CISO

求人詳細

This position requires fluent Japanese and applicants

POSITION TITLE: CISO (Chief Information Security Officer)

DEPARTMENT: IT

BACKGROUND: To support the Group's secure business growth, provide information security services to all employees and occasionally to 3rd party partners connecting to the network and/or using business applications and devices. The CISO ensures security operations in Japan are well-controlled, collaborating with the Technical team and ensuring design policies are appropriately applied to local projects.

REPORT LINE: Reports to the IT Director in Japan and has a dotted line reporting to the CISO in HQ

SUBORDINATES: None

INTERNAL STAKEHOLDERS:
● Business Solution (Digital, Front, Back office, and Omnichannel domains)
●Enterprise Architecture and Data team
●Change Management and User Experience team
●Various departments in HQ and other regions' IT divisions, including the Global IT Security community, DPO in HQ, CyberSOC teams in APAC & EU, Enterprise ●Architecture and Data, Customer Solutions and Enterprise Solutions, IT and Employee Services, Technical Service Center (TSC) Asia Service Desk (ASD) and IT departments in other regions for information sharing.
●Various 3rd parties for assessment during new contracts, security breach/suspicious cases, and regulation changes.

ROLE & RESPONSIBLITIES
Risk management:
●Assess and report risks identified through various activities, including 3rd-party contracts, projects, and audits.
●Take appropriate actions to address risks, such as vulnerability response, contract revision, code review, penetration tests, etc.

Incident management:
●Ensure the identification, management, and reporting of local security incidents.
●Collaborate closely with CyberSOC to reduce backlog.
Security policy and standards:

●Ensure that security policies and standards are understood and applied in contracts, projects, and infrastructure.
●Contribute to periodic reviews with the global colleagues, providing field feedback.
Security in projects:

●Ensure the application of security by design principles in local projects.
●Conduct security reviews for projects and third-party risk assessments.

Awareness:
●Participate in global campaigns.
●Propose local awareness initiatives tailored to the local context and language.
●Identity and access management:
●Regularly review access rights to applications and file storages, documenting exceptions.

Security reporting:
●Provide security KPI/KRI for local security processes (incidents, SecOPS, projects, etc.) in collaboration with the EUC team responsible for patch/OS updates.

Compliance:
●Centralize compliance requirements for the IT department, including Privacy, PCI DSS, and Antifraud.


REQUIRED EXPERIENCE:
●At least 5 years of experience in a cybersecurity department, including experience as a CISO, incident response, cybersecurity assessments, and employee training and awareness campaigns.
●CISSP/CISM/CISA or equivalent certificate.
●Knowledge of cybersecurity frameworks and processes (ISO27xxx, ISMS, P-mark).
●Basic understanding of international and local compliance/regulations (Personal Information ●Protection Law, GDPR, PCI-DSS).
●Basic understanding of IT architecture and processes.

Language: Fluent in Japanese and business-level English
Strong communication and presentation skills in Japanese and English.
Customer-oriented mindset.
Experience working in multi-cultural and diverse work environments is preferred.

こんな方を求めています

経験・スキル

●At least 5 years of experience in a cybersecurity department, including experience as a CISO, incident response, cybersecurity assessments, and employee training and awareness campaigns.
●CISSP/CISM/CISA or equivalent certificate.
●Knowledge of cybersecurity frameworks and processes (ISO27xxx, ISMS, P-mark).

学歴

大学卒業以上

募集要項

職種

セキュリティコンサルタント、セキュリティエンジニア

給与

年収 1,100 〜 1,500万円

賞与

-

雇用形態

正社員

雇用期間

期間の定めなし

就業時間

09:00～18:00

休日休暇

日曜日,土曜日,祝日

保険

健康保険　厚生年金保険　雇用保険

待遇・福利厚生

更衣室,食堂

受動喫煙防止措置

敷地内禁煙

特長

女性活躍中, 海外勤務あり, 上場企業, 外資系企業, フレックスタイム制, 完全週休2日制, 土日祝休み, 語学力を活かす

業種

ファッション・アパレル

※詳細はお仕事のご紹介時にお伝えします