Job summary
| Job category | IT Engineering (System Engineer / Web / Gaming)/System Engineer (Operation / Quality Control / Support) |
|---|---|
| Industry | Health Care/ Pharmaceuticals |
| Employment type | Uncategorized |
| Position level | Other |
| Number of openings | 1 |
| Desired entry time | - |
| Required language skill | - |
| Foreign language competence | - |
| Working hours | Others |
| Welfares / Leave systems |
Work details
Company Overview
・日系・製薬会社
Job Description
[ポジションの役割]
グローバル情報セキュリティ・ガバナンス室長の監督のもと、グローバルなセキュリティロードマップとポリシーの構築、グローバルに分散した技術系および非技術系メンバーの指導、セキュリティプロジェクトとイニシアチブの管理、セキュリティ文化の促進、およびインシデント対応プロセスをリードすることにより、情報セキュリティに関するビジネスリスクを最小化と、参天のグローバルビジネスに求められる情報システムのメリットを最大化することに貢献する。
■Information Security Strategy and Roadmaps(情報セキュリティ戦略とロードマップ)
・Understand Santen’s business environment, business model and company strategy.
・Responsible for assisting the IS management to build Santen’s Information Security Strategy and Roadmaps, which directly supports IS medium-term strategy.
・Define and manage information security project portfolio to develop a next-generation information security operations model for the company and its associated governance.
・Identify high priority business domains that require special attention from security perspectives and assist defining necessary roadmaps to address the needs.
■Information Security Operations(情報セキュリティの運用)
・Implements security improvements by assessing current situation; evaluating trends; anticipating requirements.
・Protects system by defining access privileges, control structures, and resources.
・Determines security violations and inefficiencies by conducting periodic reviews.
・Coordinate with infrastructure teams to define architecture and improve system by implementing and maintaining security controls.
・Keeps the IS management informed by preparing performance reports.
・Design detection mechanisms and automated remediation services.
・Triage and investigate security incidents.
・Champion security initiatives and help drive operational implementations.
・Develop and track security metrics across the organization.
・Participate in application security architecture reviews to glean opportunities for operational improvements.
■Project Initiation and Execution(プロジェクトの立ち上げと実行)
・Lead projects to implement new information security solutions or framework by developing business cases or conducting opportunity studies when needed.
・Supervise and coach project members from project kick-off to closure, so that the project meets its objectives in terms of deliverables, costs, timelines and business value.
・Understand projects and services specificities in a multi locations environment with many remote management situations.
・Ensure there are continuous PDCA (Plan, Do, Check and Action) cycles to improve services and solution in place in relations with KPIs and SLAs in place or to be developed.
■Resources management(リソースマネジメント)
・Develop the budget proposal for the information security domain in accordance with the services expected by the business domains and company guidance on budget directions.
・Execute the budget in respect of its objectives in terms of services to operate, solutions to deliver.
・Ensure a proper workload dispatch between the different team members and ensure backup between themselves.
・Apply internationally recognized frameworks such as ISO27001, NIST and/or CoBIT principles to the activities to leverage best established practices and have a standard approach.
■Stakeholder Relationship and Vendor Management(ステークホルダーとベンダー管理)
・Maintain good working relationships with internal stakeholders, especially with his/her business counterparts as well as IS management.
・Support his/her Information Systems peers / colleagues in charge of business applications and infrastructure to provide the right information security advices or solutions allowing them to provide the contributions to business domains.
・Manage the suppliers by defining clear guidelines and objectives, relying on KPIs and SLAs in coordination with the governance in place. Challenge organization and governance in place to propose and implement improvements.
Requirements
・ビジネス、コンピュータサイエンス、エンジニアリング、または関連分野の学士。
・情報システムにおける最低10年の経験(情報セキュリティの最低5年の経験を含む)。
・プロジェクト管理の成功経験。
・さまざまな国やグローバルなステークホルダーと連携・協働した経験。
・情報セキュリティに関する深い知識。
・情報セキュリティ分野の実践的なプロジェクト管理スキル
・経営層向け文書作成とプレゼンテーションのスキル。
・ビジネスレベルでの英語によるコミュニケーションスキル。
Additional Job Information
【就業時間】8:30~17:15 ※フレックスタイム規程を適用(左記は標準就業時間)
【休憩時間】60分(12:00~13:00)
【休日】年間123日 (土日、祝日 ※当社就業カレンダーに基づく)
【時間外労働】管理監督者のため時間管理の対象外
【賃金】
・基本給 467,000~599,000円/月
・食事手当 6,200円/月
・住宅手当 8,000円~32,000円/月 ※世帯状況による。
・時間外勤務手当 支給なし ※時間管理対象外のため
・賞与 年2回支給(6月、12月)
・基本給改定 年1回(4月)
【加入保険】雇用保険、労災保険、厚生年金、健康保険
【年次有給休暇】
・3月2日から9月30日に入社した者:入社時に10日付与
・10月1日から3月1日に入社した者:入社時に5日付与
以降、翌年度4月1日より毎年基準日数(2年目:11日)を付与する。
【想定年収】
900万円~1,200万円(諸手当込、前職年収考慮)
About interview
Liaison
Team Manager (Associate Director)
RGF HR Agent
Negotiable / Unpublished
