Associate, IT Security Vulnerability Management

7 days ago


Singapore Nomura International Full time

Associate, IT Security Vulnerability Management Coordinator

**Overview**:
Nomura employs a robust Vulnerability Management (VM) team, members of which are located in all of its major regions, namely EMEA, Americas, India, Singapore, and Japan. This team is separated into two distinct areas:

- Vulnerability Management - Operations
- Vulnerability Management - Coordinators

Operations is responsible for the day to day BAU requirements of VM operations along with vulnerability and policy based remediation, analysis, notification and tracking. Members are also responsible for designing, implementing and maintaining Nomura's IT Security Policy and strategies Coordination is more focused on vulnerability analysis and remediation of the vulnerabilities. They will be using the regular scan results and work with the varying remediation teams to remediate the vulnerabilities within set Patch/Remediation Guidelines

**Responsibilities**:
This position will coordinate information and actions across all Regional Teams (other regional VM leads and coordinators), meeting with them regularly through regional handovers. The position will also be responsible for regional regulatory, audit and KRI reporting ensuring regional VM scanning, remediation and policy scans ensuring SLAs and reporting KRIs. The focus of this resource will be primarily AEJ Region (but includes coverage across the global; handover of other regional Ops resources is critical)

The position also will be required to know and work along with other teams in these varying areas:

- Threat Intelligence
- Security Operations Centre
- Security Surveillance
- Vender Risk Management
- Cyber Incident Response and Forensics
- Penetration Testing and Red Team Exercises
- Governance, Risk, and Compliance (GRC),
- Security Architecture
- IT Security Policy Setting
- Information Security Management and Training

All team members will need to perform project management activities (Change the Bank (CTB)), as well as operational activities and support (Run the Bank (RTB)).

**Requirements**:

- Minimum Degree in Information Technology or Computer Science from an accredited University
- Minimum of 10 years' experience in IT Security focusing on Vulnerability Management and Vulnerability Management Coordination
- Experience with server administration (on Windows, UNIX, Database, Networks platforms)
- Experience in conveying complex information that is easily understandable to non-technical individuals and business clients while under strict deadlines.
- Must have solid critical thinking skills and be able to collect and analyze evidence from logs, monitoring and other diagnostics
- Possess security certifications such as: Nexpose NCA/NACA, AWSCS, PCCSE, CISSP, CISM, CISA, Security+, CEH, CCSK, or similar industry recognized certifications.
- Knowledge of controls frameworks such as NIST CSF, NIST SP 800-53, ISO 27001/2, CIS, and FISC.
- Must have prior experience in an IT operations/support role and IT Security
- Strong Operational Knowledge and conceptual understanding of other infrastructure and Security technologies as it pertains to servers, database, core services, and networks.
- Ability to prioritize and effectively triage issues.
- Ability to effectively balance time between day-to-day support work and project-related tasks.
- Ability to work in a team-oriented setting is a definite requirement with strong interpersonal skills.
- Ability to deal with changing priorities and work with global teams 4
- Vulnerability Management Tooling (Rapid7 or other VM Tooling background)
- Operational Support Experience within MS Active Directory or Exchange infrastructure
- Operational Support Experience within Red Hat Enterprise Linux, or Solaris based systems
- Operational Support Experience within Networking
- Other best-practice IT certifications such as ITIL or COBIT
- Working Knowledge with Service Now and/or CMDB concepts

**Diversity Statement**

Nomura is committed to an employment policy of equal opportunities, and is fundamentally opposed to any less favourable treatment accorded to existing or potential members of staff on the grounds of race, creed, colour, nationality, disability, marital status, pregnancy, gender or sexual orientation.

**DISCLAIMER** **:This Job Description is for reference only, and whilst this is intended to be an accurate reflection of the current job, it is not necessarily an exhaustive list of all responsibilities, duties, skills, efforts, requirements or working conditions associated with the job. The management reserves the right to revise the job and may, at his or her discretion, assign or reassign duties and responsibilities to this job at any time.**

Nomura is an Equal Opportunity Employer

Job ID 5527



  • Singapore SMART INFORMATION MANAGEMENT SYSTEMS PRIVATE LIMITED Full time

    **Executive Summary** Smart IMS Inc provides Digital technology & Cloud transformation services, Application & Infrastructure Management Services, Unified Communications, and Insurance implementation services to customers across the Americas, Europe, Middle East, and Asia-Pacific regions. As the trusted technology and business partner of leading MNCs,...


  • Singapore TikTok Pte. Ltd. Full time $104,000 - $130,878 per year

    Responsibilities Team Introduction: The mission of TikTok's Global Security Organization is to build and earn trust by reducing risk and securing our businesses and products. Also known as "GSO", this team is the foundation of our efforts to keep TikTok safe, secure, and operating at scale for over 1 billion people around the world. We work to ensure that...


  • Singapore SEDHA CONSULTING PTE. LTD. Full time

    **Vulnerability Assessment Analysts** **Job Scope**: - Perform scans and audits of systems to identify and categorize vulnerabilities. - Utilize various tools and software to systematically evaluate the security posture of IT infrastructures. - Analyse vulnerability reports and prioritize findings based on risk. **Qualifications**: - Strong understanding...


  • Singapore beBeeCybersecurity Full time $80,000 - $120,000

    Job DescriptionWe are seeking a highly skilled Vulnerability Management Analyst to join our team. As a Vulnerability Management Analyst, you will play a critical role in identifying and mitigating potential security threats to our systems and networks.Key Responsibilities:Conduct regular vulnerability scans using advanced tools and techniques to identify...


  • Singapore SINGAPORE TELECOMMUNICATIONS LIMITED Full time

    **Responsibilities**: - Enhance the Group’s vulnerability management programmes to identify, assess, and remediate security vulnerabilities. - Collaborate with cross-functional teams to assess vulnerability risks and prioritize remediation efforts. - Establish and maintain a vulnerability tracking system to monitor and report on the status...


  • Singapore Randstad Singapore Full time

    Security Vulnerability Management Analyst | APAC | Regional Join us to apply for the Security Vulnerability Management Analyst | APAC | Regional role at Randstad Singapore . Job Details 2 days ago | Be among the first 25 applicants Get AI-powered advice on this job and access more exclusive features. Responsibilities Own the full vulnerability...


  • Singapore beBeeCybersecurity Full time $90,000 - $120,000

    We are seeking a highly skilled Senior Consultant to join our team at The Hacens Talent Pte Ltd. In this role, you will conduct end-to-end Vulnerability Assessment and Penetration Testing (VAPT) on systems, networks, and applications, spanning from SME to Enterprise level.Key Responsibilities:Conduct VAPT on various systems, networks, and...


  • Singapore PSA Singapore Full time

    Deputy Manager/Manager (Security Vulnerability Management)Join us to apply for the Deputy Manager/Manager (Security Vulnerability Management)role at PSA Singapore . This role involves overseeing the enterprise-wide vulnerability management lifecycle, including identifying, assessing, prioritizing, and remediating security vulnerabilities across systems,...


  • Singapore TikTok Full time

    Technology Security Engineer, Vulnerability Management - Global Security Organisation **Location**: Singapore Employment Type: Regular Job Code: A174619B **Responsibilities**: **Team Introduction**: The mission of TikTok's Global Security Organization is to build and earn trust by reducing risk and securing our businesses and products. Also known as "GSO",...


  • Singapore Crypto.com Full time

    We are looking for an intermediate level security specialist to join our Global Cybersecurity Services Team. As part of our modern cybersecurity operating model, the role will be engaged in enhancing our security technology stack, building AI driven security automation workflows and contributing to security operations and vulnerability management. We are...