Identity and Access Management (IAM) - Enterprise Architect

Identity and Access Management - Enterprise Architect

Vice President

Group CTO

Group Platform Services and Engineering

London (Hybrid)

Nomura is a global financial services group with an integrated network spanning approximately 30 countries and regions. By connecting markets East & West, Nomura services the needs of individuals, institutions, corporates and governments through its three business divisions: Wealth Management, Investment Management, and Wholesale (Global Markets and Investment Banking). Founded in 1925, the firm is built on a tradition of disciplined entrepreneurship, serving clients with creative solutions and considered thought leadership. For further information about Nomura, visit www.nomura.com

The Information Technology department at Nomura is at the forefront of innovation, driving technology solutions that empower our business and enhance client experiences. We leverage cutting-edge technologies to develop and maintain robust systems and infrastructure, ensuring the security, reliability, and efficiency of our operations. Join our team and be part of a dynamic and collaborative environment that embraces technological advancements to deliver value and drive our digital transformation journey.

We are looking for a skilled Identity Technology Architect to join our team to help craft a roadmap that consolidates multiple security tools into a single vision of the IAM Eco System. Foundational to this will be a robust zero trust architecture and implementing a passwordless authentication strategy using FIDO2 standards while leveraging modern IGA and PAM platforms. This architect will lead the design and execution of a comprehensive roadmap that enhances our security posture, improves user experience, and reduces risk related to identity and access management. The experienced Identity and Access Management (IAM) Architect will design, develop, and implement IAM solutions for our organization. The IAM Architect will help drive the IAM program to modernize the Identity and Access systems across the Nomura group companies including application authentication, authorization and security capabilities.

• Roadmap Development: Design and build a detailed roadmap for transitioning to a zero trust architecture, emphasizing passwordless authentication methods and FIDO2 compliance utilising a primarily Microsoft eco-system (Entra ID, InTune, MS Authenticator etc.) complimented by Saviynt and CyberArk/Conjur.
• Architectural Design: Create secure identity and access management solutions that align with zero trust principles, minimizing the reliance on traditional password-based authentication.
• As the technical lead for IAM ensure that designs are delivered in line with the published roadmap and that integration with associated platform is considered and well executed (HR systems ad ITSM in particular).
• FIDO2 Implementation: Oversee the implementation of FIDO2 standards across applications and platforms, ensuring compatibility and adherence to best practices for secure authentication.
• Security Assessments: Conduct thorough assessments of existing identity management systems and recommend enhancements based on zero trust and passwordless principles.
• Collaboration: Collaborate with IT, security teams, and business units to define identity governance policies, ensuring alignment with organizational strategies and compliance requirements.
User Experience Enhancement: Advocate for user-friendly authentication solutions that balance security and user experience through the adoption of biometrics and hardware based authentication.
• Monitoring and Reporting: Establish metrics to monitor the implementation of the zero trust and passwordless initiatives, providing insights and reporting on their effectiveness.
• Documentation: Create and maintain comprehensive technical documentation, including architectural diagrams, design documents, and operational procedures related to IAM solutions.
• Training and Awareness: Develop training materials and conduct workshops to enhance staff understanding and acceptance of zero trust and passwordless principles.

• Education: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field; Master's degree preferred.
• Experience: Several years of experience in identity and access management, with significant experience as an Architect.
• Technical Skills: Deep understanding of FIDO2, IGA, PAM and Authentication technologies, along with experience implementing these frameworks in complex environments.
• Knowledge of Security Standards: Familiarity with relevant security frameworks, protocols, and standards (NIST, ISO 27001, etc.) and their application to identity security.
• Soft Skills: Strong analytical, problem-solving, and communication skills with the ability to translate complex technical concepts to various stakeholders. Proven track record of achieving results through collaboration and teamwork.>
• Relevant certifications such as CISSP, CISM, or CISA are highly desirable.

• Identify the underlying causes of problems faced by you or your team and define a clear vision and direction for the future.

• Evaluate all the options for resolving the problems and effectively prioritize actions or recommendations.

• Inspire team members through effective communication of ideas and motivate them to actively enhance productivity.

• Engage proactively in professional development and enhance team productivity through the promotion of knowledge sharing.

• Respect DEI, foster a culture of psychological safety in the workplace and cultivate a "Risk Culture" (Challenge, Escalate and Respect).

The UK Government have taken steps to reduce net migration to the UK by limiting the number of overseas workers from outside the EEA coming to the UK for employment. Please note that whilst we are able to consider applications from overseas workers from outside the EEA (who require a Tier 2 (General) visa) we can only employ them if we can provide evidence that there are no other suitable candidates for this vacancy from inside the EEA.

Nomura is committed to an employment policy of equal opportunities and is fundamentally opposed to any less favourable treatment accorded to existing or potential members of staff on the grounds of race, creed, colour, nationality, disability, marital status, pregnancy, gender or sexual orientation. If you require any assistance or reasonable adjustments due to a disability or long-term health condition, please do not hesitate to contact us.

Nomura is an Equal Opportunity Employer