Job Description:
Business Overview
Rakuten Group has more than 30,000 employees and contingent workers (collectively known as Rakutenians) globally, providing global, cross-border and localized services in more than 30 countries around the world.
Department Overview
The Global IT Strategy Office under the Corporate IT Supervisory Department is uniquely situated to work on strategic corporate IT initiatives that affect all Rakutenians worldwide. We work as a global organization across multiple regions and time zones to deliver solutions to empower Rakutenians through providing business-relevant IT solutions and services, while safeguarding critical information assets of Rakuten Group.
Position:
Why We Hire
We are looking for an all-rounded, self-motivated individual who possesses excellent communication skills, process and data driven, and has considerable IT Compliance experience
Position Details
The Global IT Compliance Specialist ensures that the organization’s IT systems, processes, and policies comply with international regulations, internal standards, and industry frameworks. This role is critical for safeguarding data integrity, mitigating risks, and maintaining trust across global operations.
Key responsibilities
- Develop and Maintain Compliance Frameworks:
Implement global IT compliance programs aligned with standards such as ISO 27001, Privacy laws, JSOX, and regional data protection laws.
- Audit and Risk Management:
facilitate internal audits, risk assessments, and vulnerability analyses to identify compliance gaps. Prepare reports and remediation plans
- Policy and Procedure Oversight:
Create, update, and enforce IT governance policies, security standards, and operational procedures across all regions
- Regulatory Liaison:
Act as the primary contact for external auditors and regulatory bodies, ensuring timely reporting and compliance certifications.
- Incident and Change Management:
Collaborate with Risk, Audit, and Legal teams to manage incidents and ensure compliance during system changes or migrations.
Mandatory Qualifications:
- Bachelor’s or master’s degree in computer science, Information Technology, or related field.
- CISSP, CISA, CISM, CRISC, ISO 27001 knowledge
- 5–8 years in IT compliance, governance, or audit roles, with global exposure, data analysis skills.
- Familiarity with compliance frameworks (ISO, NIST CSF)
- Strong understanding of data retention policies, lifecycle management.
- Knowledge of data protection laws and IT security best practices.
Desired Qualifications:
- Familiarity with Generative AI and Agentic AI.
- Strong communication, analytical thinking, and ability to influence stakeholders.
Other Information:
Additional information on Location
This role will be based in our Tokyo Headquarters and requires it to be on-site at least 4 days a week. (subject to change at any time)
#engineer
#legal #IP #audit
#AI
#technologymanagementdiv