Purpose of Role:
This position is located at our new Rakuten Blockchain Lab in Belfast. We are looking for an experienced candidate with hands-on experience in information security. You will have experience in vulnerability assessment methodologies; secure coding practices and experience designing security controls.
This is an exciting opportunity to be at the core of delivering blockchain based solutions and integration services that will enable the transformation of Rakuten businesses. You will work in small agile teams as a security expert role for individual Rakuten companies as well as common platforms and services to be used across the organisation. In this role, you will be also responsible for providing support as a trusted advisor to multiple companies in order to coordinate and implement security measures across EU as a regional security team expert. This role will involve regular travel to our European offices.
Responsibilities:
- Design and implement security solutions in accordance with corporate information security policy, regulatory requirements and security best practices.
- Provide architectural and implementation guidance to ensure developers follow security best practices in the project.
- Identify emerging vulnerabilities, evaluate their risks and provide mitigation strategies.
- Design and implement SDL programs across multiple companies.
- Develop and deliver security training for employees and developers.
- Perform security design review and security code review.
- Conduct network and application level vulnerability assessments and penetration testing.
- Develop automated tools and techniques to minimize manual tasks.
Qualifications:
- Degree in Computer Science or equivalent 5+ years’ hands-on experience in information security.
- 2+ years of vulnerability assessment and penetration testing experience.
- Strong understanding of enterprise network and application level security issues.
- Solid understating of one or more of the following programing languages Python, PHP, Perl, Ruby, C/C++, C#, Java.
- Experience and knowledge in security design review and security code review.
- Working knowledge of the following technologies: micro-service based architectures, automated deployment pipelines using containers (e.g. Docker) & Container Orchestration (e.g. Kubernetes)
- Good technical writing, documentation, and communication skills.
- Self-motivated, positive attitude and a team player.
Preferred Qualifications:
- Experience with application security component development
- Familiarity with SAST and DAST tools.
- Experience and knowledge in incident response and reverse engineering.
- Experience and knowledge in enterprise infrastructure management.
- Experience of designing and implementing SDL program.
- Proficient in English
What We Offer:
- Interesting and challenging fast paced environment.
- A chance to shape and build the business and inspiration to make a difference.
- Open and respectful multicultural environment.
- Professional, passionate, ambitious, but friendly team.
- Possibility for professional growth and international assignments.
Ideal Candidate:
- Innovative and flexible people full of energy.
- Friendly team player with a professional mindset.
- Those who can think for themselves and take action.
- Willing to work in a dynamic, multicultural and global environment where multilingual skills are a big asset.
- Ambitious to grow as an individual within the company.
- Passionate about working in a global company which wants to make a difference by empowering society.
