転職・求人情報の詳細をご覧になる場合は会員登録(無料)が必要です
| 部署・役職名 | 【Full remote】Cybersecurity Manager/ CISO |
|---|---|
| 職種 | |
| 業種 | |
| 勤務地 | |
| 仕事内容 |
Security Governance & Leadership * Develop and enhance the Information Security Management System (ISMS) aligned with ISO/IEC 27001, NIST, and local regulatory expectations. * Build and manage security and compliance roadmaps covering governance, risk, and compliance (GRC). * Lead internal and external security audits (SOC 1, SOC 2, ISO 27001) and coordinate with regulators and third-party assessors. * Report cybersecurity posture, risks, and metrics to executive leadership. * Ensure compliance with data protection regulations (e.g., APPI, GDPR, CPRA). Operational & Technical Security * Define and own technical security architecture and operational security policies across cloud infrastructure and customer-facing platforms. * Establish cloud security governance, including secure deployment and operations on platforms like Google Cloud. * Define Identity and Access Management (IAM) architecture, including requirements for IdPs, token-based authentication, and federation frameworks (SAML, OIDC, OAuth 2.0). * Develop policies for advanced authentication models (SSO, MFA, passwordless access, CIBA). * Ensure Financial-grade API (FAPI) compliance and alignment with OpenID and Open Banking standards. * Oversee service mesh and microservice security, including zero-trust networking and secure service communication. * Define blockchain security policies, including wallet management, key lifecycle control, custody security, and smart contract assurance. * Set DevSecOps security requirements across the SDLC. * Manage incident detection and response, threat intelligence, and monitoring strategies. * Establish standards for data protection, encryption, and key management. * Provide architectural guidance balancing risk mitigation, compliance, performance, and user experience. Risk & Compliance * Conduct risk assessments and implement controls aligned with ISO 27001 Annex A and FISC guidelines. * Lead business continuity and disaster recovery planning and testing. * Manage vendor risk and third-party security reviews. * Support compliance with AML/CFT and financial regulatory frameworks. Culture & Leadership * Advocate for security across the organization. * Mentor staff on security best practices. * Plan and build a cybersecurity team as the company scales. |
| 応募資格 |
【必須(MUST)】 * 10+ years in cybersecurity, IT risk management, or information assurance.* Proven leadership in ISO/IEC 27001 and SOC 2 programs. * Deep understanding of GRC, data protection laws, and audit readiness. * Hands-on expertise in cloud security (AWS, GCP, Azure) and identity management. * Experience in regulated industries (fintech, banking, crypto). * Strong communication and leadership skills. * Fluent English; business-level Japanese or willingness to learn. 【歓迎(WANT)】 * Certifications: CISSP, CISA, CISM, CySA+, CCSK.* Familiarity with local regulatory requirements for crypto exchanges. * Master’s degree in Cybersecurity or Information Assurance. * Experience building cybersecurity functions in startups or scale-ups. * Experience with blockchain technology and security. |
| リモートワーク | 可 「可」と表示されている場合でも、「在宅に限る」「一定期間のみ」など、条件は求人によって異なります |
| 受動喫煙対策 | その他 「就業場所が屋外である」、「就業場所によって対策内容が異なる」、「対策内容は採用時までに通知する」 などの場合がその他となります。面接時に詳しい内容をご確認ください |
| 更新日 | 2025/10/23 |
| 求人番号 | 5951845 |
採用企業情報
- 企業名は会員のみ表示されます
- 会社規模101-500人
この求人の取り扱い担当者
-
- ?
- ヘッドハンターの氏名は会員のみ表示されます
会社名は会員のみ表示されます
-
- 金融 IT・インターネット
-
転職・求人情報の詳細をご覧になる場合は会員登録(無料)が必要です