スキルハウスの採用情報
Senior Security Engineer
役職:
Senior Security Engineer
雇用形態:
正社員
給与:
12000000.00
勤務時間:
Japanese Level - None,English Level - Advanced (TOEIC 860)
職務内容
One of Japan's larger IT Trading System providers is now looking for a Senior Security Engineer.
You will monitor and respond to security alerts, perform triage and investigations, manage client tickets, collaborate with teams on incident response, and engage in security projects. You will stay updated on emerging threats, conduct risk assessments, and implement security strategies to protect systems and data. As a technical focal point for security solutions, you will provide guidance, mentorship, and ensure alignment with industry standards. Strong communication, teamwork, and problem-solving skills are essential for success in this role.
Responsibilities:
● Monitor the SIEM/SOAR platform and respond promptly to suspicious or abnormal alerts.
● Perform initial triage and investigation of alerts, documenting findings appropriately.
● Utilize multiple data sources and apply critical thinking skills to effectively triage alerts.
● Manage and resolve client tickets submitted through the ticketing system.
● Collaborate with the Incident Response team to provide insights and support during investigations.
● Document and follow up on open or ongoing security incident tickets.
● Maintain strong communication skills and work effectively within a team.
● Stay informed on emerging threats, such as CVEs and known exploits.
● Work alongside other security staff and engineers on ongoing issues and projects.
● Engage in continuous self-learning and professional development.
● Serve as the technical focal point for security solutions, including firewalls, WAF, remote access, NAC, vulnerability assessment solutions, TLS/SSL interception, and DNS security.
● Demonstrate proficiency in web security, patch management, and foundational knowledge of security domains, such as firewalls, email security, and IPS.
● Conduct risk assessments to identify and prioritize security risks and vulnerabilities related to security solutions.
● Perform security audits and assessments to identify risks, address vulnerabilities, and ensure compliance with regulatory and industry standards.
● Develop and implement security strategies, policies, and procedures to safeguard client systems, servers, networks, and data.
● Provide guidance on security best practices and align with industry standards.
● Offer technical leadership and mentorship to other members of the security team.
● Collaborate with cross-functional teams to ensure effective communication and coordination of security initiatives.
● Monitor, assess, and secure cloud environments (AWS, Azure, and GCP) to identify and mitigate risks.
● Implement and manage cloud security tools such as CSPM, CIEM, or CWPP to enhance cloud security posture.
● Ensure compliance with cloud security best practices, frameworks, and regulatory requirements.
● Respond to cloud-specific security incidents and assist in forensic investigations.
● Work with DevOps and cloud engineering teams to integrate security into CI/CD pipelines.
Required Skills:
● A degree in Computer Science or a related field, or a minimum of five years of relevant experience with demonstrated ability to perform the required job functions.
● 5+ years of experience in infrastructure security.
● Hands-on experience in an IT Security Operations Center (SOC).
● Extensive knowledge and experience with Security Information and Event Management (SIEM) systems.
● Expertise with Intrusion Detection and Prevention Systems (IDS/IPS).
● Strong understanding of SSL/TLS, DNS, TCP/IP, computer networking, routing, and switching.
● System administration experience with Windows, Mac, and Linux/UNIX devices.
● Proficiency in system log forensics (e.g., Syslog and Event Viewer).
● Proven experience securing cloud environments (AWS, Azure, or GCP) and familiarity with cloud-native security tools.
● Experience with cloud security tools such as CSPM, CIEM, or CWPP.
● Knowledge of DevOps practices and integrating security into CI/CD pipelines.
● Exceptional troubleshooting, analytical, and problem-solving abilities.
● Strong organizational skills and ability to work independently while adhering to established processes.
● Excellent verbal and written communication skills for engaging with peers, management, and clients.
● Proven ability to create clear, concise, and professional technical documentation.
● Fluency in English, both spoken and written.
● Experience with Palo Alto, Darktrace, Security Onion, or other relevant tools is considered an asset.
● Familiarity with cloud compliance frameworks (e.g., ISO 27001, SOC 2, NIST, and CIS Benchmarks) is a plus.
Why should you apply:
● Work on a Proprietary Trading System (PTS) used by major finance securities companies in Japan, and diversity environment in IT department.
● There are opportunities to learn at this cutting-edge FinTech company.
Company Details:
A leading financial solution service company operates a highly sophisticated Proprietary Trading System (PTS) for the trading of Japanese equities. The company prides itself of a very international environment, structure career progression and support, including providing learning opportunities for candidates interested in the financial and trading industry.
Working Hours: 9:00 - 18:00(Mon - Fri)
Working Style: Work in office
Holidays: Saturday, Sunday, and National Holidays, Year-end and New Year Holidays, Paid Holidays. (Compensatory holiday for weekend working.)
Services/Benefits: Social Insurance, 401K, Company life insurance plan, Medical check etc., Casual Dress code, Self-directed continuous learning programs
Interview Process: 3 interviews (HR + Hiring Manager, Other Department Manager, CIO). Final interview is face to face.
