Account Security Officer / セキュリティエンジニア

【仕事内容】

■各業界大手企業のお客様向けセキュリティ運用業務 (CSIRT運用支援)

リーダーのもと、セキュリティサポートエンジニアとして業務を行い、セキュリティの幅広い知識と経験を積んでいただきます。

ネットワーク機器、システム、セキュリティツールから送られてくるアラートやJPCERT等から送られてくる脆弱性情報を受け取り、優先度の高いものから順に対応を行います。

日々進化する攻撃手法を肌で感じ、効果ある対策やソリューションを学べる環境です。

また、お客様との定期的な報告会の資料作成補助と同席をすることで、お客様の生の声を聴くことができるため、コミュニケーションスキルも鍛えることができます。

経験豊富なセキュリティ専門家にいつでも聞ける・頼れる職場で、一緒に働いてみま

せんか。

【勤務地】神奈川県及び東京都内

Hewlett Packard Enterprise is the world’s largest provider of information technology infrastructure, software, services, and solutions to individuals and organizations of all sizes. We bring together a portfolio to serve more than 1 billion customers in over 170 countries on six continents. We invent, engineer, and deliver technology solutions that drive business value, create social value, and improve the lives of our clients.

Information security is an integral part of HPE’s corporate culture and is one of the fastest growing service capabilities that we offer to our clients globally and in region.

As Account Security Officer, you will be accountable for all security-related compliance and delivery for the customers assigned. In a typical engagement, you operate as a trusted advisor in the organization, working with senior management and focusing specifically on security environment in relation to client business objectives. The ASO helps understand operational issues and plans next steps from an information security viewpoint.

This requires the ability to interact and influence at a managerial level within client organizations such as Information Governance and IT Security leads. You will be able to demonstrate industry expertise and understanding of the security governance and compliance.

Primary Responsibilities:

  • Compliance and operational focused
  • Lead Security operational governance activities
  • Dedicated or Shared (Industry)
  • Multi-3rd party services
  • Seek to identify additional HP ES/Enterprise Security Services Information Risk Management (IRM) revenue for the HP account.
  • Ensuring delivery excellence in IRM operations (Ensuring avoidance of non-performance / non-compliance contractual penalties).
  • Relationship management with HP ESS suppliers to client.
  • Maintain an account security plan for the selected account(s)
  • Manage and reports security incidents
  • Ensure Audit preparation, facilitation and remediation
  • Manage Security Risk and Exception to standards management
  • Ensure knowledge and implementation of security fundamentals, policies and standards (regulatory and contractual)
  • Escalate and resolve Security Issues
  • Coordinate delivery of Security Metrics and Reporting in support of contractual commitment

必要な経験:

  • リスク管理、監査、セキュリティ、またはテクニカルデリバリーの3年以上の経験
  • コンピュータサイエンス、コンピュータ研究、情報セキュリティの学士または修士号 (または同等レベルの学歴)
  • セキュリティと監査の規制に関する知識
  • 監査およびコンプライアンスプログラムへの関与
  • 優れたコミュニケーションスキル
  • 多国籍および仮想環境で効果的に働く能力
  • 自発的かつ判断能力や統制力
  • セキュリティおよびコンプライアンス要件の実施に関してデリバリ担当者への助言

必須スキル:(部分的でも応相談)

  • セキュリティコンサルタント、アーキテクト、またはエンジニアとしての経験
  • 情報ガバナンスとコンプライアンスに関するセキュリティ管理の経験
  • アシュアランスやリスクマネジメントの十分な理解と実務経験
  • セキュリティプロセスと規格、特にISO27001認証の経験
  • セキュリティ監査と認定プロセスの知識
  • 最新のセキュリティ技術や情報に適応する能力

優先スキル:

  • 5年以上の経験
  • CISSP、CISM 、CISAまたはCRISC 資格保持者
  • 英語力あればなお可

The successful candidate will have:

Education and Experience Required:

  • At least 3 years’ experience working in a risk management, audit, security or technical delivery role
  • Bachelor or master degree in Computer Science, Computer Studies, Information Security (or equivalent combination of education and experience)
  • Knowledge of the security and auditing regulations
  • Exposure to audit and compliance programs
  • Excellent and effective communication skills
  • Ability to work effectively in diverse, multi-national and virtual environments
  • Self-motivated and tenacious
  • Demonstrate sound judgment and integrity
  • Ability to influence Delivery personnel in the execution of security and compliance requirements

Preferred skills

  • Experience in ES outsourcing business or 5 years in industry vertical
  • CISSP certification, CISM/CISA or CRISC a plus
  • Fluent in English

The following experience is essential:

  • Experience as a Security consultant, architect and/or engineer;
  • Experience in working with security management including information governance and compliance’
  • Good understanding of Assurance Practices and Risk Management, with hands on experience;
  • Experience of security processes and standards, in particular ISO27001;
  • Knowledge of security audit and accreditation processes;
  • Ability to adapt to new security regimes.

Meet Some of Hewlett Packard Enterprise's Employees

Jeremy H.

Business Compensation Manager

Jeremy ensures all HPE employees are properly compensated for their contributions to the company, helping to retain top talent and market leaders for the organization.

Cat G.

Research Scientist

Cat works in the HPE lab, exploring and designing new devices that become the building blocks for the computation creations of the future.


Back to top