Security Architect

In Rakuten, security and safety of the Internet services of our group are guaranteed by the Cyber Security Defense Department (CSDD). CSDD covers all aspects of the System Development Life Cycle (SDLC) and operation security for all the services developed inside Rakuten Group.

Why we hire Team expansion due to the increased demand of the work and the scope expansion.

Position details We are looking for a Security Architect with a true security mindset and technical depth that will serve as a key member of our security team. As a Security Architect, you will be expected to be an experienced professional in information security and IT risk assessment, with a strong understanding and hands-on experiences of security protocols, authentication, and security best practices in the development lifecycle. You will also be expected to possess strong interpersonal and communication skills, and be able to work with a diverse group of people. Additionally, you will handle consulting engagements, providing expert advice and solutions to internal customers based on their cybersecurity needs and challenges.

Responsibilities

• Perform system requirements and design review on systems inside the Rakuten ecosystem.
• Collaborate with developers, system / network administrators, and other stakeholders to ensure secure design, development, and implementation of applications and networks.
• Create and / or update security-related guidelines, technical security standards, security policies, and regulations for Rakuten group.
• Take part in the security training and awareness activities by cultivating a sense of security awareness, and arranging for continuous education.
• Inspire innovation and deliver quality at speed across the platform and execute these to success through diligent planning, attention to detail, effective delegation, efficient decision making, and individual / team accountability.
• Communicate with potential (internal) customers to understand their cybersecurity needs and challenges.
• Scope and assess customer requirements to provide tailored security solutions.
• Develop and present proposals based on the customer's needs and cybersecurity challenges.
• Handle consulting engagements, providing expert advice and solutions to internal customers.

Mandatory qualifications

• 5+ years of professional experience in the information security field.
• Understanding of the core concepts of network, web / mobile application, network / web application protocols, and related security issues.
• Basic understanding of security architecture frameworks, threat modeling, security patterns, and security best practices in SDLC.
• Excellent consultation, problem-solving, communication, and interpersonal skills to help build trust and consensus.
• Strong teamwork capability in a diverse team environment.

Desired qualifications

• Past work as a consultant at a highly technical information security consultancy is a plus.
• Advanced IT security certifications (with good standing) e.g., CISA, CISSP may be advantageous.
• Experience overseeing remediation of vulnerabilities, defining security requirements, and a proven track record of working with infrastructure and development teams to build secure solutions.
• Experience in Web / Mobile application development and major web frameworks.
• Experience in Web / Mobile Penetration Testing and / or Vulnerability Assessment.
• Experience with major commercial cloud environments and / or working with container technologies.
• Experience in working with SIEM and / or participated in Incident Response projects.
• Incident response experience, including handling and managing security incidents.

Languages

BENEFITS

Annual bonus

Stock-option

Hybrid mode of work

Coupons for Rakuten Platform (20 euros per month)

Access to learning and career development resources

Access to certifications and tech conferences

Being part of multicultural teams with more than 20 nationalities

Possibilitytoorganizeyourtime to haveyourFridaysafternoonsoff

More than 35 days' holiday a year (25 days' paid holiday

As an employer, Rakuten Tech in Europe is committed to developing an inclusive working environment. Access to employment is open to all, regardless of gender, age, disability, ethnicity, religion, sexual orientation, or social status.

Find us on…

LinkedIn

Welcometo the Jungle

This is Rakuten tech

Languages :

English (Overall - 4 - Fluent)

Security Architect • Paris_92 rue Reaumur (39h)