Information Security Specialist - Information Security Management Office, Information Security & Privacy Governance Department (ISPD)

Job Description:

Business Overview

The Technology Management Division (TMD) provides Corporate IT, and Cyber Security & Privacy Governance to Rakuten Group companies and essential business management for technology organizations, thereby enabling innovation and strengthening the technology foundation. Within TMD, the Technology Management Services Supervisory Department (TMSSD) plays a vital role in CIO Governance, IT financial management, IT procurement, Quality Management System (QMS), technology-related public relations, and human resources strategy. By promoting efficiency, quality, risk management, and organizational strength, we ensure that Tech Divisions remain agile and at the forefront of technological advancement.

Department Overview

The Information Security & Privacy Governance Department (ISPD) enables and accelerates business growth by establishing, maintaining, and enhancing robust information security, privacy, data, and AI governance frameworks across the Rakuten Group. We ensure Rakuten's global operations are secure, compliant, and innovative by adhering to regulatory requirements, providing comprehensive employee training, strategically managing data assets, and governing AI responsibly.

Position:

Position Details

- Formulation and maintenance of Rakuten Group regulations, as well as Rakuten Group, Inc.'s Information Security Policy and related policies, including those for AI.


- Gathering requirements through regular communication with relevant departments and group companies, and executing and managing the formalization process.

- Acquiring information on industry trends and regulatory changes related to information security and sharing it with the CISO community.


- Preparing reports for the Rakuten Group CIO, CISO, and management meetings, as directed by the Head of the Information Security & Privacy Governance Department.

Mandatory Qualifications:

- Effective communication skills with CISO community and stakeholders.

- Over 5 years of experience in planning or managing the implementation of information security, internal information systems, or internet service-related information systems.


- Over 3 years of experience in formulating internal regulations related to information security or IT governance.

Desired Qualifications:

- Possession of certifications such as CISSP (Certified Information Systems Security Professional) or IPA (Registered Security Specialist).

- Experience and knowledge related to ISMS ISO/IEC 27001 certification activities.

- Experience in building and operating systems on public cloud services.
 

Other Information:

Additional information on English Qualification

Business Level (TOEIC 800 or above)

Japanese Requirements: Native Level

#corporate

#informationsecurity

#privacygovernance

#technologymanagementdiv

Languages:

English (Overall - 3 - Advanced), Japanese (Overall - 4 - Fluent)