<p><strong>Company Profile</strong></p><p>A leading global internet services organization offering a broad range of solutions across e-commerce, fintech, digital content, and communications is looking for a Security professional.</p><p><strong> </strong></p><p><strong>The Role</strong></p><ul><li>This position will primarily focus on providing comprehensive support for vulnerability remediation and audits, ensuring effective and efficient resolution of vulnerabilities reported by scanners during DevSecOps.</li><li>Perform application penetration testing to discover vulnerabilities in web applications and APIs, following industry standards such as OWASP using Burp Suite.</li><li>Conduct network scans using tools such as Nmap and Nessus.</li><li>Create vulnerability tickets to report findings during security testing and share them during debriefing meetings.</li><li>Conduct kick-off meetings and connection checks to ensure all required test information is sufficient before commencing security testing.</li><li>Provide support for remediating vulnerabilities identified through DevSecOps scanners (e.g., SAST, DAST, SCA).</li><li>Assist development teams in understanding vulnerability reports and recommending appropriate remediation strategies.</li><li>Review security remediation actions or justification evidence provided by development teams to ensure effectiveness and compliance with security policies.</li><li>Manage vulnerability remediation status on internal ticketing systems, ensuring timely updates, proper tracking, and escalation of overdue items.</li><li>Act as a primary point of contact for development teams regarding vulnerability remediation efforts, and proactively communicate to ensure timely resolution.</li><li>Collaborate with security engineers and developers to continuously improve the overall vulnerability management process.</li></ul><p> </p><p><strong>Your Skills </strong></p><ul><li>A passionate security professional with excellent communication skills and strong attention to detail.</li><li>Hands-on experience with web application and API penetration testing (OWASP methodology, Burp Suite).</li><li>Familiarity with network scanning tools such as Nmap and Nessus.</li><li>Experience working with DevSecOps scanners including SAST, DAST, and SCA tools.</li><li>Ability to understand, explain, and track vulnerabilities across differing technical and non-technical audiences.</li><li>Experience in vulnerability management, including follow-up, re-verification, and escalation processes.</li></ul><p><strong> </strong></p><p><strong>Key Highlights of the Role </strong></p><ul><li>Play a key role in securing a broad and diverse technology ecosystem spanning e-commerce, mobile, and fintech platforms.</li><li>Work at the intersection of security testing and DevSecOps, driving efficient vulnerability remediation across the organization.</li><li>Collaborate closely with development teams and security engineers to shape and improve security standards and processes.</li><li>Join a globally recognized organization with a strong mission to proactively identify and mitigate cybersecurity risks at scale.</li></ul><p> </p><p><strong>Location </strong></p><p>Tokyo</p><p><strong> </strong></p><p><strong>Salary</strong></p><p>5 - 7 million yen</p><p><strong> </strong></p><p>Reference Number: 06940-0013413358</p><p> </p><p> </p><p><em>By clicking 'apply', you are deemed to have agreed to Robert Half Japan Privacy Notice (</em><a href="https://www.roberthalf.com/jp/en/privacy"><em>https://www.roberthalf.com/jp/en/privacy</em></a><em>). Please ensure that your application documents do not include sensitive personal data such as race, beliefs, medical history, criminal record, or other information irrelevant to hiring process such as spouse or dependents. All information must be accurate and truthful, and any included hyperlinks must be safe and secure.</em></p><img src="https://counter.adcourier.com/YXJ5YS5wYW11bmdrYXMuOTA1NTUuMTA4OThAcmhpanAuYXBsaXRyYWsuY29t.gif">