Team Manager, Platform Security Group - Cyber Security Defense Department (CSDD)

Tokyo, JapanFull-timePosted Jul 10, 2026
Apply

Job Description:

Business Overview

The Technology Management Division (TMD) provides corporate IT, cyber security, and privacy governance to Rakuten Group companies and essential business management for technology organizations, thereby enabling innovation and strengthening its technology foundation. Within TMD, the Information Security Supervisory Department (ISSD) combines proactive cyber defense with strategic information security, privacy, and data governance to protect the company’s global assets and data.

Department Overview

The Cyber Security Defense Department (CSDD) is responsible for safeguarding all Rakuten companies and users from cyber threats, ensuring the security and integrity of Rakuten Group's global internet services. We oversee all aspects of both Secure Development and Security Operations for services developed within the group, with dedicated security teams and operation centers strategically located in key regions worldwide.

Position:

Why We Hire

As our global ecosystem grows, we are scaling our defense capabilities to stay ahead of sophisticated threat actors. We are looking for a leader to transform our platform security from reactive to proactive, ensuring resilience at the speed of our business.

Team Mission Statement

To deliver comprehensive cybersecurity by embedding robust security into the design, development and delivery of Rakuten's products for our customers' peace of mind and protecting Rakuten's production systems for our global ecosystem's operational resilience.

Position Details

We are looking for a strategic and hands-on Manager to lead our platform security team. You will be responsible for the end-to-end security posture of Rakuten’s hybrid infrastructure, spanning both public cloud (AWS/GCP/Azure) and private cloud environments. You will lead a team of security engineers to embed "security-by-design" into our development lifecycle while ensuring proactive monitoring, rapid incident response, and operational stability across our global ecosystem.

Key Responsibilities

- Build and maintain strategies for Rakuten’s platform security, spanning both public cloud (AWS/GCP/Azure) and private cloud environments

- Manage the platform security team and defend Rakuten services and IT systems from advanced cyber attacks and crimes by partnering with our SOC and threat intelligence team

- Oversee the design and implementation of core platform security controls such as security guardrails, identity and access management (IAM), and network security for both public and private cloud environments

- Lead the strategy for continuous monitoring, threat hunting, and rapid incident response to maintain the resilience of production systems

- Contribute to the improvement of cyber resilience in the organization and industry through the development of cyber professionals by defining and tracking key security performance indicators (KPIs) to measure the efficacy of our defense controls and the security health of our hybrid infrastructures.

 

Mandatory Qualifications:

- Over 7 years of professional experience in the information security field

- Proven operational experience in cybersecurity, such as cloud infrastructure security, vulnerability management or security monitoring & response

- At least 3 years of team management experience with service delivery and budget management

- Proven implementation experience of preventative & defensive controls on public cloud or private cloud environments

- Experience working in a distributed, cross-timezone team

- Deep understanding of the core concepts of web/mobile application and vulnerability remediation lifecycle

- Experience in vulnerability management, 0-day response & stakeholder management

- Deep understanding of network and web application protocols

- Strong teamwork capability in a diverse team environment

- Excellent consultation, problem-solving, communication, and interpersonal skills to build trust and consensus with stakeholders

- Strong ownership and sense of responsibility

Desired Qualifications:

- Experience with global, large-scale infrastructures and ecosystems

- Experience with zero-trust architecture and implementing security in a global, distributed network

- Experience in Web service development, implementation/operation at cloud-native system infrastructures

- Experience in a diverse workplace, and working well in a team environment

- Experience in vendor contract management, security strategy planning with multiple IT/security products

- Experience in implementation or support for compliance and security requirements such as PCI DSS or FISC

- Holder of any security-related certifications such as Security+, GIAC, CISSP, OSCP/OSCE, SSCP

#engineer #securityengineer #technologymanagementdiv

Languages:

English (Overall - 3 - Advanced)

Want jobs like this matched to you?

Swoopd scores fresh postings against your résumé so you only see the matches that matter.

Get started free