Job Description

Career Opportunity for a Japan Business Service Delivery Lead in Japan

■ Japan Business Service Delivery Lead

■ Company Overview

 A leading global organization in the insurance and financial services sector, this company is known for offering comprehensive commercial and personal coverage solutions to businesses and individuals worldwide. With a strong international footprint and a robust property-and-casualty network, it consistently drives innovation and helps shape the future of the insurance industry. The organization is committed to supporting clients through uncertainty while fostering a culture of continuous learning, growth, and empowerment for its people.  

■ Your Role and Responsibilities 

The Japan Business Service Delivery Lead will be responsible for driving the improvement of the application security posture and supporting cybersecurity priorities across the business information technology teams by ensuring compliance to relevant industry standards, regulations, and internal IT policies and standards. This role will engage with various control towers across Information Security Office (ISO), Global Infrastructure, Technology Risk, and the Business Units (BUs – General Insurance and Enterprise Systems) to help govern and develop plans to maintain a strong cybersecurity posture

Key responsibilities of this position would involve capability of performing and organizing security reviews, as well as performing tasks focused on integration & enhancement of security governance processes.

●Lead delivery of the Company's information security strategy across the regional business units by driving the implementation, maintenance, and enhancement of the company's cybersecurity posture.

●Collaborate with global Information Security Office leaders and colleagues to ensure applicable business requirements related to global cyber security service delivery are met, such as transparency and communication.

●Identify and understand key business processes, systems and specific security needs critical to regional business units, and ensure they are incorporated into the overall cybersecurity strategy.

●Provide day to day oversight and coordination across the regional business units for cybersecurity projects, specifically system and application remediation (patching, settings, EOL/upgrades), monitoring and logging, identity and access management.

●Track and report compliance with ISO policies and standards in coordination with the ISO and BSO leadership team.

●Act as a trusted advisor to the regional business unit CIO organization for cybersecurity risk assessment and articulation while also assisting the development of remediation strategies.

●Partner across multiple regional business units and infrastructure services on security initiatives and services.

●Work with the Software Security Assessment (SSA) team and Security Architects to ensure application portfolios adhere to standards and recertification cadence.

●Serve as a subject matter expert / technical lead in translating cybersecurity requirements based on risk assessment

●Partner with the regional business units and ISO teams to ensure security standards are followed, enforced and solutions delivered to improve security are implemented at a high quality.

●Collaborate with other ISO leads to deliver tactical and strategic work and provide transparency and communications horizontally to all regional business unit Project Managers.

●Use analytics to extract key insights from various data stores and deliver reporting to effectively communicate critical security risks and actionable recommendations.

●Review threat intelligence feeds from company Global Cyber Defense Center and track remediation progress across regional business units.

●Monitor, evaluate, and report key risk performance metrics recommending corrective action programs as appropriate, and drive remediation activities to completion.

●Work with Technology Risk and Controls (TRC) to ensure that regulatory security requirements are being met by the regional business units.

●Ensure security issues are addressed with timely, appropriate responses to minimize the impact to the businesses, or its assets, customers or reputation.

●Prepare formal presentations, budgets, business requirements, and general project specifications.

●Provide regional cybersecurity project oversight and coordination by leading cybersecurity project meetings, communicating project status, assessing project risk/issues, developing mitigation and remediation plans with both project staff and senior leadership ensuring appropriate delivery while balancing business impact.

●Work with regional teams to embrace scope and budgetary requirements.

●Lead a team of high performing professionals of diverse perspectives.

■ Experience and Qualifications

●Language proficiency in Japanese at Native level. Intermediate level English (email communication and reading English materials, conversations at meetings with Global counterparts)

●10+ years of total experience in Information Security and Risk Management and/or related technology functions in application development, infrastructure management of business applications required, preferably in a global financial services firm.

●5+ years Information Security and Risk Management experience required.

●Prior experience leading security teams and a proven track record of success in complex environments.

●Experience with cybersecurity controls and tools like CrowdStrike, Qualys, Veracode, Tanium, and Imperva.

●Security Certifications a plus: CISSP, CISM, CISA, CRISC, CGEIT.

●Knowledge of development and architecture frameworks with strong focus on cybersecurity.

●Strong understanding of application development architecture and techniques and ability to assess application cyber-risk across all layers of the business application.

●Ability to communicate security risks and business impact clearly to all levels of the organization.

●Knowledge and experience implementing risk management principles and security metrics.

●Ability to positively influence the behavior of peers and build relationships with other teams.

●Ability to work as an individual contributor, but with significant influencing skills.

●Excellent Project Management, problem solving, and analytical skills; PMP certification a plus.

●Strong communication and presentation skills, both verbal and written; MS PowerPoint a plus.

●Ability to work in a fast-paced environment, and across multiple time zones.

●Detail oriented self-starter who can work independently with minimal supervision.

●Experience in the financial or insurance industry is preferred.

●Experience operating in a global environment including familiarity with local laws and regulations in foreign countries.

●Strong organizational and time management skills

●Commitment to advancing skills in the cybersecurity field.

■ Good Reasons to Join

●Work with a global Fortune 100 organization with a strong technology and security backbone.

●Lead Japan's cybersecurity service delivery with high visibility and strategic impact.

●Collaborate with global ISO teams and cutting-edge security units (GCDC, SSA, TRC).
●Drive cybersecurity posture improvement across applications, infrastructure, and business units.

●Opportunity to work with leading tools like CrowdStrike, Qualys, Veracode, Tanium, Imperva.

●Highly cross-functional role involving IT, risk, governance, and global stakeholders.

●Inclusive, diverse, and growth-focused work culture with continuous learning opportunities.

●Chance to influence cybersecurity strategy and lead high-performing teams.

■ Work Location

Tokyo, Japan- Hybrid

Details will be provided during the meeting.