming to the UK for employment. Please note that whilst we are able to consider applications from overseas workers from outside the EEA (who require a Tier 2 (General) visa) we can only employ them if we can provide evidence that there are no other suitable candidates for this vacancy from inside the EEA.
Please contact us if you are visiting our offices and require any form of personal assistance or physical adaptations to be provided for your appointment. A member of staff will be happy to help.