Japanese language ability required. Job description available in Japanese only.
Security Management Specialist / セキュリティマネジメントスペシャリスト – Merpay/Mercoin
- Employment type: Full-time
- Work style: Flexible time (no core time or flexible time)
- Workplace: Roppongi
Details can be found on the career site's recruitment requirements
Mercury Group Overview
Creating a society that is more abundant by circulating all values and expanding the possibilities of all people.
“What can we do to create a more abundant society when the earth's resources are limited?” This was the challenge that our founder, Taro Yamada, felt during his around-the-world trip in 2013. Our company, Mercari, was born from this challenge. We believe that by circulating not only physical goods and money but all values, we can make it possible for anyone to achieve their goals and contribute to society.
We will connect people all over the world with the power of technology and create a world where everyone can realize their potential. For more information on the Mercury Group's vision, please see the Mercari Culture Doc.
Organization/Team Mission
Establish a PDCA cycle through the creation and establishment of rules and systems, and strengthen the information security governance of the Mercury Group.
Job Responsibilities
- As an information security specialist, collaborate with various departments of Mercari and contribute to the establishment of the company's security and compliance framework. Plan and implement new policies and processes, as well as reduce security risks and promote security standards and frameworks-based measures to reform security awareness within the company.
- Manage and execute information security programs in accordance with information security regulations.
- Design, build, document, and improve existing processes.
- Conduct security risk assessments and promote risk responses for new development services and new feature development content.
- Promote the enhancement of corporate IT environment security measures.
- As a security risk and compliance expert, collaborate with other teams to respond to security risks and compliance issues.
- Establish, revise, and manage information security regulations and guidelines.
- Plan and implement information security education and awareness activities.
- Manage security for external outsourcing, external vendors, and external services.
- Conduct information security audits, inspections, and incident responses.
- Implement ISMS, PCI-DSS, and other external standards held by the Mercury Group.
- Use AI, LLM, etc. to improve business efficiency.
- Respond to information security inquiries.
Unique Challenges
- Building a security governance system that matches the speed of a startup company.
- Creating new security standards for a cloud-native environment.
- Challenges in a rapidly expanding phase with a changing environment.
- Building a new security framework using AI, LLM, etc.
Requirements
- Desired experience and skills
- Understanding and empathy for the Mercury Group's mission and values
- High communication skills to adjust and reach agreements with people of different interests and skill levels
- Knowledge and experience in personal information protection, information asset management, and system risk management
- Knowledge and experience in internal controls and ISO 27001, etc.
- Experience in managing security for external services (SaaS)
- High ethical awareness and analytical thinking
- Ability to identify and resolve challenges on their own
- Ability to work independently with minimal guidance and produce reliable output
- Ability to work in a changing environment and contribute to tasks outside their field
- Desired experience and skills
- Ability to work in English in a business setting (preferably at a conversational level or higher)
- CISSP, CISM, CISA, etc. international information security certifications
- Experience in information security management in the regulated industries/ companies of the Financial Services Agency
- Experience in IT audits
- Experience in team management and project management
- Language skills
- Japanese: Proficient (CEFR - C1)
- English: Independent (CEFR - B2)
Learn more about the Mercury Group
- Career site: https://careers.mercari.com/
- Mercan: https://mercan.mercari.com/
- SNS: X / LinkedIn
Selection Process
The Mercury Group values empathy and embodiment of the company's mission and values. We want to understand your experience and skills accurately to create an organization that maximizes the total value of our members.
Selection process
- Document screening
- Technical challenge: For engineering positions, a technical challenge on HackerRank or GitHub, or for non-engineering positions, a technical challenge according to the position (may be before or after the interview)
- Interview: Multiple interviews according to the position
- Reference check: Online response format, before or after the final selection
- Offer: Determined based on the final selection and reference check content
Equal Opportunities in the Selection Process
The Mercury Group aims to create a society where individuals can freely create value without being limited by their background. We believe that inclusion and diversity are essential to achieving our mission.
In our recruitment activities, we promise to eliminate all forms of discrimination based on age, gender, sexual orientation, race, religion, physical ability, and other characteristics.
For more information, please see our I&D statement.
Please review our privacy policy before applying.
-
Minato City Mercari, inc. フルタイムThis job requires Japanese language ability. JD is available in Japanese only. 本ポジションは英文JDの用意がありません。 · Security Management Specialist / セキュリティマネジメントスペシャリスト – Merpay/Mercoin · 雇用形態:正社員 · 働き方:フレックスタイム制(コアタイムなし・フレキシブルタイムなし) · 勤務地:六本木 · 詳細はキャリアサイトの募集要項よりご確認ください · メルカリグループについて · あらゆる ...
-
Tokyo Amazon Japan G.K. フルタイムアマゾンは地球上で最もお客様を大切にする企業になること」をビジョンに掲げており、日本国内においてもさらなるカスタマーエクスペリエンスの向上のため、最高水準の配送サービスを提供すべく、自社においても輸配送ネットワークを構築し、進化させています。 · 本ポジションではアマゾンの幹線輸送ネットワークを活用し、車両の稼働率(積載率や実車率)の向上を目指す新しいミッションに取り組んでいただきます。 · 【職務内容】 · アマゾンジャパンの幹線輸送ネットワークは毎年成長し輸送網は全国へ拡大しています。 · その輸送キャパシティを「安定的かつ高品質に適切な単価」で確保 ...
-
Tokyo Isearch worldwide PermanentAs a Security Specialist for this international luxury goods retailer, you will be responsible for the different aspects of Security including: · • Controlling / Monitoring the security aspects of stores, country headquarters, warehouse, workshops · • Monitoring implementation an ...
-
Tokyo ASML Full timeIntroduction to the job · This Information Security Risk Manager will be responsible for protecting computer and data asset in Japan by aligning the ASML Information Security strategy and policies, directing system and application security controls, policies and procedures, and ...
-
Shinagawa Microsoft Full timeOverview · Are you insatiably curious and do you lean into uncertainty, take risks, and learn quickly from? Are you passionate about cybersecurity? Are you ready to join the team that is at the leading edge of innovation at Microsoft? If so, we are looking for youThe Microsoft S ...
-
Tokyo Rakuten Full timeDescription · : Department Overview In Rakuten, security and safety of the Internet services of our group are guaranteed by the Cyber Security Defense Department (CSDD). CSDD covers all aspects of the Secure Development Life Cycle (SDLC) and operation security for all the servi ...
-
Tokyo Rakuten Full timeDescription · This role is part of the IT Security Group within the Information Security & Privacy Governance Department. The department aims to establish measures to ensure the security of our organizational data while collaborating with other departments on security best practi ...
-
Tokyo ESET DACH Full timeSecurity Monitoring Specialist · Tokyo, Japan · Full-time · The Security Monitoring Specialist at {company} carries out security monitoring services in close collaboration with Global teams for assigned environments. This role is integral to the security operations centre team, w ...
-
Tokyo TEKsystems PermanentJob Summary · Our client is a multinational finance company looking for a bilingual (ENG/JPN) Cyber Security Project Manager to build a Security Operations Center (SOC) in Japan to help implement and establish a global security framework across the organization. · Role – Securit ...
-
Tokyo BoxWHAT IS BOX? · Box is the market leader for Cloud Content Management. Our mission is to power how the world works together. Box is partnering with enterprise organizations to accelerate their digital transformation by creating a single platform for secure content management, coll ...
-
Minato City International SOSThe Senior Security Manager Assistance, North Asia, is a key conduit in understanding clients' needs and driving excellence in client experience, in both crisis and business-as-usual phases. · This senior leader is responsible for the day-to-day security case management delivery, ...
-
Minato City Equinix Full timeWho are we? · Equinix is the world's digital infrastructure company, operatingover 250 data centers across the globe.Digital leaders harness Equinix's trusted platform to bring together and interconnect foundational infrastructure at software speed. Equinix enables organizations ...
-
Shinagawa Microsoft Full timeOverview · Are you insatiably curious and do you lean into uncertainty, take risks, and learn quickly from your mistakes? Are you passionate about cybersecurity? · The Microsoft Security organization's mission of making the world a safer place has never been more important. The S ...
-
Tokyo Rakuten Mobile Full timeJob Title: Cyber Defense Operations Manager · About the Role: · The Cyber Defense Operations Department is responsible for protecting RMI's information systems, telco networks, and data from cyber threats. This involves detecting, responding to, and mitigating cyber attacks in re ...
-
Shinagawa Microsoft Full timeOverview · At Microsoft, we empower every person and organization to achieve more. Our culture is centered on embracing a growth mindset, inspiring excellence, and encouraging teams and leaders to bring their best each day. We create life-changing innovations that impact billions ...
-
Shinagawa Microsoft Full timeOverview · Are you insatiably curious and do you lean into uncertainty, take risks, and learn quickly from? Are you passionate about cybersecurity? Do you enjoy working on a high-performing, fast-paced sales team? If so, we are looking for you · The Microsoft Security organizat ...
-
Shinjuku City SIX Payment ServicesSpecialist Risk Management · We are seeking a highly skilled Specialist Risk Management to join our team in Japan. The successful candidate will have a creative mind and be passionate about delivering high-quality results. · Day-to-Day Responsibilities: · Gathers risk-related dat ...
-
Tokyo Rakuten Full timeDescription · : Business Overview · While working for Rakuten Group, Inc. you will be responsible for the operation of Rakuten Mobile. · This division has entered the carrier business with innovative technology and forward-thinking spirit, and continues to take on the challeng ...
-
Tokyo Concentrix Full timeDescription · The Account Manager is responsible for overseeing the management of complex client accounts and developing processes to ensure favorable relationships with clients, meeting their operational needs. Responsible for managing the client's customers end-to-end, by renew ...
-
Shinagawa Microsoft Full timeOverview · In the MW Specialists team, we are looking for passionate, experienced, and credible specialist leaders who will follow the model | coach | care approach to developing and winning team sales strategy that will deliver on the Modern Work Solution Area goals. As a MW Sp ...
-
Tokyo Rakuten Full timeDescription · : Business Overview · The Corporate IT Department (CITD) develops, operates, and provides Rakuten's overall intranet and related tools to employees, as well as company-wide solutions that include the introduction of new tools, support operations, and response to i ...
