Security Engineer, Payment Platform Section - Incentive Platform Department (INPD)

Job Description:

Department Overview

In the Incentive Platform Department, our primary role is to provide a common platform foundation for the Rakuten Group's payment and points systems. We pride ourselves in designing, building, and operating robust systems that are secure, stable, and highly reliable.

Our mission resonates with the drive to enhance user experience and to foster an integrated digital ecosystem within the Rakuten Group. We continuously aspire to achieve operational excellence, while working to navigate and shape the ever-evolving landscape of digital transactions.

The attractiveness of our department lies in the opportunity it provides for professionals to work at the heart of the Rakuten Group's transactional framework. Our team members get a chance to contribute to the delivery of systems that millions of customers trust and rely upon daily. This enables not only career growth, but also the satisfaction of making a significant impact on people's everyday lives through our innovative technology solutions.

Our Payment Platform Section is committed to providing a robust, shared payment platform infrastructure for the Rakuten Group. This vital role sees us operating entirely on AWS, where we house all payment systems.

Our mission is to design, construct, and operate systems that prioritize reliability, stability, security, and robustness. We take pride in managing a system utilized by tens of millions of Rakuten users.

Given the sensitive nature of our operations, handling credit card information, we are required to comply with the Payment Card Industry Data Security Standard (PCI/DSS). This also involves preparing and dealing with necessary audits.

What makes this role truly attractive is the opportunity to engage with cutting-edge technologies and maintain a system crucial to Rakuten's vast user base. You will be part of a team responsible for sustaining secure, efficient, and reliable payment systems, contributing to a seamless experience for millions of users around the globe. Furthermore, the exposure to PCI/DSS compliance and audit processes will further enrich your knowledge and skills in IT security and data protection. Join us in setting a global standard for secure, efficient, and user-friendly payment platforms.

　

Position:

Why We Hire

Team expansion due to the increase demand of the work and the scope expansion. Needless to say, we need to provide a secure environment but, at the same time, efficient monitoring is also needed to support providing secure environment.

　

Position Details

We build scalable platforms that powers the Rakuten Ecosystem worldwide, and we play the central role of technical innovation in Rakuten. We provide various payment services, and is seeking an individual who can leverage to expand and spread our services together.

We are seeking an experienced Security Engineer challenged to various tasks aspect of the Information Security and Compliance field.

Mandatory Qualifications:

- 3+ years of professional experience in information security field.

- Understanding of the core concepts of network, web/mobile application protocols and its security issues.

- Experience in Web/Mobile Penetration Testing and/or Vulnerability Assessment

- Detailed understanding & experience of Linux operating systems.

- Familiarity with at least one scripting language (shell, Python, Perl)

- Basic knowledge and experience of PCI/DSS and ISMS compliance.

- Familiarity with Amazon Web Services

- Excellent problem-solving skills.

- Strong team work capability in a diverse team environment.

- Strong ownership and sense of responsibility

　

　

Desired Qualifications:

- Basic understanding of the security architecture framework, threat modeling, security pattern and security best practices in SDLC.

- Experience in managing and supporting security related hands-on operations.

- Basic knowledge of privacy related field with GDPR and CCPA

- Holder of any security related certifications, ex: Security +, CEH, CISSP, CISM may be advantageous.

- Experience analyzing issues holistically, from the application tier through security perspective, down to the infrastructure

- Experience in working with SIEM and/or participated in Security Incident Response projects

- Passion for learning and using new technologies.

　

　

Other Information:

Additional information on Location

Rakuten Crimson House

　

#engineer  #securityengineer

Languages:

English (Overall - 3 - Advanced)