Senior Information Security Specialist, Group Data control Section, Information Security & Privacy Governance Department, (ISPD)

Job Description:

Department Overview

The Group Data Control Section of the Information Security & Privacy Governance Department is responsible for planning and operating security review strategies for the management framework of information systems and data sharing schemes between information systems that support the diverse services of the Rakuten Group.

While this section operates under the leadership of the CISO, it also collaborates with various related departments, including the CDO (Chief Data Officer), CAIO (Chief AI Officer), Legal & Compliance departments, and service teams. The section is tasked with implementing safety management measures related to information systems and data sharing schemes across the entire Rakuten Group.

Position:

Why We Hire

The Information Security Assessment Specialist in this position will primarily be responsible for assessing the management framework of information systems and conducting security reviews of data sharing schemes between information systems.

The role involves evaluating the security quality of various information systems within the Rakuten Group and proposing and promoting the implementation of safety management measures.

Position Details

Conduct assessments of the management framework for group services' information systems and perform security reviews of data sharing schemes between internal and external information systems, including outsourced operations, in accordance with Rakuten Group's Information Security Policy and related regulations.

Mandatory Qualifications:

Any of the following.

- Strong communication skills with the ability to collaborate effectively with various stakeholders through logical thinking.

- Basic knowledge of IT infrastructure (network, servers, authentication, directory services, endpoint management).

- Experience in implementing and operating structured data systems such as relational databases or data warehouses (DWH).

- Over 5 years of experience in information security-related work or projects involving information security elements.

- Experience in implementing and operating security solutions

Desired Qualifications:

- Certified Information Systems Auditor (CISA) qualification.

- Certified Information Systems Security Professional (CISSP) qualification.

- Registered Information Security Specialist (IPA) qualification.

- Experience in building and operating services on public cloud platforms.

#informationsecurity #privacygovernance　#technologymanagementdiv

Languages:

English (Overall - 3 - Advanced), Japanese (Overall - 4 - Fluent)