- Improve the maturity of Zendesk's Security Compliance program, with a focus on ISMAP and other APAC regional compliance programs, by identifying and articulating risks, and designing effective controls to mitigate them
- Act as the liaison with external auditors and government agencies as applicable for ISMAP audit and certification of Zendesk Customer Service Platform
- Plan and perform internal assessments to validate control design and efficiency to sustain compliance
- Respond to customer / prospects questions on regional compliance program roadmap and posture
- Consult and align with key control owners including Legal, Product and Engineering teams to nurture positive relationships
- Familiar with compliance frameworks: SOC 2, PCI, FedRAMP and ISO 27001, 27018 and 27701
- Proven ability (minimum 5 years experience) in IT audit, information security, risk management, compliance or other related fields.
- Language Proficiency: fluent in reading and writing Japanese and English
- Excellent written and verbal communication skills, with good social skills and tact in all interactions to influence clear decision-making
- Ability to understand business and technical requirements, collect and summarise key points, and communicate them at levels appropriate to your audience to ensure constant alignment
- Ability to collaborate with geographically distributed teams across multiple technical areas
- Good technical understanding of cloud security and controls, including those related to endpoint, database, network and application security
- Self starter and intrinsically motivated to handle various tasks concurrently with a history of successful project execution
- A positive attitude and sense of humor; a desire to learn quickly in a dynamic environment and grow with the team
- Knowledge of ISMAP compliance framework and experience leading all audit related activities towards successful certification
- Experience in a large consulting / audit firm or internal audit department
- Security certifications such as CISA, CISM, CISSP, AWS Certified Security / Cloud Practitioner or similar
- Experience auditing cloud environments within AWS and GCP
-
Box Tokyo, 日本WHAT IS BOX? · Box is the market leader for Cloud Content Management. Our mission is to power how the world works together. Box is partnering with enterprise organizations to accelerate their digital transformation by creating a single platform for secure content management, col ...
-
Imperva Tokyo, 日本募集概要: · Imperva は、アプリケーション、データ、ネットワークセキュリティのマーケットリーダーです。当社では、日本におけるグローバルセールスエンジニアリングチームとして経験豊富なシニアセールスエンジニアを募集しています。Impervaは、データセンター内の重要なアプリケーションや価値の高いデータに対する、新しいカテゴリのセキュリティ分野のパイオニアであり、市場を牽引しています。 · サイバーセキュリティは大きな課題です。ニュースでも取り上げられ、急速に成長している分野です。あらゆる企業にとって重要なツールであり、私たちの専門領域です。 · ...
-
Cybozu Tokyo, 日本この職種について · 「コーポレートエンジニア」として、ITシステムを活かして、サイボウズの"100人100通りの働き方"を支える仕事に挑戦してみませんか。 · 弊社の従業員数は事業の成長に伴って増加傾向にあり、現在ではグローバルで1000名を超えました。 · 会社規模が拡大している中でも他社ベンダーに依頼することは少なく、企画から設計、実装までを一気通貫に責任持って運用していることが特徴です。 · 新しい技術も積極的に取り入れ、より安定感のあるシステムを常に追求し続けています。 · これからもコーポレートエンジニアとして技術力を高めていきたい方にとっ ...
-
Cybozu Tokyo, 日本この職種について · 「コーポレートエンジニア」として、ITシステムを活かして、サイボウズの"100人100通りの働き方"を支える仕事に挑戦してみませんか。 · 弊社の従業員数は事業の成長に伴って増加傾向にあり、現在ではグローバルで1000名を超えました。 · 会社規模が拡大している中でも他社ベンダーに依頼することは少なく、企画から設計、実装までを一気通貫に責任持って運用していることが特徴です。 · 新しい技術も積極的に取り入れ、より信頼性の高い社内 IT 環境を常に追求し続けています。 · これからもコーポレートエンジニアとして技術力を高めていきたい ...
-
Takeda Pharmaceuticals Tokyo, 日本 Paid WorkBy clicking the "Apply" button, I understand that my employment application process with Takeda will commence and that the information I provide in my application will be processed in line with Takeda's Privacy Notice and Terms of Use . I further attest that all information I sub ...
-
Rakuten Mobile Tokyo, 日本 フルタイムDescription · : About Organization · Security Architecture & Compliance Department is the department that focuses on information security governance and compliance. Within this, Governance, Standards, Compliance & Risk Section is the section that handles overall governance and ...
-
TEKsystems Tokyo, 日本Job Summary · We are looking for a bilingual (JLPT N2) Security Consultant with around 3-5 years of experience in Security/ with exposure to governance or compliance for the Cyber Defense Team for one of the biggest international insurance companies located in Tokyo. · Applicant ...
-
Moody's Tokyo, 日本JOB TITLE Vice President Senior Compliance Officer ENTITY Moody's Shared Service LINE OF BUSINESS Compliance Asia-Pacific LOCATION Japan REPORTING TO Designated Compliance Officer APAC The Role / Responsibilities: · Moody's compliance function operates globally to provide comp ...
-
Moody's Tokyo, 日本JOB TITLE · Vice President Senior Compliance Officer · ENTITY · Moody's Investors Service · LINE OF BUSINESS/ · DEPARTMENT · Compliance Asia-Pacific · LOCATION · Japan · REPORTING TO · Designated Compliance Officer APAC · The Role / Responsibilities: · Moody's compliance f ...
-
Manager, Compliance
1週間前
Reinsurance Group of America Tokyo, 日本Position Overview · This position covers wide range of Compliance activities and is responsible for handling the aspects of Japan Compliance and complex issues. Lead and work on the following compliance activities in consultation with Associate Director, the Head of Compliance: ...
-
Richemont Tokyo, 日本 PermanentMAIN PURPOSE / KEY RESPONSIBILITIE S The position to · New build retail stores/boutiques security design for high value merchandise/jewerly · Assist with all aspects of security including: logistics/transportation protocol of money/values, CCTV design, instruction retail staff, ...
-
Rakuten Mobile Tokyo, 日本 フルタイムDescription · : About Organization · Security Assurance Department is responsible for maintaining organization wide security. The department has four sections of which Penetration Testing section is in-charge of performing red teaming, regular black-box, white box, and grey bo ...
-
Rakuten Tokyo, 日本 フルタイムDescription · : ■Overview · Rakuten Group provides Internet services such as e-commerce, travel, and digital content; communication and communication services such as mobile and messaging applications; credit cards; and fintech services such as banking, securities, insurance, ...
-
Rakuten Mobile Tokyo, 日本 フルタイムDescription · : About Organization · Security Architecture & Compliance Department is the department that focuses on information security governance and compliance. Among them, the Data Governance Section is the section that manages the information handled by our company from ...
-
Citi Tokyo, 日本 フルタイムThe Info Security Ops Group Manager is a senior management level position responsible for accomplishing results through the management of a team or department in an effort to prevent, monitor and respond to information/data breaches and cyber-attacks. The overall objective of thi ...
-
Philips Tokyo, 日本 フルタイムJob Title · 【品川】Information & Product Security OfficerJob Description · 【職務内容】 · 日本マーケットのInformation security officerとして、以下業務を担当 · ビジネスサイドからのInformation securityに関する問合せ対応 · ISMSやISO27001等の事務局、およびプロジェクトリード · Information securityに関する社員トレーニングの企画、および実行 · 内部監査 · 各種グローバルプロジェクトへの参画 · Pr ...
-
TEKsystems Tokyo, 日本Job Summary · One of the world's top luxury brands is waiting for you to be their Cybersecurity Advisory Specialist · The company is based in France and is renowned for their luxury goods and accessories. They will be utilizing "Security by Design", across the IT business to ...
-
Azure Engineer
1週間前
Amaris Consulting Tokyo, 日本Job description · We are seeking an experienced Azure Engineer to join our team. As an Azure Engineer, you will be responsible for designing, deploying, and maintaining our Azure cloud environment to ensure it is efficient, secure, and reliable. You will work with other technical ...
-
5000 Kyndryl Japan KK Tokyo, 日本 フルタイムWho We Are · At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, in ...
-
Okta, Inc. Tokyo, 日本Get to know Okta · Okta is The World's Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move thr ...
Lead Analyst, Security Compliance - Tokyo, 日本 - Zendesk
説明
Job Description
The Security Compliance Team at Zendesk supports the business by maturing, growing, and maintaining its compliance with security and privacy certifications for its products. Our mission is to strengthen Zendesk's security posture and empower our business partners to incorporate security when designing and implementing processes and controls.
The team is seeking an experienced Security Compliance Lead with a strong compliance background and experience understanding various gaps and risks with using cloud technologies. The ideal candidate will have a self-starter work ethic, the ability to build strong cross-functionality relationships across multiple time zones, and an aptitude for learning new terminology and technologies quickly. The candidate will also have experience creating and evaluating the design of security controls, and assessing control operating efficiency. This position is specifically focused towards achieving and supporting the Information System Security Management and Assessment Program (ISMAP) government certification for the Japanese Market.
What you get to do every single day:
What you bring to the role:
Nice to haves:
Zendesk software was built to bring a sense of calm to the chaotic world of customer service. Today we power billions of conversations with brands you know and love.
Zendesk believes in offering our people a fulfilling and inclusive experience. Our hybrid way of working, enables us to purposefully come together in person, at one of our many Zendesk offices around the world, to connect, collaborate and learn whilst also giving our people the flexibility to work remotely for part of the week.
Hybrid: In this role, our hybrid experience is designed at the team level to give you a rich onsite experience packed with connection, collaboration, learning, and celebration - while also giving you flexibility to work remotely for part of the week. This role must attend our local office for part of the week. The specific in-office schedule is to be determined by the hiring manager.
