Security Awareness Engineer - Security Awareness & Culture Group, Cyber Defender Empowerment Section, Cyber Security Defense Department (CSDD)

Job Description: Business Overview The Technology Management Division (TMD) provides Corporate IT, and Cyber Security & Privacy Governance to Rakuten Group companies and essential business management for technology organizations, thereby enabling innovation and strengthening the technology foundation. Within TMD, the Technology Management Services Supervisory Department (TMSSD) plays a vital role in CIO Governance, IT financial management, IT procurement, Quality Management System (QMS), technology-related public relations, and human resources strategy. By promoting efficiency, quality, risk management, and organizational strength, we ensure that Tech Divisions remain agile and at the forefront of technological advancement. Department Overview The Cyber Security Defense Department (CSDD) is responsible for safeguarding all Rakuten companies and users from cyber threats, ensuring the security and integrity of Rakuten Group's global internet services. We oversee all aspects of both Secure Development and Security Operations for services developed within the group, with dedicated security teams and operation centers strategically located in key regions worldwide. Position: Why We Hire As demand for our comprehensive security awareness program grows, we're expanding our team. This role is strategically vital to fostering a robust security-first culture across the organization. We are seeking a Security Awareness Engineer who: - Possesses a strong interest in training and education, with a passion for empowering individuals through knowledge. - Exhibits strong communication and interpersonal skills, capable of translating complex, low-level security concepts to both technical and non-technical stakeholders. - Can continuously evaluate and improve existing training programs based on feedback, performance data, evolving security landscape, and opportunities to leverage AI for improved efficiency and effectiveness. - Is passionate about fostering a security-first culture. Position Details - Conduct thorough needs assessments to identify security knowledge gaps across various teams and roles within the organization. - Collaborate with internal security teams (e.g. Secure Architecture, Red Team, AppSec, GRC, etc) to gather insights on emerging threats, vulnerabilities, and best practices to inform training content. - Work closely with instructional designers to develop and deliver engaging and effective security training modules, workshops, and awareness campaigns. - Develop and implement metrics to measure the effectiveness and impact of security training and awareness programs. - Contribute to internal documentation, FAQs, and knowledge bases. - Inspire innovation and deliver quality at speed. - Succeed through diligent planning, attention to detail, and individual/team accountability. - Develop, implement, and nurture grassroots programs and initiatives to foster a strong, internal security community and culture. - Actively contribute to cross-functional security projects. - Promote cyber security initiatives and training programs through various communication channels. - Respond to inquiries and requests related to security training and awareness, providing timely and accurate information. Mandatory Qualifications: - 3+ years of experience in education & training, including curriculum development, or instructional design. - Strong understanding of instructional design methodologies, including ADDIE, SAM, or other relevant learning design frameworks. - Interest or experience utilizing AI technologies to enhance learning design, personalized learning paths, process automation, etc. - Ability to work independently, manage multiple projects simultaneously, and meet deadlines in a fast-paced environment. - Proven ability to simplify and articulate complex, low-level technical concepts for diverse audiences. - Strong presentation and public speaking skills. - Native-level Japanese (written and spoken). - Business-level English. Desired Qualifications: - Degree in Computer Science, Information Security, Instructional Systems, Learning Technologies, Education, or a related field. - Experience with gamification and game-based learning. - Experience in evaluating and implementing new technologies to improve training effectiveness. - Proficiency in at least one programming or scripting language (e.g., Python, Java, JavaScript, PHP, etc). - Experience with Learning Management Systems (LMS) and e-learning authoring tools (e.g. Articulate Storyline, Adobe Captivate). - Familiarity with secure coding practices and code review processes. - Familiarity with security frameworks and standards (e.g., NIST, ISO 27001, PCI-DSS, etc). #engineer #securityengineer #learninganddevelopment #technologymanagementdiv In Japanese, Rakuten stands for ‘optimism.’ It means we believe in the future. It’s an understanding that, with the right mind-set, we can make the future better by what we do today. So we challenge ourselves to evolve, innovate and experiment, to create a better, brighter future for everyone. Today, our 70+ businesses span e-commerce, digital content, communications and fintech, bringing the joy of discovery to almost 1.3 billion members across the world. If you have any trouble logging in, please contact us here Rakuten Group, Inc.: rakuten-recruiting-info@mail.rakuten.com Please read the Application Requirements(EN) / 募集要項(JP) before applying. Our Diversity & Inclusion Policy and Application Documents Rakuten’s corporate mission is to “contribute to society by creating value through innovation and entrepreneurship.” We foster a culture that provides equal opportunities to those who share this founding philosophy and take on the challenge to transform society, regardless of age, gender, nationality, or any other status. Diversity is one of Rakuten's core strategies and a driving force for innovation. Because of this, you are not required to submit any of the following information in order to apply for our job positions. - Gender - Age - Photo - Nationality - Information not related to business, such as ideological beliefs, family structure, etc. * For legal compliance, we may ask you about your work eligibility. See the details