グローバルアパレルカンパニーでのInformation Security Specialistの求人
求人ID:116672
募集終了
転職求人情報
職種
Information Security Specialist
ポジション
担当者
おすすめ年齢
20代
30代
40代
50代以上
年収イメージ
経験・能力を考慮の上、当社規定により決定します(イメージ 580万円〜1,300万円)
仕事内容
【Job description】
Reporting to the Global Director of IT Security of Information Security Office, Information Security Specialist role includes the support in the compliance, risk assessment, awareness activities. He/she will be a key participant in the corporate security program.
【Essential duties and responsibilities include】
・Establish and maintain an information management and protection framework for an effective enterprise wide Governance Program; serve as a consultant to business-area leaders
・Manage day-to-day activities, including policies, procedures, training and communication regarding the Governance Program.
・In conjunction with Legal and Compliance identify information management and protection laws and regulations and implement actions to ensure compliance.
・Develop, implement and maintain the policies, systems, and procedures for the management of recorded information throughout its life cycle.
・Identify, track and oversee internal and external compliance and regulatory requirements (PCI, GDPR, Data Privacy, etc.) for the organization including compliance with established policies, procedures, standards, baselines and controls.
・Identify, monitor and manage risks to the organizations physical and electronic information assets. This includes the execution of periodic risk assessments, maintaining a risk register and documenting the decisions that result in the assumption of risk for a decision, initiative or activity impacting physical or electronic information assets.
・Establish the strategy and program to maintain resilience / recover critical business functions and platforms impacted by Information Security incident or natural disaster. Work closely with the IT, Business Continuity and Disaster Recovery Teams.
・Establish and manage the organization wide information security awareness programs.
・Maintain an enterprise wide, cross functional incident response plan is tailored to information security threats and scenarios / critical assets of interest. Train and test key stakeholders on periodic basis.
Reporting to the Global Director of IT Security of Information Security Office, Information Security Specialist role includes the support in the compliance, risk assessment, awareness activities. He/she will be a key participant in the corporate security program.
【Essential duties and responsibilities include】
・Establish and maintain an information management and protection framework for an effective enterprise wide Governance Program; serve as a consultant to business-area leaders
・Manage day-to-day activities, including policies, procedures, training and communication regarding the Governance Program.
・In conjunction with Legal and Compliance identify information management and protection laws and regulations and implement actions to ensure compliance.
・Develop, implement and maintain the policies, systems, and procedures for the management of recorded information throughout its life cycle.
・Identify, track and oversee internal and external compliance and regulatory requirements (PCI, GDPR, Data Privacy, etc.) for the organization including compliance with established policies, procedures, standards, baselines and controls.
・Identify, monitor and manage risks to the organizations physical and electronic information assets. This includes the execution of periodic risk assessments, maintaining a risk register and documenting the decisions that result in the assumption of risk for a decision, initiative or activity impacting physical or electronic information assets.
・Establish the strategy and program to maintain resilience / recover critical business functions and platforms impacted by Information Security incident or natural disaster. Work closely with the IT, Business Continuity and Disaster Recovery Teams.
・Establish and manage the organization wide information security awareness programs.
・Maintain an enterprise wide, cross functional incident response plan is tailored to information security threats and scenarios / critical assets of interest. Train and test key stakeholders on periodic basis.
必要スキル
【Qualification】
●Technical skills:
・Minimum of 6 years of experience in Information Security governance and compliance
・Good knowledge of information risk assessment and compliance needs.
・Good understanding of information security governance frameworks such as NIST, ISO27001, and COBIT.
・Working knowledge of applicable laws, regulations, and standards relating to security and data privacy.
●Knowledge, skills and abilities:
・BS or MS degree in Computer Science or related IT degree.
・Excellent communication skills verbal and written both in Japanese and English.
・Ability to multi-task and prioritize work effectively.
・Highly motivated self-starter with ability to work independently or with a team.
・Strong sense of ownership and driven to manage tasks to completion.
・Appropriate security certifications preferred. (e.g. CISA, CISM, CISSP)
・Overall knowledge of the Retail industry (Preferred).
●Technical skills:
・Minimum of 6 years of experience in Information Security governance and compliance
・Good knowledge of information risk assessment and compliance needs.
・Good understanding of information security governance frameworks such as NIST, ISO27001, and COBIT.
・Working knowledge of applicable laws, regulations, and standards relating to security and data privacy.
●Knowledge, skills and abilities:
・BS or MS degree in Computer Science or related IT degree.
・Excellent communication skills verbal and written both in Japanese and English.
・Ability to multi-task and prioritize work effectively.
・Highly motivated self-starter with ability to work independently or with a team.
・Strong sense of ownership and driven to manage tasks to completion.
・Appropriate security certifications preferred. (e.g. CISA, CISM, CISSP)
・Overall knowledge of the Retail industry (Preferred).
就業場所
就業形態
正社員
企業名
大手日系事業会社
企業概要
大手アパレル会社
企業PR
業務カテゴリ
組織カテゴリ
備考
関連キーワード
コンプライアンスの求人情報
事業会社の求人情報
銀行員の求人情報
転職体験記
- 希望退職に応じた末の再就職、ヘルスケア系上場ベンチャーへ(50代/男性/私立大学卒)
- 日系SIerから大手携帯電話通信キャリアへ(30代/男性/私立大学卒)
- 機械メーカーを定年退職後の再就職、地方銀行へ(60代/男性/国立大学院卒)
- 金融業界での経験を活かして、投資運用会社へ(60代/男性/国立大学卒)
- 損害保険会社でのコンプライアンス業務に専念すべく転職を決意(30代/女性/私立大学卒)
- グローバル企業での経験を活かしつつ新たなチャレンジ、有名チェーン店等を運営する外食企業へ(30代/男性/私立大学卒)
- 物流業界へのこだわり、大手商社設立の食品EC企業へ(40代/男性/私立大学卒)
- 2回目の転職も同じコンサルタントで、大手日系信託銀行へ(40代/男性/私立大学卒)
- 大きな可能性を感じられる企業へ転職、損害保険会社へ(40代/女性/国立大学院卒)