【Department Overview】
In Rakuten Group, the security and safety of the Internet services are guaranteed by the Cyber Security Defense Department (CSDD). CSDD covers all aspects of the System Development Life Cycle (SDLC) and operation security for all the services developed inside Rakuten Group.
【Key responsibilities】
- Threat Intelligence collection from OSINT (open-source intelligence), proprietary tools, or commercial systems.
- Threat Intelligence analysis and curation, to produce an accurate, timely, and relevant report for internal customers periodically.
- Handle TI inquiries from internal customers and conduct investigations using various in-house or 3rd party TI platforms or tools.
- Tracking of attack campaigns from cybercrime, ransomware, hacktivism and espionage adversary groups using all sources.
【Mandatory qualifications】
- Excellent information organization, critical thinking, and TI report technical writing skills in English.
- General reading proficiency in at least one of Chinese, Korean, Russian, or Japanese.
- Cybersecurity fundamentals: understanding of type of threats and vulnerabilities, network security, endpoint hacking and information operations.
- Strong ownership and sense of responsibility. Execute assigned tasks with little supervision, but know when to ask for help
【Desired qualifications】
Medium Level:
- 3+ years of work experience in IT engineering related fields: system engineer, IT consultants, information security or cybersecurity
- Experience/Knowledge of CSIRT, DFIR, SOC workflow, cyber alert triage, malware, APT espionage groups, or MITRE ATT&CK frameworks
- Passionate about learning new attack TTP (tactics, techniques, and procedures) and tracking malicious actors’ activities.
- Ability to understand cultural differences, international, nation and local regulation, and collaborate with other departments or subsidiaries.
Senior Level:
- 5+ years of work experience in Cyber Security / MSSP / Threat Intelligence fields: SOC Analyst, TI Analyst, DFIR Analyst.
- Independent research and tracking capability on APT campaign, eCrime adversary groups against enterprise CSIRT constituency.
- Familiar with multiple external TI tools such as VirusTotal Pro, DomainTools, passive DNS, urlscan pro, Maltego, or other TI platforms.
- Mentorship and development for junior members; hosting training for group subsidiary CSIRT customers.
- Good social networking skills or a prominent presence in TI or Security Communities.
• 2022幸福企業-金獎 • 2021幸福企業-金獎 • 2020HR Asia Awards • 壽星最大,生日當月爽放生日假一天 • 到職第一年就享有8天特休假 (依到職比例計算,第2年起11天,當年度休不完還可以延到隔年底) • 自選式福利補助金每年一萬元,讓你彈性選擇使用樂天的服務 • 員工認股計畫,陪著樂天一起成長 • 完善的公司內、外教育訓練課程及海外受訓機會 • 參與跨國專案或國外研討會,培養國際化歷練 • 全球樂天賞機制,獲獎送你免費遊日本 • 年度員工健康檢查,您的健康是樂天最大的幸福 • 飲料/零食販賣機,再忙也會陪你喝杯咖啡 • 辦公室樂活舒壓按摩服務 • 全額補助團保,讓您無後顧之憂
