Senior Cyber Security Engineer

会社概要/Company Overview

日興アセットマネジメントは、日本そしてアジアを代表する資産運用会社です。株式、債券、オルタナティブ、マルチアセットなど多様な資産クラスを対象とするアクティブ運用やETF（上場投資信託）を含むパッシブ運用など、革新的な投資ソリューションを提供しています。

60年を超える実績を誇り、30以上の国・地域から集まる人材を世界11カ国・地域に擁して、約200名の運用プロフェッショナルが約36.35兆円の資産を運用しています。グローバルな視点を活かし、お客様のニーズにお応えする様々な商品の開発を推進するとともに、優れた運用パフォーマンスの実現を常に追求しています。銀行などの金融機関、証券会社、生命保険・損害保険、ファイナンシャルアドバイザーなど、国内外の計300社超の販売ネットワークを通じ、個人投資家の皆様や年金基金や金融機関など世界中の機関投資家のお客様に対して幅広いサービスを提供しています。

With US$240.1 billion* under management, Nikko Asset Management is one of Asia’s largest asset managers, providing high-conviction, active fund management across a range of Equity, Fixed Income, Multi-Asset and Alternative strategies. In addition, its complementary range of passive strategies covers more than 20 indices and includes some of Asia’s largest exchange-traded funds (ETFs).

Headquartered in Asia since 1959, the firm represents nearly 200** investment professionals and over 30 nationalities across 11 countries. More than 300 banks, brokers, financial advisors and life insurance companies around the world distribute the company’s products.

※2024年3月末時点
※世界の就業者数、運用プロフェッショナル：日興アセットマネジメント株式会社、および連結子会社の役社員を含む。
※運用資産総額：日興アセットマネジメント株式会社および海外子会社の連結運用資産総額（投資助言を含みます。）

Purpose Statement
●We (Cyber Security Engineering & Operations Group) are seeking an experienced Cyber Security Engineer with bilingual proficiency in English and Japanese to strengthen our security posture and protect our digital assets.　

Key Responsibilities
●Lead efforts to identify, evaluate, and prioritize potential cyber security & information security risks, and develop strategies to mitigate these risks of current and new system and services.
●Design, implement and manage security protocols, systems, and procedures.
●Coordinate and conduct security incident response and investigations.   
●Oversee vulnerability assessments and penetration tests.
●Collaborate with other departments to integrate security measures into their projects and initiatives.
●Daily analysis work necessary for cyber security and information security.
●Prepare for and respond to cyberattacks 24/7

Knowledge and Skills.

(Must)
●Deep understanding of firewalls, proxies, SIEM, EDR, and Email Security.
●Understanding GPO, Microsoft Online, SAML2.0 (IDP configuration) and overview of  NIST SP800 Series
●Advanced knowledge of networking protocols and infrastructure.
●Expertise in risk assessment and mitigation strategies.
●Strong leadership and mentoring skills.
●Excellent communication and presentation skills.

  (Nice to have)
●Advanced knowledge of encryption techniques.
●Experience with cloud security and architecture.

● Proficiency in advanced programming or scripting languages.
●Knowledge of regulatory standards (e.g., GDPR, HIPAA).

Experience and Qualification

(Must)
●Vulnerability Management, Endpoint Detection and Response (EDR), Security Information and Event Management (SIEM), Email security & control, Cloud-based web gateway and private access management, Identity and Access Management, Security Operations Center (SOC) Collaboration, Business Application Control, Penetration Testing
●Documentation & Reporting
●At least 5-7 years of experience in cybersecurity or a related field, with proven experience in a senior role.

●Bilingual proficiency in English and Japanese is required.

(Nice to Have)
● Bachelor's degree in Computer Science, Information Security, or a related field.
●Relevant cybersecurity certifications such as CISSP, CEH, CISM, etc., are an advantage.
●Specialized certifications in areas like cloud security, penetration testing, or incident response.

Personal Characteristics
●Strong sense of responsibility
●Patience to continue doing repetitive tasks
●Be able to communicate with internal and external parties necessary for business promotion without hesitation, and voluntarily manage, report, and consult on the progress and issues of the assigned tasks.
●Be able to have an attitude of voluntarily collecting necessary information for business promotion while understanding the relevant regulations and procedures within the company.
●Have an attitude of actively implementing knowledge sharing and supporting team members to ensure team continuity, emphasizing teamwork.
●Always respect the position of others, such as business partners and colleagues, and have a sense of gratitude.
●Be able to promote the assigned tasks with flexible ideas while considering the room for improvement, without being attached to the way of existing routine operations.