GRC & Cybersecurity Lead
想定年収
応相談
勤務地
東京都
リモート
リモート可
掲載中・最終確認 2026/5/26(1週間前)
仕事内容
Paidyのガバナンス・リスク・コンプライアンス(GRC)とサイバーセキュリティを統括するリード。SOC2/ISO27001/NIST CSF/APPI/割賦販売法等への準拠と監査対応、ITリスク管理、GRCツール(RSA Archer/Vanta)の高度化と自動化、インシデント対応、親会社(PayPal)セキュリティチームとの連携を担う。
求めるスキル・経験
必須
7+ years of experience in IT risk management, GRC, information security, or IT audit
Demonstrated experience with SOC 2, SOC 1, ISO 27001, NIST CSF, and Japanese regulatory requirements (APPI, Installment Sales Act)
Hands-on experience with GRC tools (RSA Archer and/or Vanta strongly preferred)
Strong IT knowledge across Cloud (AWS required), Application, Software, Hardware, and Networking
Demonstrated ability to build automation using scripting languages, workflow tools (e.g., n8n), or AI
Ability to lead and influence cross-functional teams without direct authority
Business-level Japanese and English required
歓迎
CISSP / CRISC / CISA / CISM
Experience working within a corporate group or parent-subsidiary security structure
Familiarity with the Japanese financial services regulatory environment