Information Security Specialist, Information Security Policy Group - Information Security Management Office (ISPD)

Rakuten Crimson House, Japan

Full Time Mid-level / Intermediate USD 39K - 73K * ^est.

Rakuten

楽天グループ株式会社のコーポレートサイトです。企業情報や投資家情報、プレスリリース、サステナビリティ情報、採用情報などを掲載しています。楽天グループは、イノベーションを通じて、人々と社会をエンパワーメントすることを目指しています。

View all jobs at Rakuten

Apply now Apply later

Posted 1 day ago

Job Description:

Department Overview

The Information Security & Privacy Governance Department is a part of the Technology Management Division, which is a common technical division within the Rakuten Group. The Information Security Management Office oversees information security governance within the Rakuten Group, formulates regulations related to information security governance, supports implementation in development and business departments, monitors, and provides employee education/awareness.

The Information Security Policy Group is a team under the Group CISO (Chief Information Security Officer) responsible for formulating regulations for the Rakuten Group. The Information Security Specialist in this group is responsible for planning and drafting security policy, formulation strategies, creating specific policies, and managing the formalization process.

In the process of policy formulation, the role also involves prior coordination with relevant departments and group companies, as well as providing explanations and guidance to ensure the formalized policies are effectively implemented.

This is a critical position at the core of the Group's information security governance, where various security requirements are materialized while considering global standards, industry norms, and technical feasibility.

Position:

Position Details

- Formulation and maintenance of Rakuten Group regulations, as well as Rakuten Group, Inc.'s Information Security Policy and related policies, including those for AI. 

- Gathering requirements through regular communication with relevant departments and group companies, and executing and managing the formalization process.

- Acquiring information on industry trends and regulatory changes related to information security and sharing it with the CISO community. 

- Preparing reports for the Rakuten Group CIO, CISO, and management meetings, as directed by the Head of the Information Security & Privacy Governance Department.

Mandatory Qualifications:

- Effective communication skills with diverse teams and stakeholders.

- Over 5 years of experience in planning or managing the implementation of information security, internal information systems, or internet service-related information systems. 

- Over 3 years of experience in formulating internal regulations related to information security or IT governance.

Desired Qualifications:

- Possession of certifications such as CISSP (Certified Information Systems Security Professional) or IPA (RegisteredSecurity Specialist).

- Experience and knowledge related to ISMS ISO/IEC 27001 certification activities.

- Experience in building and operating systems on public cloud services.

Other Information:

Additional information on English Qualification

Business Level (TOEIC 800 or above) or, a score of 700 or above with a plan to achieve 800 within 2 years

Japanese Requirements: Native

#informationsecurity #privacygovernance #technologymanagementdiv

Languages:

English (Overall - 3 - Advanced), Japanese (Overall - 4 - Fluent)