Security Architect

Job Description:
Security Architect

Rakuten Group

Rakuten, founded in 1997, is a Global Innovation Company based in Japan. With over 70 diverse businesses spanning e-commerce, digital content, fintech, and communications, and 32,000 employees, we serve 1.6 billion members worldwide. Our mission is to empower people and society through innovation and entrepreneurship.

Rakuten Tech in Europe

Rakuten Tech in Europe, a part of the Rakuten Group's Global Innovation Hub, serves as the regional hub for the European-based members of the Technology Division. We provide and optimize global platforms to support businesses within the Rakuten Ecosystem, tailoring them to specific use cases in Europe and beyond.

With over 130 members across 7 countries and 12 offices, our presence spans France (Paris), Spain (Barcelona), UK (Belfast and London), Estonia (Tallinn), and Germany (Berlin). Our diverse team is formed of more than 20 nationalities and collaborates with all members of the Technology Divisions on a regular basis.

Rakuten's European Tech Division (EUTD) is looking for a talented and dynamic IT Support Engineer to join our Corporate IT Department in Barcelona. Here is your chance to work in a multicultural and experienced team, with high visibility and significant customer impact.

Description In Rakuten, security and safety of the Internet services of our group are guaranteed by the Cyber Security Defense Department (CSDD). CSDD covers all aspects of the System Development Life Cycle (SDLC) and operation security for all the services developed inside Rakuten Group.

Why we hire Team expansion due to the increased demand of the work and the scope expansion.

Position details We are looking for a Security Architect with a true security mindset and technical depth that will serve as a key member of our security team. As a Security Architect, you will be expected to be an experienced professional in information security and IT risk assessment, with a strong understanding and hands-on experiences of security protocols, authentication, and security best practices in the development lifecycle. You will also be expected to possess strong interpersonal and communication skills, and be able to work with a diverse group of people. Additionally, you will handle consulting engagements, providing expert advice and solutions to internal customers based on their cybersecurity needs and challenges.

**Responsibilities**:

- Perform system requirements and design review on systems inside the Rakuten ecosystem.
- Create and/or update security-related guidelines, technical security standards, security policies, and regulations for Rakuten group.
- Take part in the security training and awareness activities by cultivating a sense of security awareness, and arranging for continuous education.
- Inspire innovation and deliver quality at speed across the platform and execute these to success through diligent planning, attention to detail, effective delegation, efficient decision making, and individual/team accountability.
- Communicate with potential (internal) customers to understand their cybersecurity needs and challenges.
- Scope and assess customer requirements to provide tailored security solutions.
- Develop and present proposals based on the customer's needs and cybersecurity challenges.
- Handle consulting engagements, providing expert advice and solutions to internal customers.

Mandatory qualifications
- 5+ years of professional experience in the information security field.
- Basic understanding of security architecture frameworks, threat modeling, security patterns, and security best practices in SDLC.
- Excellent consultation, problem-solving, communication, and interpersonal skills to help build trust and consensus.
- Strong teamwork capability in a diverse team environment.

Desired qualifications
- Past work as a consultant at a highly technical information security consultancy is a plus.
- Advanced IT security certifications (with good standing) e.g., CISA, CISSP may be advantageous.
- Experience overseeing remediation of vulnerabilities, defining security requirements, and a proven track record of working with infrastructure and development teams to build secure solutions.
- Experience in Web/Mobile Penetration Testing and/or Vulnerability Assessment.
- Experience with major commercial cloud environments and/or working with container technologies.
- Experience in working with SIEM and/or participated in Incident Response projects.
- Incident response experience, including handling and managing security incidents.

Languages
- English - fluent

BENEFITS- Annual bonus- Stock-option- Flexible working hours- Hybrid mode of work- Lunch vouchers- Coupons for Rakuten Platform (20 euros per month)- Access to learning and career development resources- Access to certifications and tech conferences- Being part of multicultural teams with more than 20 nationalities- Extra time off during your Birthday and Company anniversar