Annual Salary: 7 Million Yen and above

Job Summary

  • We are seeking an Information Security (IS) Risk Governance professional for a leading life insurance company based in Tokyo.
  • You will be expected to play a critical role in protecting the confidentiality, integrity, and availability of the company’s and customers’ information.
  • You will be expected to provide hands-on work for daily activities while proactively proposing solutions to drive continuous improvement.
  • You will be expected to promote our IS programs by working closely in the IT organization and with other control functions as well as related businesses, while leveraging AI to enhance efficiency and effectiveness.

Job Responsibilities

  • This position serves the following critical functions within the IS Group. For each area, key responsibilities include assessing, responding to, and driving improvements from an IS Risk Management perspective.
  • Maintain policies, procedures, and manuals related to IS.
  • Conduct various IS self-assessments and address identified gaps, including cybersecurity self-assessments based on the Guidelines on Cybersecurity for the Financial Sector, IT Non-Financial Risk Assessments (NFRA), and assessment based on the Technical Safety Management Measures under the Personal Information Protection Act (PIPA)
  • Continuously enhance IS controls through governance routines.
  • Respond to IS questionnaires from group insurance companies and/or bank customers as part of security due diligence processes.
  • Manage IS issues, including promoting and supporting issue registration, monitoring remediation progress, and preparing and maintaining relevant metrics and reports for stakeholders.
  • Perform IT auditee responsibilities for IT General Controls (ITGC) in US GAAP (SOX) and J-GAAP external IT audits in Japan, including collecting and reviewing relevant documentation and evidence for submission.
  • Monitor regulatory changes and industry trends related to IS and analyze their implications to determine necessary actions.
  • Support PCI DSS-related activities.
  • Proactively communicate and collaborate with local and global stakeholders to executeGovernance, Risk Management, and Compliance (GRC) activities related to IS.
  • Lead GRC-related initiatives within the IS domain.x

Job Qualifications

  • Minimum of 4 years of hands-on experience in the IS field.
  • Ability to prepare accurate reports for all levels of staff in clear and appropriate language, as well as deliver effective oral presentations.
  • Strong teamwork skills with the ability to collaborate effectively with team members to accomplish tasks.
  • Strong problem-solving skills.
  • Willing to learn new things in technologies and IS.
  • Native or equivalent-level proficiency in Japanese and intermediate-level proficiency in English.

Preferred Qualifications

  • Experience in or a strong interest in IT Risk Management areas, including IT security, third-party risk, and emerging technology risk management.
  • Experience in or a strong interest in the financial services industry, particularly life insurance.
  • Familiarity with regulatory and industry standards such as NIST CSF, PCI DSS, and FISC.
  • Qualification:CISA, CISM, CISSP or similar certification is a plus

Langauge Required: Fluent level Japanese (JLPT N1) and Business level English proficiency

Company Description:

We are a technology-led software services company that fulfills technology companies' software product development needs worldwide. As a trusted partner of today’s enterprises, we build software solutions for the future. We aim to understand our customers' needs and aspirations to deliver software that aligns with their vision. We are passionate about creating future-ready software focusing on superior user experience and ultimate simplicity.Specializing in mobile, web, and cloud-based software development services across various industry verticals, we cater to customers globally. We focus on developing next-generation software products that require a deep understanding of communication networks, operating system internals, device diversity, and critical system resources. Our core strength lies in combining these engineering environments to create cutting-edge software solutions.

. Skillset Required: Information Security, IS Risk Governance, IS Risk Management, Cybersecurity, Cybersecurity Self-Assessments, Guidelines on Cybersecurity for the Financial Sector, IT Non-Financial Risk Assessments, Technical Safety Management Measures under PIPA, Governance Routines, Security Due Diligence, Issue Management, IT General Controls, US GAAP SOX, J-GAAP, External IT Audits, PCI DSS, Governance Risk Management and Compliance, GRC Initiatives, Continuous Improvement, AI, Report Writing, Oral Presentations, Teamwork, Problem-Solving, Willingness to Learn, IT Risk Management, Third-Party Risk, Emerging Technology Risk Management, Financial Services, Life Insurance, NIST CSF, FISC, IT Security, Software Product Development, Mobile Development, Web Development, Cloud Development, Communication Networks, Operating System Internals, Device Diversity, Critical System Resources, User Experience Design
似たような求人

Fidel Consulting KKからの続きを読む
Fidel Consulting KK 4 hours ago
Fidel Consulting KK 4 hours ago
Fidel Consulting KK 4 hours ago

Info Security Risk Governance Assistant Manager

企業サイトでの申請
Back to search page