■ Job Title

Security Specialist セキュリティスペシャリスト

Need someone living in Japan!

■ Company Overview

A tech-driven company focusing on transforming financial services through innovative solutions. They provide numerous services that help simplify financial management for both individuals and businesses.

■ Your Role and Responsibilities 

In this role, you will leverage your expertise in coding, infrastructure, and related domains to collaborate with other engineers to enhance and maintain the security of our systems. As a Product Security Specialist, you will work alongside the security experts in the CISO Office to perform the following responsibilities:

Designing and implementing security guardrails for AWS and GCP environments
Providing internal security consultation, including technical guidance for developers, architecture reviews, and more
Conducting or supporting vulnerability assessments and penetration testing activities
Gathering and validating vulnerability intelligence, including OSINT
Developing tools and scripts related to security
Implementing frameworks such as NIST CSF and CIS Controls
Driving DevSecOps practices, including the use of Kubernetes, Docker, CI/CD pipelines, and similar technologies

■ Experience and Qualifications

Comprehensive knowledge of Computer Science, including networking, operating systems, data structures, cryptography, and related areas
Proficiency in software development using any programming language or experience implementing secure-by-design principles
Familiarity or hands-on experience in one or more of the following areas:
Vulnerability assessments
Penetration testing or red teaming
Digital forensics, malware analysis, incident response, etc.
Cloud security (AWS/Google Cloud)
Development and operation of DevSecOps practices
Deployment and management of security solutions such as WAF, IDS/IPS, SIEM, etc.
Soft Skills

Effective English communication skills
Strong sense of ownership, collaboration, and interpersonal communication abilities
Proactive self-learning capabilities

■ Additional Preferred Qualifications

Experience participating in Capture the Flag (CTF) competitions
Hands-on experience with bug bounty programs and earning CVE credits
Relevant certifications such as CISSP, CISM, OSCP, GCIH, or similar
In-depth knowledge of authentication and authorization protocols, including OIDC and OAuth
Background in security-related roles within the financial or fintech sectors, including familiarity with FISC

■ Good Reasons to Join

- Engage with advanced financial technologies.
- Lead impactful projects in a dynamic and innovative environment.
- Work within a collaborative, international team setting

■Work Style

Hybrid work, 2-3 days to the office.

■Work Location

Tokyo

■Salary

Negotiable