isecjobs.com

Manager, Security GRC

Japan - Tokyo

Full Time Mid-level / Intermediate USD 53K - 100K * est.
Company logo

Salesforce

Bieten Sie die beste Customer Experience mit einem einzigen CRM-Tool für Sales, Kundenservice, Marketing, Commerce & IT. Jetzt 30 Tage testen!

View all jobs at Salesforce

Apply now Apply later

To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.

Job Category

Enterprise Technology & Infrastructure

Job Details

About Salesforce

We’re Salesforce, the Customer Company, inspiring the future of business with AI+ Data +CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too — driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good – you’ve come to the right place.

Job Description:

We are seeking a highly skilled and strategic GRC Security Manager (Japan)  who will be responsible for engaging with our external auditors and regulatory bodies primarily in the Japan region and appropriate internal stakeholders. This role will report to the Director, Cyber Security & Compliance Strategist.

This strategic role will be instrumental in driving our cybersecurity compliance efforts across this region. The successful candidate will play a pivotal role in our efforts to foster trust, ensure compliance, and shape the evolving cybersecurity landscape in Japan and throughout the APJC region by ensuring the Salesforce product certification roadmap is reviewed and updated, as necessary.  

This individual must be fluent in Japanese and English, with additional Asian languages being a plus. The role requires a deep understanding of commercial and regulatory compliance, as well as cybersecurity concepts. Familiarity with ISMAP (Information System Security Management and Assessment Program) and the experience to handle ISMAP audits using a Common Controls Framework is essential. Knowledge about other regional & global certifications like AICPA SOC, ISO27001, Korean CSP Safety Assessment, MTCS (Singapore), Saudi KSA, PCI, NIST, and others is an added advantage. 
 

Key Responsibilities:

  • Partner with and enable the customer trust and security enablement teams’ ability to communicate our company's robust cybersecurity practices and commitment to trust and compliance to our customers as necessary.

  • Manage comprehensive cybersecurity compliance programs and policies that align with global standards and local regulations.

  • Collaborate with the APJC Global Compliance Certification team and various engineering teams to drive the ISMAP and other regional audits in a streamlined and efficient manner 

  • Support the development or refresh of required certification artifacts, including an effective ISMS, risk assessment strategy, and security policies and standards. 

  • Liaison with external auditors and internal teams to support certification audits. 

  • Demonstrate a solid understanding of commercial compliance, regulatory compliance, and cybersecurity concepts.

  • Stay updated on emerging cybersecurity threats and best practices.

Required Skills: 

  • Minimum 5 years of experience in security governance, risk management, compliance, audit, internal controls, or other security related areas and a minimum of 7-10 years of total work experience.

  • Track record of building and aligning teams to organizational compliance needs.

  • Fluent in Japanese and English is a must (additional Asian languages are a plus).

  • Bachelor's degree in Information Security, Computer Science, or a related field; advanced degrees or relevant certifications (e.g., CISSP, CISA, CISM) are preferred.

  • Deep understanding of commercial and regulatory compliance, cybersecurity concepts, and industry best practices.

  • Experience in handling ISMAP audits and certification processes.

  • Hands on experience with AWS and other cloud environments.

  • Experience with security policy, standards, and controls definition.

  • Excellent communication and interpersonal skills, with the ability to engage effectively with customers, regulators, and internal teams.

  • Strong understanding of cybersecurity frameworks and standards (e.g., ISO 27001, NIST Cybersecurity Framework).

Accommodations

If you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.

Posting Statement

At Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at www.equality.com and explore our company benefits at www.salesforcebenefits.com.

Salesforce is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Salesforce does not accept unsolicited headhunter and agency resumes. Salesforce will not pay any third-party agency or company that does not have a signed agreement with Salesforce.

Salesforce welcomes all.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  2  0  0
Categories: Compliance Jobs Leadership Jobs

Tags: Audits AWS CISA CISM CISSP Cloud Compliance Computer Science Governance ISMS ISO 27001 NIST Risk assessment Risk management SOC Strategy

Perks/benefits: Career development

Region: Asia/Pacific
Country: Japan

More jobs like this

« Back to job search To the top ↑

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.

Information Systems Security Officer jobsInformation System Security Officer jobsSenior Security Analyst jobsSenior Cloud Security Engineer jobsSenior Cybersecurity Engineer jobsInformation Security Manager jobsSystems Engineer jobsSystems Administrator jobsCyber Security Specialist jobsSenior Network Security Engineer jobsIT Security Engineer jobsSenior Information Security Analyst jobsSecurity Specialist jobsChief Information Security Officer jobsSecurity Consultant jobsIT Security Analyst jobsInformation System Security Officer (ISSO) jobsSenior Cyber Security Engineer jobsInformation Systems Security Engineer jobsCyber Threat Intelligence Analyst jobsThreat Intelligence Analyst jobsSecurity Operations Analyst jobsSenior Product Security Engineer jobsSenior Information Security Engineer jobsStaff Security Engineer jobs
Encryption jobsGDPR jobsSaaS jobsSplunk jobsTop Secret jobsBash jobsMalware jobsEDR jobsSQL jobsSDLC jobsThreat detection jobsRMF jobsIDS jobsFinance jobsForensics jobsIPS jobsTerraform jobsIntrusion detection jobsDocker jobsCompTIA jobsDoDD 8570 jobsActive Directory jobsITIL jobsCRISC jobsOWASP jobs
GIAC jobsSOC 2 jobsUNIX jobsSAP jobsAnsible jobsHIPAA jobsSANS jobsOSCP jobsClearance Required jobsTCP/IP jobsSOAR jobsCCSP jobsVPN jobsIndustrial jobsMachine Learning jobsJavaScript jobsBanking jobsJira jobsDNS jobsSOX jobsPolygraph jobsMITRE ATT&CK jobsIT infrastructure jobsNIST 800-53 jobsVMware jobs