Information Security Officer, Vice President, Japan Information Security Officer, Vice President,  …

BlackRock
à Tokyo, Tōkyō, Japon
CDI, Plein-temps
Dernière candidature, 25 nov. 20
Competitive
BlackRock
à Tokyo, Tōkyō, Japon
CDI, Plein-temps
Dernière candidature, 25 nov. 20
Competitive
Information Security Officer, Vice President, Japan
Description

About this role

The Information Security group mission is to evaluate, establish, maintain and monitor compliance with information security controls that protect the Company's information and computer systems.

The group is led globally by the Chief Information Security Officer, with regional representation by the Regional Information Security Officers in EMEA and APAC. There are five global functional teams across our pillars of Governance, Strategy, Awareness, Risk Advisory and Monitoring & Metrics.

  • Cyber Operations which provides global 24x7 operation center responsible for cyber monitoring, incident response, cyber intelligence, cyber forensics and vulnerability management.  Also responsible for coordinating firm-wide functional engagement and escalation of cyber security issues and delivering firm-wide awareness of cyber security issues

  • Cyber Risk Assessments & Governance which assesses cyber risk in our environment through governance, risk and compliance.  This includes overseeing a penetration testing program, reducing vulnerabilities, and partnering with vendor management to assess supplier cyber risk.

  • Cyber Architecture Services which is responsible for analyzing and assessing cyber architecture and emerging technologies in addition to defining the platform security standards and delivering cyber analytics

  • Cyber Analytics which develops quantitative processes and solutions to measure, automate, and model Information Security controls.

  • Access & Identity Management which delivers Identity Management, and Access automation in support of Aladdin and in partnership with Human Resources for joiners / movers and leavers


This position will be responsible for local information security governance in Japan, focused on the localized delivery of the global Information Security agenda in country. Reporting to the Regional Head of Information Security - APAC, the incumbent will work closely with him, the regional IS governance team as well as global information security specialist functions to ensure the optimal running of the IS program in Japan. This entails the localized delivery of key Information Security services and initiatives, including but not limited to in-country executive engagement, regulatory engagements, client due diligence, cyber risk advisory for business units, security incident handling & escalations, information security service delivery etc. The role demands that the Information Security Officer works well under pressure and can deliver towards tight deadlines.

Key Responsibilities:

  • The Incumbent will take point in representing the Information Security group in Japan and will be responsible for promoting information security initiatives in country through continuous engagement with country leadership and business functions.

  •  Liaise with related governance functions (such as Physical Security/Facilities, Risk Management, IT, HR, Legal and Compliance) plus senior and middle managers throughout the organization as necessary, on information security matters such as routine security activities plus emerging security risks and control technologies.

  •  Partake in client/regulatory engagement activities by responding to Information Security due diligence inquiries and articulating the firm's information security control posture to external clients, regulators etc.

  • Facilitate information security incident triage by liaising with business groups and control functions.

  • Acts as a core within "APAC Centre of Excellence" for information security management, for example offering internal management consultancy advice and practical assistance on information security risk and control matters throughout the organization and promoting the commercial advantages of managing information security risks more efficiently and effectively

  •  Provide timely advice for business functions, in accordance with established organizational information security policies and procedures, on information security topics to enable business functions across the APAC region and with a focus on Japan.

  • Provides direct training and oversight to all employees and affiliate alliances, ensuring proper information security clearance in accordance with established organizational information security policies and procedures

  • Perform information security risk assessments and serves as an internal auditor for security issues

  • Reviews system-related security plans throughout the organization's network, acting as a liaison to Technology Infrastructure

  • Leads the implementation of necessary information security policies, standards, procedures and guidelines, in conjunction with the Office of Information Security                                                                                                                                             

  • Represent the Japan Technology group in terms of contract and SOW related negotiations for technology and information security related vendor contracts


Experience:

  • At least 10 years of full-time work experience in information security management and/or related functions (IT Risk Management, Technology Risk Management) with information security management qualifications such as CISSP, SANs, CRISC, CISM etc             

  • Proficiencies in one or more of the following technical IT security domains or equivalent: Network Security, Cloud Governance, Cyber Operations, Forensics, Access and Identity Management Governance etc                                                                             

  • Knowledge of domestic Japan cyber and technological regulations                                                                                                   

  • Experience in dealing with regulators and clients in relation to cybersecurity focused topics in the course of regulatory examinations or client due diligence sessions.

  •  Strong proficiencies in both English and Japanese languages (Verbal/Written)

  • Hands-on team leadership and management experience, ideally coupled with suitable management qualifications 


Our benefits

To help you stay energized, engaged and inspired, we offer a wide range of benefits including a strong retirement plan, tuition reimbursement, comprehensive healthcare, support for working parents and Flexible Time Off (FTO) so you can relax, recharge and be there for the people you care about.

About BlackRock

BlackRock's purpose is to help more and more people experience financial well-being. As a fiduciary to investors and a leading provider of financial technology, our clients turn to us for the solutions they need when planning for their most important goals. As of June 30, 2020, the firm managed approximately $7.32 trillion in assets on behalf of investors worldwide.

For additional information on BlackRock, please visit www.blackrock.com/corporate | Twitter: @blackrock | Blog: www.blackrockblog.com | LinkedIn: www.linkedin.com/company/blackrock

BlackRock is proud to be an Equal Opportunity and Affirmative Action Employer.  We evaluate qualified applicants without regard to race, color, national origin, religion, sex, sexual orientation, gender identity, disability, protected veteran status, and other statuses protected by law.

BlackRock will consider for employment qualified applicants with arrest or conviction records in a manner consistent with the requirements of the law, including any applicable fair chance law.
BlackRock logo
Offres similaires
Plus d'offres
Close
Loading...
Loading...