外資系生命保険会社でのInformation Security & Risk Manager or Sr.Managerの求人

＜General Accountability＞
This role will lead the information risk management team in Japan to ensure information risk is always considered and managed through the execution of different information risk management processes. The incumbent will join a vibrant and global information risk management practice and team that works hard to enable and facilitate business while protecting our people and key information assets. The Information Security & Risk Management team pulls together a number of specialties forging strong ties between:
Identity & Access Management
Risk & Control Assessments
Application Security Management

＜Key Responsibilities＞
The incumbent will oversee the holistic execution of Information Security & Risk Management function within Japan to drive the implementation of IRM program objectives and execute the practices & controls for Japan. By leading the country Information Security & Risk Management team, this role plays an essential part to ensure that information risk processes are properly executed. The role is also responsible for identity & access management together with application security management, in alignment with the mandates and objectives from Asia Segment and Global IRM.
The incumbent will collaborate and liaise with Asia Segment IRM stakeholders, regional and in-market IS and application development teams, as well as Enterprise Technology Services. This role works to ensure information risk management is included and embedded in key processes not limited to Software Development Life Cycles, but includes infrastructure, as well as vendor controls. The incumbent also works closely with senior management for tracking and reporting functions, ensuring timely responses to queries

●Overall Accountabilities
・Influence behavior to reduce risk and foster a strong technology risk our management culture throughout the enterprise
・Collaborate with other IRM teams and professionals including the Chief Information Risk Officer, the Asia Regional Information Risk Officer, Audit Services, Procurement Office, and peer Technology Risk Management leads across our globally.
・Collaborate with Regional or Global IRM shared services security operation on procedure and process integration
・Contribute and shape divisional and global IRM projects and initiatives. Ensure division-specific requirements and needs are accommodated whenever possible and practical in initiatives, projects and services.

●Identity & Access Management
・ Design the practice, process, leveraging tools and technology, to secure identity and access management, user identity lifecycle on boarding and off boarding, transfer and changes, logical access review, privilege account management, password and multifactor authentication enforcement, with global access control policies and related standards
・Define user identity and privilege account, on boarding provisioning, off boarding de-provisioning, transfer and changes approach and procedure

＜Qualifications＞
・University Degree (Computer Science, Business or Finance preferred).
・Ten years or more of progressive experience in one or more of the following disciplines: Information Technology/Systems, Information Risk Management,
Project Management, Audits, Information Security - ideally with experience in a large, complex organization
・Minimum 5 years of experience in direct people management
・Professional certifications or designations in security CISSP, CISA, or CRISC required
・Experience in a highly regulated environment, specific experience with FFIEC, OSFI, PCI-DSS, SOX preferred
・Expert knowledge of IT security and risk disciplines and practices
・Advanced knowledge of organization, technology controls, security and risk issues
・Demonstrated ability to participate in complex, comprehensive or large projects and initiatives
・Ability to serve as a lead expert resource in technology controls and information security for project teams, the business, organization and outside vendors
・ Experience with Key Risk Indicators and Technology Risk reporting preferred

＜Competencies＞
・Proven ability to lead and manage teams to achieve business and/or risk management objectives.
・Ability to work both independently and collaboratively, while managing multiple priorities within tight deadlines & work under pressure
・Proven ability to build relationships, engage and influence others, work with a diverse internal and international user community, as well as vendors
・Ability to successfully manage interaction with internal clients and work independently and within a team environment with professionalism and collaboration
・Strong interpersonal skills, including demonstrated ability to be sensitive and professional when communicating across geographical and cultural boundaries.
・Effective influencing and negotiation skills with the aptitude to achieve consensus in a federated environment.
・Ability to create and deliver meaningful presentations and insights back to key stakeholders throughout the business
・Possess excellent leadership, diplomatic and motivational skills to lead cross-functional teams and coach/advise peers and staff
・Excellent communication skills (oral and written) including presentation skills and demonstrated ability to present at all organizational levels.
・Innovative problem-solving skills with the proven ability to exercise flexibility and judgment can think and work creatively and find solutions to roadblocks
・Strong planning and organization skills with the ability to adapt to changes
・Japanese fluency, English is an advantage