VP - Security Advisory Consultant (Technology Risk Assessment expert)
VP - Security Advisory Consultant (Technology Risk Assessment expert)
Job type:
Permanent
Specialization:
IT Management
Language Level:
Japanese Level - Advanced (JLPT Level 1),English Level - Advanced (TOEIC 860)
Location:
Tokyo
Salary:
¥10,000,000.00 - ¥15,000,000.00 Yearly
Job Reference:
494089
A Global Financial firm is seeking a talented Vice President – SAS Function regional lead.
The ideal candidate will support the activities related to the Security Service Desk (SSD) as well as support the business within the SAS Japan function and collaborate closely with regional Security Advisory Services (SAS) teams.
The primary focus of the role is to ensure that the Business as Usual (BAU) or Run the Bank (RTB) activities are being running in a smooth and well manner.
Responsibilities:
- Be a point of contact and perform a SAS function lead role and provide oversight on Business requests, security awareness and Third-party cyber risk assessment (TPCRM) for vendors, suppliers, and service providers
- Work with procurement, legal, regional stakeholders including resilience (TPRM) and platform teams to embed security requirements into vendor contracts
- Act as trusted Security advisor to business units and project teams, ensuring that security requirements are integrated into project/technology initiatives
- Review and assess software, network and cloud solutions for security compliance and recommend mitigation strategies where required
- Maintain strong governance on the third-party cyber risk assessment (TPCRM) process for Japan in terms of complying with regional requirements and synergy with Wealth management team
- Liaise with internal security teams such as global TPCRM, SOC, Vulnerability Management, Security Architecture, Threat Intelligence and others to enhance the overall TPCRM cybersecurity control framework
- Proactively attend and contribute to Japan TPRM Working Group meetings and participate in ServiceNow VRM implementation
- Manage regular reporting to the SAS management about the status of the third-party cyber risk assessment (TPCRM) for the Japan region
- Conduct security awareness programs on third-party cyber risks and compliance requirements
- Participate in third-party security incidents and data breaches, ensuring compliance with regulatory reporting requirements
- Support Cyber Culture and Learning initiatives (on ground activities, translation and content review) locally for Japan
- Assist in the translation of business communications / Security Reports from English to Japanese and vice a versa
Required skills:
- 10+ years of experience in information security, with strong experience of cyber risk management, technology risk, knowledge regulatory frameworks, risk mitigation
- In-depth understanding of information security principles, current cyber threats, and mitigation strategies, including hands-on knowledge of network security, firewall rules, cloud connectivity, and technology risk
- Good communication skills
Why should you apply:
- You will be part of a Global IT team to be part of winning asset banking
- Good managers to work with
- Diverse environment (Good mix of female and male management team, international)
- Stable environment
- First-hand experience on high level digital transformation
Company Details:
Headquartered in Tokyo with offices in Hong Kong, London, and New York, it is Japan's largest securities firm, employing approximately 26,000 staff worldwide and offering a full range of equity, fixed income, foreign exchange, and other investment products and services.
Working Hours: 08:40 – 17:40
Workstyle: By principle, it will be 1 day working in office, 4 days working from home (Depending on nature of the job, it will be decided by department head)
Holidays: Saturday, Sunday, and National Holidays, Year-end and New Year Holidays, Paid Holidays, Other Special Holidays
Benefits: Social insurance, pension, transportation, etc.
I nterview Process: 5 rounds
Share this job
