社名非公開 | 大手証券会社でのSenior Cloud Security Architect

非公開

アーキテクト

Responsibilities: ・Develop and maintain a deep understanding of the organization's cloud security needs ・Design and implement a comprehensive security architecture framework and reference architectures Cloud security. ・Continuously develop and mature the program and roadmaps in line with industry best practice and the evolving threat landscape. ・Develop and maintain security policies and standards for all cloud models ・Provide guidance and technical leadership to project teams to ensure security requirements are properly integrated into software development and infrastructure projects. ・Partner and collaborate with cross-functional teams including Cloud operations and engineering teams to identify and address Cloud security risks across the organization. ・Define cloud security solutions and patterns including secure authentication and authorization mechanisms for SaaS applications and integrations. ・Stay up-to-date with industry best practices and emerging trends in cloud security and incorporate them into the security architecture framework. All team members will need to perform project management activities (Change the Bank (CTB)), as well as operational activities and support (Run the Bank (RTB)).

<Mandatory> Language Skills: Japanese language skills are nice to have but not an absolute requirement for this role. IT and IT Security Experience: ・Established Cloud Security Architect with at least 10 years within the broader IT Security disciplines and technologies. ・At least 3-5 years of experience in cloud security architectures ・Experience with developing requirements and models for the future-state, current state and gaps in the different cloud models ・Cloud security architecture experience in applying enterprise architecture principles and methods in supporting IT programs and Projects ・Strong knowledge of Cloud services (AWS, GCP, Azure) ・Experience with compliance standards and regulations ・Knowledge of established information security frameworks and standards (i.e. NIST, ISO2700, CSA, SCF) and their application into diverse environments. ・Cyber Security related qualification (s) such as CISSP, CISM, CISA, CRISC ・Strong relationship, communication and stakeholder management skills. Ability to deal effectively with key stakeholders, internal and external to the Technology Division ・Ability to act pro-actively to ensure and effectively collaborate with regional and global counterparts ・Excellent interpersonal skills with the ability to build and influence; and self-motivated ・Committed to continuous improvement for team and self. ・Ability to run with a number of tasks concurrently and manage expectations appropriately <Preferred> ・Any security certifications, such as: CISSP, CISM, CISA, Security+, CEH, CCSK, or similar industry recognized certifications. ・Project management certifications, such as PMP, Prince2, or CSM. ・Other best-practice IT certifications such as ITIL or COBIT ・Knowledge of controls frameworks such as NIST CSF, NIST SP 800-53, ISO 27001/2, CIS, and FISC. ・Experience working in a global team. Personal Characteristics: ・Strong communication skills, ability to work comfortably with different regions. ・Good team player, ability to work on a local, regional and global basis and as part of joint cross-location teams and cross-functional teams. ・Ability to be pro-active and self-manage tasks through to completion. ・Able to perform under pressure.

1000万円〜1500万円

東京都

健康保険、厚生年金保険、労災保険、雇用保険等、社宅制度、従業員持株会制度、退職金制度、企業型確定拠出年金制度（マッチング拠出可）、資格取得支援制度、社内公募制度、職種転換制度、育児支援制度、海外勤務等同行休職制度、海外留学制度、私費留学制度、リフレッシュ休暇など年次有給休暇制度、有給の特別休暇制度（産前産後休暇、育児休暇、赴任休暇、看護休暇、介護休暇、公職休暇、人間ドック休暇、二次検査休暇、通院休暇、傷病等休暇、慶弔休暇）、当社健保組合直営・会員制・契約保養所（国内及びハワイ）、健康診断・人間ドック、カフェテリア・プラン（BenefitStation）、企業主導型保育園入園サポート、ベビーシッター割引券、介護支援制度、特別弔慰金、当社健保組合による各種付加金（一部負担還元金、合算高額療養付加金、傷病手当金付加金、延長傷病手当金付加金、出産育児一時金付加金など）等

完全週休2日制 祝日、年末年始、年次有給休暇、年2回9日間連続休暇(土日含む)等