Information Security Data Operations - Director

SMBC Group is a top-tier global financial group. Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance. The Group has more than 130 offices and 80,000 employees worldwide in nearly 40 countries. Sumitomo Mitsui Financial Group, Inc. (SMFG) is the holding company of SMBC Group, which is one of the three largest banking groups in Japan. SMFG's shares trade on the Tokyo, Nagoya, and New York (NYSE: SMFG) stock exchanges.

In the Americas, SMBC Group has a presence in the US, Canada, Mexico, Brazil, Chile, Colombia, and Peru. Backed by the capital strength of SMBC Group and the value of its relationships in Asia, the Group offers a range of commercial and investment banking services to its corporate, institutional, and municipal clients. It connects a diverse client base to local markets and the organization's extensive global network. The Group's operating companies in the Americas include Sumitomo Mitsui Banking Corp. (SMBC), SMBC Nikko Securities America, Inc., SMBC Capital Markets, Inc., SMBC MANUBANK, JRI America, Inc., SMBC Leasing and Finance, Inc., Banco Sumitomo Mitsui Brasileiro S.A., and Sumitomo Mitsui Finance and Leasing Co., Ltd.

The anticipated salary range for this role is between $203,000.00 and $230,000.00. The specific salary offered to an applicant will be based on their individual qualifications, experiences, and an analysis of the current compensation paid in their geography and the market for similar roles at the time of hire. The role may also be eligible for an annual discretionary incentive award. In addition to cash compensation, SMBC offers a competitive portfolio of benefits to its employees.

Role Description

The Director Information Security Data Operations is a critical role within the Information Security department and will report to the MD Head of Cyber Security Strategic Data and Business Management for the SMBC Americas Division.

This Director role is part of the overall cyber data initiative focusing on building out the security and risk data management strategy and data governance for ISAD This individual will be responsible for leading a cyber data team and ensuring effective data governance and data management best practices within the Information Security domain Thy will lead the larger effort of creating a Cybersecurity Data Warehouse CyberDW to centralize the ISAD data as well as establish effective data governance around the data sources and its data lineage This role will collaborate with the data owners governance leads and developers within the Information Technology IT department as well as other stakeholders aligned with the applications owned by ISAD.

This role will also ensure compliance with regulatory requirements and promote data management and data governance best practices The ideal candidate will drive data management development address data quality issues and align with data management standards and procedures

Role Objectives

• Lead mentor and manage a team of data analysts developers and data governance SMEs
• Utilizing the banks data governance framework partner with the Chief Data Analytics Office CDAO within IT to onboard key data elements KDE document key data usage KDU and establish Data Quality DQ rules with the data owners data custodians and data stewards of ISAD Capture and document metadata for identified KDEs to ensure accuracy and completeness
• Partner with data owners to ensure data governance practices align with organizational objectives and information security requirements
• Work with the data architecture team to align KDEs to the logical data models develop physical data structures and document physical data names definitions and data types
• Spearhead the design and development of CyberDW ensuring that the data models align with the CDAO data governance framework as well adherence to the Master Data Management MDM framework Establish a CyberDW data repository and strategy around the ingestion processing and storage of data from upstream data sources
• Partner with the data owners and stakeholders to gather requirements create business and technical specifications around the data elements needed in the CyberDW Partner with the Business Management team and Data Owners to understand what critical metrics and data fields are needed for the Cyber Metric Dashboards CyberUI
• Establish CyberDW views to encapsulate the data so that it is fit for downstream consumption Ensure that the data aligns with DQ rules established on that metadata so it is fit for daily use Utilize the firms production job scheduling system and adhere to standards around the daily scheduling and batch monitoring of production jobs
• Identify and resolve DQ issues including inaccuracies and incomplete information Enhance data quality efforts by implementing improved procedures and processes
• Work closely with CDAO leads to ensure compliance with regulatory requirements and bank policies

Qualifications and Skills

• Bachelors degree in Computer Science Information Security Data Management or related field
• 10 years experience in IT development data governance data architecture or related roles preferably in a highly regulated environment such as financial services
• Experience with data modeling data definitions data lineage and data architecture principles
• Strong knowledge of enterprise Information Security data ie Phishing Identity Management Privileged Access Cloud Security Incident Response Vulnerability Management Threat Detection
• Strong understanding of information security frameworks ie NIST CIS ISO 27001 and regulatory compliance ie NYSDFS GDPR CCPA
• Proficient in data management and data modeling tools ie Collibra DQIM Erwin
• Strong knowledge of CICD and DevOps tooling ie Git Jenkins DevOps Database platforms ie Databricks SQL Oracle Informatica MDM REST API services
• Cloud Security and hands on knowledge with Azure and AWS is highly desired
• Data knowledge of ISAD SaaS products ie Crowdstrike Tenable Proofpoint WIZIO JIRA Confluence SharePoint MS0365 Azure Active Directory
• Ability to plan coordinate and support data governance needs in a fastpaced rapidly changing environment
• Strong organizational project management skills and proven ability to influence and deliver on objectives
• Problem solving and analytical skills with a proactive and results oriented approach
• Relevant certifications such as CISSP CDMP DGSP or equivalent are strongly preferred

Additional Requirements

SMBC's employees participate in a Hybrid workforce model that provides employees with an opportunity to work from home, as well as, from an SMBC office. SMBC requires that employees live within a reasonable commuting distance of their office location. Prospective candidates will learn more about their specific hybrid work schedule during their interview process. Hybrid work may not be permitted for certain roles, including, for example, certain FINRA-registered roles for which in-office attendance for the entire workweek is required.

SMBC provides reasonable accommodations during candidacy for applicants with disabilities consistent with applicable federal, state, and local law. If you need a reasonable accommodation during the application process, please let us know at accommodations@smbcgroup.com.