This job posting isn't available in all website languages

Information Security Management Specialist(Information Security Management Office) Senior Class :ISPD

Rakuten, Inc.
00008370 Requisition #


Rakuten is one of the leading e-commerce companies in the world. Our mission is to contribute to society by creating value through innovation and entrepreneurship while aiming at becoming the Global Innovation Company.

Information Security Management office is to enhance and lead Rakuten's information security across the globe acting as a head office.

We are looking for a person who leads enhancement of information security management in cooperation with business departments creating innovative businesses and services.



l  Governance and policy creation: Establishing and managing information security organization of whole Rakuten group, making corporate security policies, guidelines and operation manuals, and implementing them to whole Rakuten group

l  Strategy planning: Making annual and midrange plan as to information security management, planning drastic and innovative measures to address fundamental issues with researching trend of information security, privacy and related fields

l  Risk Assessment: Evaluating risk and creating measures as to information security including Vendor/Cloud service, IT security, Physical security and Post Merger Integration

l  Security Audit: Proceeding with industrial standard security audit including ISO27001(ISMS), PCI DSS and GDPR with managing internal and external audit

l  Incident management: Acting as incident handler with managing security incidents and taking measures to avoid recurrence, Conducting security incident drill and training of business email compromise

l  Consultation: Assisting group companies for the resolution of information security issues with advices and guidance as a security specialist and corporate initiatives

l  Awareness enhancement: Executing security training for all employees and specific jobs including executives, managers and developers, Conducting awareness campaign

Required Qualifications

l  Work experience of above information security management for more than 3 years

l  Fundamental knowledge of IT, privacy and cyber security (IT: Equivalent to ITSS 3 or above, Privacy: understanding basic requirements of Japanese personal data protection law and GDPR, Cyber security: Understanding contents listed on OWASP Top10)

l  Having consciousness and measures to usually obtain recent information of information security management and related fields

l  Analytical skills and problem solving skills

l  Posture to explore the optimal resolution between security and business, risk and usability with understanding Rakuten’s business

l  Language level: Japanese and English = Business Level (TOEIC: score over 800)


Preferred Qualifications

l  Certification of information security and privacy (CISSP, CISA, CISM, ISMS auditor, PCI DSS auditor, etc.)

l  Work experience of information security in industries Rakuten is involved (eCommerce, Finance, Mobile, etc.)

l  Well knowing industrial standards and best practices of information security (ISO, NIST, Guidance of IPA, CSA, etc.)

l  Experience of external security organization like ISACA and Japan CSIRT association

l  Well knowing laws and regulations related with information security and privacy (Unauthorized access prohibition law, Unfair competition prohibition law, etc.)

My Profile

Create and manage profiles for future opportunities.

Go to Profile

My Submissions

Track your opportunities.

My Submissions

Similar Listings

Rakuten, Inc.

Tokyo, Tokyo, Tokyo, Japan, Asia and Oceania


Requisition #: 00011280

Rakuten, Inc.

Tokyo, Tokyo, Tokyo, Japan, Asia and Oceania


Requisition #: 00012687

Rakuten, Inc.

Tokyo, Tokyo, Tokyo, Japan, Asia and Oceania


Requisition #: 00013450