Information Security Specialist (IT Security)

Job Type
Japanese Level
Advanced (JLPT Level 1)
English Level
High Intermediate (TOEIC 730)
Start Date



‐ セキュリティデバイス、監視システムから発せられるアラートの調査、分析、対処
‐ 監視コンテンツの開発、継続的なチューニング
‐ 脅威情報、脆弱性情報の収集、影響判断、対策推進
‐ セキュリティインシデント対応(影響分析、調査、対応、再発防止策の検討と実行支援)
‐ セキュリティシステム(Eメール、Webゲートウェイ、EDR、DLP等)の維持管理、エンハンス
‐ セキュリティソリューション (ID管理、生体認証、特権管理システム等)の導入
‐ ITシステムのセキュリティ要件策定、設計内容のレビュー
‐ ITシステムの監査、リスク分析、改善活動
‐ 脆弱性診断、ペネトレーションテストの実施
‐ その他会社が要請する情報セキュリティ関連業務

Our client is aiming to be the global No1 retail company and brings "Digital ways" to provide best shopping experience by connecting with customers more directly.

To achieve this goal, implementation of robust technical controls including security operation and continuous improvement are our urgent matters.

As IT security specialists you will be responsible for design, implementation, improvement and operation for IT security systems.

‐ Handle the incident triage and response by executing initial response activities to security incidents and alerts, including escalation when needed to other related teams.
‐ Develop SIEM contents to visualize current threat landscape and to enhance detection and prevention capabilities with threat intelligence
‐ Work with the security operations on daily or as needed to correlate events and investigate incidents and vulnerabilities. When necessary, utilize forensic processes and tools to collect and analyze digital evidence throughout the investigation and involving third parties as necessary to complete an investigation.
‐ Perform day to day operations of security services and system such as email security, web security, endpoint security, vulnerability management and data security.
‐ Identify and define security requirements, review architecture, design, implementation and operation
‐ Conduct security scan and penetration test
‐ Conduct IT system audit and risk assessment. Create and track remediation activities.
‐ Performs other duties as assigned.



Required Skills

以下のいずれかのITセキュリティ関連業務の経験 (3年以上)
‐ セキュリティデバイスや監視基盤(Firewall、IDS/WAF、EDR、SIEM等)の構築、運用経験
‐ セキュリティ監視、インシデント対応、脆弱性対応の実務経験
‐ 脆弱性診断、ペネトレーションテストの実務経験
‐ ID管理、認証システムの導入、運用経験
‐ ITシステムのセキュリティ要件定義、設計レビュー、監査の実務経験

‐ 課題を自ら発見し、能動的に周囲を巻き込みながら、かつ細部にこだわり解決できる課題解決能力
‐ 現状にとらわれず、よりよいやり方を提案、実行できる能力
‐ サイバーセキュリティの脅威、脆弱性動向に関する情報収集、分析能力

Technical skills: Minimum 3 years’ experience of any IT security related work indicated as below
‐ Hands on experience in security systems, including firewalls, IDS/WAF, anti-virus, EDR, SIEM, etc.
‐ Working experience as a security analyst, incident handler, penetration tester and/or IT security architect.
‐ Solid understanding of current security threat landscape and evolving vulnerabilities.
‐ Working experience of implementation/operation of ID management / Authentication solution (IDM, PAM, 2FA, etc.) 
‐ Excellent communication skills - verbal and written both in Japanese and English.

Knowledge, skills and abilities:
‐ Taking initiative to find out issues with active involvement of stakeholders and resolve them with deep analysis.
‐ Strong sense of ownership and driven to manage tasks to completion.
‐ Highly motivated self-starter with ability to work independently or with a team

Preferred Skills

‐ 情報セキュリティ関連の資格(CISSP, CEH, SANS GIAC等) (歓迎要件)
‐ PCI DSSやGDPR等のコンプライアンス要件の理解(歓迎要件)
‐ 小売業界に関する業務知識 (歓迎要件)

‐ Appropriate technical and/or security certifications preferred. (e.g. CISSP, CEH, SANS GIAC) (Preferred).
‐ Basic knowledge of security/privacy compliance such as PCI DSS, GDPR (Preferred).
‐ Overall knowledge of the Retail industry (Preferred).