Security Engineer - Observability Pipeline

Job Title: Security Engineer - Observability PipelineJob Code: 12200Country: USSkill Category: IT\TechnologyDescription: Job title: Security Engineer - Observability Pipeline Corporate Title: Associate Department: Technology Location: JacksonvilleThe pay range for this position at commencement of employment is expected to be between $95,000 and $110,000 annually.Company OverviewNomura is a global financial services group with an integrated network spanning approximately 30 countries and regions. By connecting markets East & West, Nomura services the needs of individuals, institutions, corporates and governments through its three business divisions: Wealth Management, Investment Management, and Wholesale (Global Markets and Investment Banking). Founded in 1925, the firm is built on a tradition of disciplined entrepreneurship, serving clients with creative solutions and considered thought leadership. For further information about Nomura, visit www.nomura.com.Aon's Benefit Index , Nomura's benefits rank1 amongst our competitorsDepartment OverviewThe Information Technology department at Nomura is at the forefront of innovation, driving technology solutions that empower our business and enhance client experiences. We leverage cutting-edge technologies to develop and maintain robust systems and infrastructure, ensuring the security, reliability, and efficiency of our operations. Join our team and be part of a dynamic and collaborative environment that embraces technological advancements to deliver value and drive our digital transformation journey.Role DescriptionWe are seeking a skilled Security Engineer to join our team in building and maintaining a cutting-edge security observability pipeline using cloud services. This role combines security expertise with cloud engineering to create scalable detection and monitoring capabilities that protect our organization and enhance our security posture.Key ResponsibilitiesPipeline Development & ArchitectureDesign, build, and maintain security observability pipelines using AWS Kinesis, Lambda, S3, Athena, and related servicesDevelop real-time and batch processing workflows for security event ingestion, enrichment, and analysisImplement scalable data processing architectures to handle high-volume security telemetryDesign efficient data schemas and models optimized for security analytics and storageSecurity EngineeringCreate and tune security detections, alerts, and automated response mechanismsDevelop custom parsers and data transformation logic for various security log sourcesBuild correlation rules and behavioral analytics to identify threats and anomaliesCollaborate on incident response and threat hunting initiativesInfrastructure & AutomationImplement Infrastructure as Code (IaC) using tools like Terraform, CloudFormation, or CDKDesign and maintain CI/CD pipelines for security tooling and detection deploymentAutomate security operations workflows and orchestrate multi-service integrationsSkills, Experience, Qualifications and Knowledge RequiredRequired QualificationsTechnical SkillsPython proficiency- Strong programming skills with experience in data processing, APIs, and automationAWS Cloud Services- Hands-on experience with Kinesis, Lambda, S3, Athena, CloudWatch, IAM, and other core servicesData Processing- Experience with JSON, Parquet, Avro, and CSV parsing and manipulationStream Processing- Understanding of real-time data processing concepts and streaming technologiesData Modeling- Ability to design efficient schemas for security data storage and analyticsAPI Development- Experience building and consuming REST/GraphQL APIsRegular Expressions- Proficient in regex for log parsing, pattern matching, and data extractionSecurity Logging & Monitoring- Understanding of security event formats, log sources, and monitoring conceptsExperience RequirementsSIEM Experience- Previous work with security information and event management platformsCI/CD Knowledge- Familiarity with continuous integration/deployment practices and toolsInfrastructure as Code- Experience with orchestration tools (Terraform, Ansible, CloudFormation, etc.)Detection Engineering- Background in creating security detections, rules, and analyticsPreferred QualificationsExperience with additional AWS services (EventBridge, Step Functions, ECS/EKS, etc.)Knowledge of security frameworks (MITRE ATT&CK, NIST, etc.)Familiarity with threat intelligence platforms and feedsExperience with data visualization tools (PowerBi, Grafana, Kibana, etc.)Background in cloud security and compliance requirementsPrevious work with streaming data platforms (Kafka, etc.)SQL proficiency for complex data analysis and queryingWhat You'll Work WithData Pipeline: Kinesis Data Streams/Firehose, Lambda functions, S3 data lakesData Formats: JSON logs, Parquet analytics tables, Avro schemas, CSV exportsAnalytics: Athena queries, CloudWatch dashboards, custom analytics enginesAPIs: RESTful services, GraphQL endpoints, AWS SDK integrationsAutomation: Python scripts, AWS SDK/CLI, infrastructure automation toolsSecurity Tools: Various SIEM platforms, threat intelligence feeds, security APIsIdeal Candidate ProfileYou're someone who enjoys solving complex technical challenges at the intersection of security and cloud engineering. You have a strong foundation in both security operations and modern cloud architectures, with the ability to translate security requirements into scalable technical solutions. You're comfortable working with diverse data formats and building robust data processing pipelines that can handle enterprise-scale security telemetry.Nomura CompetenciesExplore Insights & VisionIdentify the underlying causes of problems faced by you or your team and define a clear vision and direction for the future.Making Strategic DecisionsEvaluate all the options for resolving the problems and effectively prioritize actions or recommendations.Inspire Entrepreneurship in PeopleInspire team members through effective communication of ideas and motivate them to actively enhance productivity.Elevate Organizational CapabilityEngage proactively in professional development and enhance team productivity through the promotion of knowledge sharing.InclusionFoster a culture of inclusion and psychological safety in the workplace and cultivate a "Risk Culture" (Challenge, Escalate and Respect).*base pay offered may vary depending on multiple individualized factors, including market location, corporate and functional title and duties, job-related knowledge and advanced degrees, skills, and experience. The total compensation package for this position may also include other elements, including a sign-on bonus, restricted stock units, discretionary awards and eligibility for commissions for applicable sales roles in addition to a full range of medical, financial, and/or other benefits (including 401(k) eligibility and various paid time off benefits, such as vacation, sick time, and parental leave), dependent on the position offered. Details of participation in these benefit plans will be provided if an employee receives an offer of employment.If hired in the U.S., employee will be in an "at-will position" and the Company reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, Company or individual department/team performance, and market factors".Nomura is an Equal Opportunity EmployerJ-18808-Ljbffr