Department :

This role will be a member of the global Information System Security Team and will contribute on IT Security governance covering our Asian perimeter.

The function will focus on following IT projects from the scoping phase to the deployment, managing risk analysis and giving security advice, along with audit management including supporting permanent control and penetration testing management. This position will also support IT Security in Asia and will be engaged in regional and global IT projects and audit.

As regional IT Security Officer, this role will report locally to the Japan CISO and globally to a member of Amundi’s CISO team and will be a member of the global Information System Security Team.

Content of the jobs :

The key area of responsibilities include:

• Perform Risk Analysis and support projects from a security point of view (assist Project Managers using an internal Risk Analysis methodology, assist with technical architecture advice to ensure the right level of security, attend to project committee)
• Contribute on Asian Permanent Control plan (perform level 1 and 2 controls for which they are responsible, ensure the consolidation and the consistency of the results and report them to the CISO). With control activities, the IT Security Officer ensures the quality of implementation of the IS security framework and conservation of the highest security level.
• Coordinate Penetration test (scoping, deployment of prerequisites, feedback meetings, defining action plans and follow-ups with the IT manager)
• Conduct security review and assessment of outsource vendors (Third Party Management)
• Handle authority imposed Cyber exercises
• Answer RFP & Due diligence requests related to Cyber Security
• Provide regional IT Security reporting and contribute to global reporting
• Assist in regional IT Security committee with Asian COO
• Contribute  to regional and global IT Security Projects

Master degree

A first experience in IT Security is mandatory

Good communication skill, Willing to learn, Rigorous

Good global knowledge on IT (network, systems, …)
Cybersecurity skills (encryption, risk management, control, …)

Ability to support IT teams on Information Security subjects
General IT technical skills (knowledge of networking protocols, Windows and Unix Operating Systems, …)