IT Risk Management Analyst (IT Audit)
Global Insurance Company
Great salary package
Your company's vision is to become the life insurance company most chosen by customers. In order to become a new type of insurance company that has never existed before in Japan, the entire company will work together, focusing not only on profits but also on value.
In order to achieve their vision, they have set the mission as "To support you to make "more" come true in your life" .
The mission is further subdivided into four values: "Put Customers First", "Be The Best", "Make Things Easier", and "Succeed Together".
The company's service lineup focuses on three types of insurance: medical insurance, cancer insurance, and death insurance. Most of the product applications can be made via the Internet, making it very convenient for customers.
The company culture is recommended to those who feel empathy for the open culture of foreign companies and want to use their time well and balance it with their private life. To those who are looking to improve their skills and seek a higher career. Regardless of the position, the company is suitable for those who have a proactive attitude, asking questions on their own if they do not understand something.
*Conduct IT auditee tasks on IT General Control for Japan in a timely manner (To collect/review relevant documents/evidence to be submitted to external audits, organize meetings with external auditors, deal with several inquiries from users/external auditors and also support IT Groups/Teams)
*Conduct and support IT risk finding management (i.e. Promoting and supporting the registration of IT risk findings, Monitoring remediation progress of IT risk findings, Preparing and maintaining relevant metrics and reports for stakeholders.
*Conduct and support for maintaining policy, procedures and manuals related to IT Risk & Security areas
*Expect to be familiar with one or more of following key security domains: Security & Risk Management, Asset Security, Security Architecture & Engineering, Communications & Network Security, Identity & Access Management, Security Assessment & Testing, Security Operations, Software Development Security.
Requirements (Experience, Skills, Education)
-Fluent Japanese and Intermediate English skill
-4 years+ experience in hands-on experience in IT Risk & Security related field.
Any of the following:
- Experiences of IT auditee
- Experiences of IT risk finding management
- Experiences of IT risk assessment or IT technical assessment
- Experiences and/or knowledge concerning PCI DSS compliance
Nice to have
-Familiar with regulatory/industry standards (NIST CSF, PCI DSS, FISC)
-CISSP, CISM, CISA or similar certification is a plus
Attractive Salary Package
Work in a global environment