Security Officer

About the Role

Requirements

• 3+ years of experience in corporate security or information security
• Experience with identity management tools such as Okta and Azure AD
• Experience with mobile device management (MDM) and endpoint detection and response (EDR) tools
• Experience with security awareness training and phishing simulation programs
• Understanding of compliance frameworks such as ISO27001 and SOC2 and vendor risk assessment
• Business-level English
• Business-level Japanese
• Experience working in technology companies or startups
• Knowledge of cloud security concepts (AWS, Azure, GCP) (nice-to-have)
• Experience with Japanese regulators/authorities for fintech security (nice-to-have)
• Security certifications such as CISSP, CISM, or CISA (nice-to-have)

Responsibilities

• Develop and enforce information security policies and procedures
• Support partner security assessments and maintain security documentation
• Assess security posture of the company and third-party providers
• Manage compliance audits and implement compliance automation and controls
• Own information security aspects of business continuity
• Operate and manage SSO, MFA, and access controls (Okta, Azure AD, Google Workspace)
• Implement least privilege and just-in-time access
• Manage device lifecycle with MDM and EDR tooling
• Automate security processes wherever possible
• Conduct phishing and security simulation exercises and provide training

Skills