• Business Service Delivery,Senior Associate

    AIG (Salida, CO)


    English follows Japanese:

    務目的 Job Purpose

     

    ISO Business Services Delivery のシニア・アソシエイトは、ビジネス部門およびテクノロジー部門と連携し、PoC(概念実証)から将来的に本番環境へ発展する可能性のある取り組みにおいて、適切なセキュリティコントロールが実装されていることを確認します。

     

    た、ソフトウェアセキュリティ管理およびガバナンス、ソフトウェアセキュリティアセスメント、セキュリティアーキテクチャレビューなど、幅広い業務を担当します。

    ポジションは、アプリケーションセキュリティの知識を高めながら、社内のセキュリティ技術の開発・サポートに携わることができる機会です。ビジネスにとって重要なテクノロジープロジェクトの最前線で活躍いただきます。

    な職務内容 Job Responsibilities

    ポジションは、セキュリティレビューの実施・調整、ならびにAIG Japan 全体のセキュリティガバナンスプロセスの統合および改善に関わる各種業務を担当します。

    + 地域情報技術部門と技術的観点でコミュニケーションを取り、定義済みのセキュリティ手続きの理解・実行を支援する

    + 各地域ビジネスユニットにおける IT Security Business Services Delivery を通じて、AIG Japan のサイバーセキュリティ態勢の実装・維持・強化を支援する

    + サイバーセキュリティ関連プロジェクトおよび各種取り組みの推進チームと連携する

    + グローバルの SSA(Software Security Assessment)チームおよびセキュリティアーキテクトと協働し、アプリケーションポートフォリオが基準および再認証サイクルに準拠していることを確認

    + 地域ビジネスユニットやISOチームと連携し、セキュリティ基準の順守・実施を支援するとともに、品質の高いセキュリティ改善ソリューションの定着を推進

    + 多様なデータソースを分析し、重要なセキュリティリスクを可視化するレポートを作成し、対応すべき推奨事項を提示

    + GCDC(Global Cyber Defense Center)からの脅威インテリジェンスを確認し、地域ビジネスユニットにおける対処状況を追跡

    + プロジェクトチームやアプリケーションチームと密に連携し、導入計画や改善計画が十分であることを確認

    + 内部および外部アプリケーションに対するセキュリティアセスメントを支援

    + 情報セキュリティに関する最新のベストプラクティスやトレンドの知識を維持

    な関係者 Key Relationships

     

    Internal Interactions 社内(Within the Organization)

     

    + Japan ISO:Cyber Defense、Vulnerability Management、Governance Resiliency & Engagement(GRE)、Third Party Risk Management、Security Architecture、Security Engineering、IAM

    + Global ISO:Business Service Delivery、GCDC、SSA、SRT

    + Japan Technology Risk & Control

    + Japan Business Unit IT

    + Japanアプリケーション開発・運用チーム

    + Japan/Globalインフラサポートチーム

     

    External Interactions 社外(Outside the Organization)

     

    + エージェンシー代理店(Agency Representatives)

    + 外部ベンダー各社

    めるスキル・経験Required Skills and Experiences

    歴Educational Qualification

    + コンピュータサイエンスまたは関連分野の学士、もしくは同等の実務経験

    学要件Specific Qualifications

    + 日本語:ネイティブレベル

    + 英語:中級(メール、ドキュメント読解、会議での簡単な会話)

    験 Total Experience

    + 金融機関での情報セキュリティ管理領域における実務経験:3年以上

    + 金融機関でのITサポート領域における実務経験:2年以上

    + プロジェクトマネジメントまたは同等の調整業務経験:1年以上

    + 最小限の指示で自立して業務を推進できる自己完結型のワーカー

    + 優れたコミュニケーション能力およびプレゼンテーションスキル(口頭・文書)

    + MS PowerPoint の使用経験があれば尚可

    + サイバーセキュリティ分野におけるスキル向上への意欲

     

    Job Purpose

     

    The ISO Business Services Delivery, Senior Associate would have a variety of functions ranging from working with the business and technology to ensure security controls are implemented for proof of concept initiatives that could evolve into production systems, software security management and governance, software security assessments, and security architecture reviews.

     

    This position will provide you the opportunity to develop and support our internal security technologies while building your application security knowledge. You’ll be on the forefront of business-critical technology projects.

    Job Responsibilities

    Key responsibilities of this position would involve capability of performing and organizing security reviews, as well as performing tasks focused on integration & enhancement of security governance processes throughout AIG Japan.

     

    + Technical mindset that can communicate with the regional information technology business units, helping them to understand and facilitate predefined security procedures.

    + Support projects and other strategic initiatives to implement, maintain, and enhance AIG Japan cybersecurity posture through IT Security Business Services Delivery across the regional business units.

    + Collaborate with delivery teams for cybersecurity projects and initiatives.

    + Work with the global Software Security Assessment (SSA) team and Security Architects to ensure application portfolios adhere to standards and recertification cadence.

    + Partner with the regional business units and ISO teams to ensure security standards are followed, enforced, and solutions delivered to improve security are implemented at a high quality.

    + Use analytics to extract key insights from various data stores and deliver reporting to effectively communicate critical security risks and actionable recommendations.

    + Review threat intelligence feeds from company Global Cyber Defense Center and track remediation progress across regional business units.

    + Work closely with project and application teams to ensure adequacy of deployment and remediation plans

    + Support application security assessments for internal and external applications

    + Maintain broad knowledge of Information Security best practices and trends

     

    Key Relationships

     

    Internal Interactions (Within the Organization)

     

    + Japan ISO - Cyber Defense, Vulnerability Management, Governance Resiliency and Engagement (GRE), Third Party Relationship Management, Security Architecture, Security Engineering, Identity and Access Management

    + Global ISO – Business Service Delivery, Global Cyber Defense Center (GCDC), Software Security Assessment Team (SSA), Security Remediation Team (SRT)

    + Japan Technology Risk and Controls

    + Japan Business Unit IT Representatives

    + Japan Application Development and Support Teams

    + Japan/Global Technology Infrastructure Support Teams

    + Infrastructure Support Teams

     

    External Interactions (Outside the Organization)

     

    + Agency Representatives

    + External Vendors

     

    Required Skills and Experiences

    Educational Qualification

    + Bachelor’s degree in Computer Science or equivalent work experience

    Specific Qualifications

    + Language proficiency in Japanese at Native level. Intermediate level English (email communication and reading English materials, conversations at meetings with Global counterparts)

    Total Experience

    + A minimum of 3+ years’ experience in Information security management areas in a financial institution.

    + A minimum of 2+ years’ experience in Information technology support areas in a financial institution.

    + A minimum of 1+ years’ experience in project management or equivalent coordination role in a financial institution.

    + Detail oriented self-starter who can work independently with minimal supervision.

    + Strong communication and presentation skills, both verbal and written; MS PowerPoint a plus.

    + Commitment to advancing skills in the cybersecurity field.

     

    At AIG, we value in-person collaboration as a vital part of our culture, which is why we ask our team members to be primarily in the office. This approach helps us work together effectively and create a supportive, connected environment for our team and clients alike.

     

    Enjoy benefits that take care of what matters

     

    At AIG, our people are our greatest asset. We know how important it is to protect and invest in what’s most important to you. That is why we created our Total Rewards Program, a comprehensive benefits package that extends beyond time spent at work to offer benefits focused on your health, wellbeing and financial security—as well as your professional development—to bring peace of mind to you and your family.

     

    Reimagining insurance to make a bigger difference to the world

     

    American International Group, Inc. (AIG) is a global leader in commercial and personal insurance solutions; we are one of the world’s most far-reaching property casualty networks. It is an exciting time to join us — across our operations, we are thinking in new and innovative ways to deliver ever-better solutions to our customers. At AIG, you can go further to support individuals, businesses, and communities, helping them to manage risk, respond to times of uncertainty and discover new potential. We invest in our largest asset, our people, through continuous learning and development, in a culture that celebrates everyone for who they are and what they want to become.

     

    Welcome to a culture of inclusion

     

    We’re committed to creating a culture that truly respects and celebrates each other’s talents, backgrounds, cultures, opinions and goals. We foster a culture of inclusion and belonging through learning, cultural awareness activities and Employee Resource Groups (ERGs). With global chapters, ERGs are a cornerstone for our culture of inclusion. The talent of our people is one of AIG’s greatest assets, and we are honored that our drive for positive change has been recognized by numerous recent awards and accreditations.

     

    AIG provides equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories.

     

    AIG is committed to working with and providing reasonable accommodations to job applicants and employees with disabilities. If you believe you need a reasonable accommodation, please send an email to [email protected] .

    Functional Area:

    IT - Information Technology

     

    AIG Business Partners KK