求人詳細
| 求人コード | 060-291 |
|---|---|
| 求人企業 | 外資系損害保険 |
| 求人タイトル | Information-Security-Specialist |
| 職務内容 | 【概要】 Our group has established consistent security measures throughout the Group with the aim of reliably responding to increasing cybersecurity threats, making decisions on prompt risk responses, and taking sustainable security measures in response to the business environment. Our vision for information security is to protect our customers and stakeholders by protecting information assets and managing cyber risks in an efficient and effective manner. This vision is fully supported by management and all employees. We are looking for a Security Specialist who can effectively and efficiently ensure Business Information Security to have an appropriate level of protection for its information assets from the increasing threat to cybersecurity, in keeping with Group Standards, Regulatory requirements and the particular risk profile. You will be responsible for following tasks belonging to the department responsible for governance, education, and security project portfolio management under the Chief Security Officer. We will discuss the scope of work depending on your experience and ability. 【Key Accountabilities】 ◆Security Education/Awareness ・Planning and implementation of various security education and training programs ・Translation of various security education programs, Reporting and coordination of various security education programs to Group Security, etc. ◆Security Project Management ・Establish a security strategy for Japan in line with the Group's security strategy and manage the security project portfolio. ・Responsible for the day-to-day management of one or more complex project/programs in security domain. You may also manage project coordinator(s) and other members assisting with projects. ・The role requires class-leading stakeholder engagement involving strong written and verbal communication skills, ability to empathize with and respond to internal customers' needs, problem-solving skills and the ability to function effectively in a fast-moving, rapidly changing environment. ・Collaboration with multi-location and cross-functional teams will be key to maintain and improve the project delivery. ◆Security Governance ・Our group companies in Japan will share governance where possible and implement efficient security governance. Continual improvement activities will also be implemented. ・Operate committees as part of security governance ・Preparing and submitting quarterly reports to the group and explaining them to the management meeting of each company in Japan. ・As SME, mainly responsible for the domain of security governance, security strategy and security education topics in ISMS assessment, with support from Assurance team ・Budget management and planning for the next fiscal year for the security division ◆Risk Management ・Implement and report to the Group companies in accordance with the ISO27K-like Group Risk Assessment Framework. ・Compilation of security projects for risk reduction ◆Internal security guideline management ・Review, update, and localize policies, procedures, and standards of Our group companies, and collaborate with other departments. ◆Technical security verification ・Desk review of technical security assurance ・Support for assurance activities through penetration testing, development and implementation of corrective measures for issues raised ◆Others ・Vendor management (security evaluation at the time of order placement, annual security evaluation, etc.) |
| 応募要件 (必須) |
最終学歴:四年制大学卒以上 |
| ◆Technical skills, Job experiences ・5+ years of experience in IT (infrastructure) ・3+ years of experience in Information Security ・Experience in Project management ・Experience in Security Awareness/Education Program ・Knowledge in Information Security Governance, standards, and processes (Functional and Technical) ・Knowledge in Industry Risk Management Standards, Security Architecture, Operational Security ◆Behavioral skills ・Ability to understand company & departmental strategies, demonstrate leadership in assigned work ・Able to multi-task in fast paced environment and gets through challenging situations. ・Good analytical skills, team player and with attention to details ・and responsible for each own attributed project or task and deliver it to completion with minimal supervision ・Good communication skill within the team, across other teams and business users ・the status quo and seeks continuous improvement of processes and system security ・Challenges risk management on delivering new technology to improve company productivity ◆Certificate, Education background ・Bachelor’s degree ・CISSP, CISM (a plus) ◆Language skills ・Bilingual: Japanese - Native; English – Fluent (TOEIC: at least 800level) |
|
| 応募要件 (尚可、その他) |
|
| 勤務地 | 東京 |
| 年収 | 500万~900万(応相談) |
