Security Engineer | Global Manufacturing Business

【About the Company】

【Unleashing the potential of the manufacturing industry】

The company will create a society in which all people involved in manufacturing can maximize their inherent power.
To achieve this goal, they will create a "new mechanism" that will change the common sense of industry.

Busy with estimating and administrative tasks, lacking sales skills, and lacking information and networks.
By untying these shackles, the potential of each company can be unleashed.
From small factories in town, to large manufacturers with a long history, to start-ups in their early years, all manufacturing companies will shine by leveraging their strengths to create new value.
They will continue to take on the challenge to open up such a future.

◆Flat organization
Regardless of your position, team, previous experience, gender, age, etc., you can express your opinions and immediately incorporate what is good.
◆Excellent members
The team is made up of members who have been active in leading companies. You will have an environment where there is a growth and stimulation every day.
◆Engineer Driven
Since they are operating in a field where there are no precedents yet in the world, technical skills are extremely important, and engineers play a leading role.

--------------------------------------
◎A service that uses automated quotation technology to connect custom-orderers with processing companies.

The manufacturing industry is Japan's key industry, boasting a gross domestic product of 180 trillion yen.
In fact, about 120 trillion yen of that is accounted for by the cost of parts procurement.
Despite this large percentage, there has been no major innovation in the procurement field for over 100 years.
In particular, parts procurement for the high-mix low-volume production industry, which accounts for about one-third of the total, has been facing various social issues on both the ordering and receiving sides, such as the time and effort required for ordering and quotation, procurement costs, and the high deficit ratio on the production side.

They believed that by solving these problems, manufacturers not only in Japan but also around the world would be able to focus on higher value-added work and maximize the potential of the manufacturing industry as a whole.
So, the company developed the world's first service that uses automated quotation technology to connect custom-orderers with processing companies.

【Job Description】 

【"Unleashing the potential of the manufacturing industry" through improved security】
No matter how valuable an application is developed, if there are security problems, it will pose various risks and affect future business. Improving the security of people and information is essential for the company to promote its business while earning the trust of customers and other stakeholders.

Ensuring proper information management, recording security events for correct incident response, and continuously improving the security of people and applications will support the foundation of the business.
In order to achieve this goal, we need to utilize technology mainly in areas that have not yet been digitized, so that all manufacturing companies, whether they are small town factories, large-scale manufacturers with a long history, or start-up companies just starting out, can utilize their strengths to shine and create a lot of new value. Why don't you use your technology to achieve such a future?

【Responsibilities】
The company has multiple systems used by its operations team, customers, and supply partners.
In order to continue to provide value through these systems, it is necessary to ensure that business and stakeholder information is handled properly and that systems are protected from threats.
In addition to a defensive perspective, it is important to collect and record security events so that we can respond appropriately in the event of an incident.
Moreover, to minimize damage, it is also important to continuously perform security checks and to establish a system to be immediately aware of such incidents.

The Security Engineer is broadly involved in security-related requirements, not only from a product perspective, but also in company-wide efforts to improve security.
The Security Engineer is expected to face the risks that grow with the expansion of the company and products, and to promote the enhancement of security throughout the company in cooperation with the team.

The following are examples of your duties.
Actual duties are not limited to these.
Details of work to be performed after employment will be determined based on skill, expertise, experience, and other factors.

Definition of various security requirements
Development, operation, and implementation support related to security measures for products and services handled by Cady
Establishment and lead of security-related organizations such as CSIRT, PSIRT, and SOC, as well as planning of environment and mechanisms for appropriate incident response
Support for implementation and improvement of security checks
Enhancement of DevSecOps
Education on security
Audit of infrastructure security settings and policies ・Collection, analysis, and utilization of threat intelligence

【Working conditions & treatment】

Flextime System

・Saturday/Sunday/National Holiday
・Special Paid Leave
・Congratulations & Condolence Leave)
・Bereavement Leave
・Refresh Leave
・Summer Holiday

・Full Social Insurance
・Commuting Allowance
・Child Allowance
・Medical Checkup
・Training/Self Development Allowance
・Commuting allowance (up to 30,000 yen)
・Vacation (summer vacation, year-end and New Year's vacation, refreshment vacation, bereavement vacation, etc.)
・Subsidies (moving subsidies, child allowances, marriage congratulation money, etc.)
・Medical checkups
・Office medicine
・Office convenience store
・Learning support (book purchase system, language learning support, manufacturing experience, external training support, etc.)
・Company-wide awards
・Club activities
・Engineers can apply for a PC and display with their desired specifications.
※The maximum amount is 400,000 yen, within which you can also purchase accessories for the PC.
※The PC replacement cycle should be at least two years.

【Required】
Practical experience as a security engineer
Basic knowledge of web application security
Basic knowledge of Linux
Basic knowledge of container technologies such as Docker
Basic knowledge of public cloud
Team development skills using Git/GitHub, etc.

【Preferred】
Experience working in a security team
Strategic Requirements
Develop security strategies and conceptualize specific countermeasures in the overall company-wide [cyber|information] security domain.
Experience working with Information Systems, Platform Groups, and development teams to implement countermeasures
Understanding of Zero Trust Architecture and implementation activities based on the organization's actual situation.
Ops
Experience in DevSecOps implementation and operation
Experience developing and operating web services
Experience developing in languages such as C(++), Rust, TypeScript, Python, Go

【Ideal Applicants】
Empathy with the company's mission, values and culture
Interested in international relations, news, laws, regulations, crimes, products, technologies, etc. in the security field and able to gather information on a daily basis and sublimate the information gained and apply it to their work.
Have the attitude to lead the security of the entire company.
Have an eagerness to learn and take on new technologies and challenges
Value teamwork and proactively share thoughts and ideas
Able to communicate with various stakeholders to reach consensus on security measures
Willingness to tackle security issues while understanding the Platform Group's action guidelines (since the initial affiliation is assumed to be with the Platform Group).