Cyber Security Management Engineer or Manager - Cyber Security Department, Product Development Division, Rakuten Payment, Inc.

Job Description: Business Overview Mission Rakuten Group's basic management philosophy is to "Empower people and society through innovation." We provide more than 70 diverse services, including EC services such as shopping malls and travel booking sites, financial services such as online banking, and media services and professional sports, to more than 100 million customers in Japan alone (more than 1.6 billion globally), covering a wide range of people's life scenes. At the same time, we are building a strong business model based on the "Rakuten Ecosystem" that organically links customers and various services. As a member of Rakuten Group's FinTech Group Company, we at Rakuten Payment, Inc. are developing businesses centered on settlement services such as Rakuten Pay, Rakuten Edy, and Point Partner Business, as well as marketing solutions. "With the power of technology, we aim to create a world where anyone can enjoy the same value no matter where they are." As the digital sphere of society rapidly expands, we want to connect the Internet and the real world more seamlessly, so that everyone can use technology to lead a safe, secure, and more comfortable daily life. In order to achieve such a society, we would like to face the various problems that people are facing and move forward together to the next stage. 　 Department Overview We provide services such as Rakuten Pay, an online payment service, Rakuten Edy, an electronic money service, Rakuten Cash, a cashback service, Rakuten Point Card, a loyalty points service, and other mobile payment and mobile POS payment services. Unlike other Rakuten Group companies, we provide services that can be used not only online but also in real-world stores. We plan to provide new services related to Fintech, with a focus on the Rakuten Pay app, as this industry is receiving a great deal of attention amidst the spread of cashless payments. We will also provide new services in the OMO field that combine online and offline. As we handle financial services and support important social infrastructure projects, we are required to have a high level of information security and cyber security. In this position, you will lead the strengthening of the overall cyber security system, the promotion of secure by design, and the development of security personnel, while collaborating with the Product Development Division and other departments. Position: Why We Hire We are looking for people to lead the organization, staff and manager, from a specialist perspective as we establish an organization specializing in cyber security, independent of the information security department. 　 Position Details - Formulation and execution of security strategy - Design and implementation of security architecture - Vulnerability management and risk assessment - Security Incident Response - Security Education and Awareness Activities - Investigation of the Latest Technologies and Threat Trends - Regulatory compliance and audit support: Lead the response to laws, regulations and guidelines related to the financial industry and critical infrastructure (e.g. FISC, PCI DSS, ISMS, etc.), and support the development of regulations and information security departments, internal and external audits, etc. 　 Work Environment 3 regular employees mid hired from famous Telecommunication company and Information security company etc. Why this position - A job with a lot of discretion to consider the future direction of the department in a newly established department - You can be involved in building a high level of security based on the cybersecurity guidelines required by the Financial Services Agency - You can improve your skills by communicating with the Rakuten Group's CSIRT and the Cybersecurity Defense Department Carrer path Both possibilities, professional or Manager Stakeholders - The department within Payment Inc. where the incident occurred - President and executives in Payment Inc. - Rakuten Group's cybersecurity department Languages Japanese: Regulation review, creation, document creation, meeting management, presentations English: Departments where incident occurred (overseas vendor, global team) Mandatory Qualifications: - At least 3 years of work experience in the field of information security or cyber security - Experience in conducting security risk assessments and vulnerability assessments - Experience in responding to security incidents - Experience in planning and implementing security education and training programs - Understanding of the concept of secure by design and the ability to consider it - Basic knowledge of system development and operation (e.g. networks, servers, cloud environments, etc.) - Skills in coordinating and negotiating with other departments and stakeholders - Business-level communication skills in Japanese (reviewing and creating regulations, writing documents, managing meetings, presentations, etc. 　 Desired Qualifications: - Experience in security response in the financial industry or in critical infrastructure projects - Possession of security-related qualifications (e.g. CISSP, CISM, CEH, CompTIA Security+, etc.) - Knowledge and experience of cloud security (e.g. AWS, Azure, GCP, etc.) - English communication skills (when working with overseas vendors or global teams) - Experience or knowledge of DevSecOps - Experience of security log analysis or SIEM tool operation - Experience of zero-trust security concepts and implementation 　 Others Information: Additional information on Location NBF Shinagawa Tower 　 Additional information on Secondment This position is a seconded position from Rakuten Group, Inc. to Rakuten Payment, Inc. Link ----------------------------------- ▼Rakuten Payment Corporate Site Top - Rakuten Payment, Inc. #engineer #technologymanagement #fintechgroup #RakutenPay #RakutenEdy #RakutenPointCard #RakutenPayment In Japanese, Rakuten stands for ‘optimism.’ It means we believe in the future. It’s an understanding that, with the right mind-set, we can make the future better by what we do today. So we challenge ourselves to evolve, innovate and experiment, to create a better, brighter future for everyone. Today, our 70+ businesses span e-commerce, digital content, communications and fintech, bringing the joy of discovery to almost 1.3 billion members across the world. If you have any trouble logging in, please contact us here Rakuten Group, Inc.: rakuten-recruiting-info@mail.rakuten.com Please read the Application Requirements(EN) / 募集要項(JP) before applying. Our Diversity & Inclusion Policy and Application Documents Rakuten’s corporate mission is to “contribute to society by creating value through innovation and entrepreneurship.” We foster a culture that provides equal opportunities to those who share this founding philosophy and take on the challenge to transform society, regardless of age, gender, nationality, or any other status. Diversity is one of Rakuten's core strategies and a driving force for innovation. Because of this, you are not required to submit any of the following information in order to apply for our job positions. - Gender - Age - Photo - Nationality - Information not related to business, such as ideological beliefs, family structure, etc. * For legal compliance, we may ask you about your work eligibility. See the details