← Back to main page

TECH-IT-101-Corporate Security Engineer

Salary: 800 - 1500 百万円

GCPAWS
English: IntermediateJapanese: Fluent

Minimum year of experience: 5

LegalOn Technologies

Corporate Security Engineer (TECH-IT-101)

Job Overview

This position is responsible for handling security-related operations in the corporate IT environment of a global group. The role focuses on executing and enhancing security strategies across Japan, the US, and the EU, contributing to a secure foundation for business growth.

You will be involved in a wide range of security tasks, from endpoints to cloud security, access control, data protection, and incident response. This is a core position for ensuring both business speed and security.

Note: Critical security alerts or incident responses may require night or weekend work.

Responsibilities

You will support corporate security (excluding product domains) across global group companies. CSIRT activities will include one or multiple of the following duties:

  • Security Initiatives

    • Plan and execute security enhancement efforts based on secure-by-design principles
    • Research, analyze, and evaluate security threats and solutions

  • Asset Management

    • Endpoint security management
    • Baseline design, implementation, and evaluation
    • Vulnerability detection, evaluation, improvement, and recordkeeping

  • Access Control

    • Design access control based on the principle of least privilege
    • Identity lifecycle management
    • Application access control

  • Data Security

    • DLP design, implementation, and management
    • Data encryption design, implementation, and management
    • Data residency and data sovereignty design and management

  • Cloud Security

    • Security setting evaluation and management in cloud environments (CSPM)

  • Security Incident Response

    • Establish and update incident response plans
    • Prepare and maintain incident response structure
    • Initial response to escalations or alerts from SOC
    • Conduct security investigations and forensics
    • Collaborate with external stakeholders (vendors, etc.)
    • Notification and reporting
    • Incident recordkeeping, post-mortem, and improvement planning
    • Conduct incident response training

Development Environment / Tools

For details, refer to the Notion page:
https://legalforce-recruit.notion.site/LegalOn-Technologies-f5ebe38a6009428ab0fb1714efd3c90a

Requirements

Preferred Experiences

  • Selection, implementation, and operation of security services (e.g., EPP/EDR, DLP, CNAPP, SIEM)
  • Implementation and operation of network security measures (e.g., FW, IDS/IPS, WAF, SWG/CASB)
  • Experience with vulnerability assessments, security diagnostics, penetration testing
  • Web application/software development experience
  • Building and operation of systems using cloud environments like AWS or GCP
  • Security function implementation and evaluation of web applications, APIs, platforms, or AI solutions
  • Team management experience
  • Business-level English skills

What We're Looking For

  • Ability to balance business efficiency and security, proposing optimal security measures
  • Ability to systematically structure technical risks and collaborate cross-functionally to drive improvements
  • Initiative in defining and leading operations and systems even in uncertain environments
  • Keen interest in security and willingness to engage in continuous learning
  • Gap analysis skills to propose operation optimizations/enhancements
  • Ability to collaborate constructively with diverse, global, and hybrid-work stakeholders (Internal communication mainly in Japanese, but English communication required with some stakeholders)

Working Conditions

Salary

  • ¥8,000,000 - ¥15,000,000 (based on experience and skills)

Location

  • Shibuya, Tokyo (No full remote option)

Job Type

  • Full-time (Permanent employee)

Work Hours

  • Flexible working hours with no core time OR discretionary labor system
  • Overtime: Yes
  • Break: 1 hour

Probation

  • 3 months

Benefits

  • Over 120 annual holidays; full 5-day workweek (Sat/Sun) plus national holidays
  • Paid holidays (granted at onboarding), end-of-year holidays, special leave (sick leave, work-life balance leave, birthday leave), parental/childcare/care leave, condolence leave
  • Full social insurance (health, pension, unemployment, worker’s compensation)
  • AI tools provided to all employees (ChatGPT Enterprise, Notion AI, Gemini for Google Workspace, NotebookLM, Slack AI)
  • Access to development support tools (Claude Code, Cursor, GitHub Copilot, Devin, Codex, Figma AI)
  • Budget for self-study
  • Language learning assistance
  • Employee stock ownership plan
  • Influenza vaccination subsidy
  • Indoor non-smoking (smoking room available in the building)
  • Side jobs allowed (approval required)
  • "Eruboshi" certification (recognized for promoting women's active participation)
reco経由で応募する