求人詳細

ハイクラス
求人コード 001-163
求人企業 外資系生命保険
求人タイトル 情報セキュリティ(マネージャー~アシスタントマネージャー)
職務内容 POSITION SUMMARY:
Under the general direction of the “Head of IT Security”, the “Senior Information Security Officer” is responsible for the enhancement and delivery of a comprehensive security and privacy program for XYZ Life Japan. The scope of this program is company-wide and includes information in electronic, print and other formats. The purpose of this program include; to assure that information created, acquired or maintained by XYZ Life Japan and its authorised users, is used in accordance with its intended purpose; to protect XYZ Life Japan information and its infrastructure from external or internal threats; and to assure that XYZ Life Japan complies with statutory and regulatory requirements regarding information access, security and privacy.

POSITION DUTIES, RESPONSIBILITIES AND COMPETENCIES

◆Policy
Coordinate the development of XYZ Life Japan information security policies, standards and procedures. With key IT owners, data custodians and governance groups in the development of such policies. Ensure that XYZ Life Japan policies support compliance with external requirements, and head office. Oversee the dissemination of policies, standards and procedures to the XYZ Life Japan community.

◆Education and Training
Coordinate the development and delivery of an education and training program on information security and privacy matters for employees, other authorised users.

◆Compliance and Enforcement
Serve as the XYZ Life Japan compliance officer with respect to both head office and local security policies and regulations. Work with XYZ Life Japan enterprise operational risk management where necessary. Prepare and submit required reports to external agencies where required.

◆Incident Response
Follow and improve existing Incident Reporting procedures, both for security incidents, and any alleged policy violations or potential complains from external parties. Serve as the official XYZ Life Japan contact point for information security, privacy and any potential relationship with law enforcement agencies.

Risk Assessment and Incident Prevention

Maintain on-going risk assessment program targeting information security and privacy matters; recommend methods for improved vulnerability detection and remediation, and oversee and advise on vulnerability testing.

◆Official Contact
Act as the “Head Of IT Securities” designee representing XYZ Life Japan on Information Security matters; serve as a contact point for external auditors and agencies, survey requests, etc. on security/privacy matters.

◆Maintain Knowledgebase
Keep abreast of latest security and privacy legislation, regulations advisories, alerts and vulnerabilities pertaining to XYZ Life Japan and its overall mission.

◆Emergency Preparedness
Take part in XYZ Life Japan recovery planning.
応募要件
(必須)		 最終学歴:四年制大学卒以上
◆QUALIFICATIONS
The emphasis of this position is on policy development, administration and compliance/incident response activities, and technical knowledge. Candidates with less technical/policy knowledge will be considered when there is competing knowledge in other related areas. Help will be provided on job for any candidates that lack related knowledge but have other redeemable qualities.

◆Education
University degree or similar discipline required. Security certifications preferred but not essential. Minimum TOEIC level of 500 required.

◆Experience
Minimum five years of experience in information security, information technology or related field; experience in developing and administering an information security program desirable. Working experience of and experience in the policy and regulatory environment of information security, especially in the insurance industry is desirable. Excellent project management, written and oral communication skills desired; ability to work collaboratively with a broad range of constituencies essential. A demonstrate ability to work with a diverse group of people is required.
応募要件
(尚可、その他)
勤務地 東京
年収 600万~1200万(応相談)