Build core security controls to protect a dynamic AI-centric work environment, focusing on securing internal AI agent platforms and solutions in collaboration with implementers.
Design, deploy, and operate secure foundations that meet stringent security requirements while maintaining minimal user friction, working with the AI Taskforce, engineering, and IT teams.
Lead the implementation of zero-trust architecture across Mercari’s IT and AI ecosystems to significantly enhance security posture.
Apply a security-as-code mindset by automating and optimizing security solutions to achieve secure-by-default enterprise IT infrastructure; promote automation across security processes.
Develop and implement security frameworks for enterprise IT and AI solutions; conduct risk assessments and threat modeling; design technical security solutions and mitigation strategies.
Automate manual security tasks and optimize IAM, endpoint security, AI agent platforms, and DLP configurations.
Establish and maintain security standards for AI solutions and infrastructure; collaborate with engineering and IT teams to protect against evolving threats.
技術スタック
必須スキル
Bachelor’s degree or equivalent practical experience in core cybersecurity domains related to IT.
Understanding and ability to explain core security concepts (CIA triad, least privilege, authentication vs authorization).
Programming experience in Go, Python, or JavaScript.
Familiarity with Git, CI/CD tools, Infrastructure as Code (IaC), and shell scripting.
Basic understanding of core AI security principles (OWASP AI/LLM Top Ten).
Proficiency using AI tools for productivity, dashboarding, and reporting.
Proficiency in modern Identity and Access Management (IAM) systems (e.g., Okta, Microsoft Entra ID).
Strong teamwork and collaboration skills.
English: Independent (CEFR-B2)
歓迎スキル(該当する場合)
Experience as a security architect or IT architect.
Deep understanding of AI agent mechanisms, vulnerabilities, and attack methodologies.
Experience securing AI agent frameworks and managing Non-Human Identity (NHI) tools.
Cloud security expertise across GCP, AWS, and Azure; multi-cloud networks and cloud-agnostic design.
Experience building and improving IT security solutions (IAM, MDM, EDR, DLP, etc.).
Familiarity with security frameworks such as NIST AI RMF, Google Secure AI Framework, and OWASP Top 10 for Agentic Applications.
Analytical and problem-solving skills; ability to present security threats and mitigations clearly.
Japanese: Bonus to have
キャリア成長観点
AI security, zero-trust, and security-as-codeを駆使した実務経験を深め、エンタープライズ規模のセキュリティ設計リーダーへ成長できる機会。
AI Taskforce、エンジニアリング、IT部門と横断する協働を通じて、組織のセキュリティ文化や標準の策定に影響を与えるポジションを形成。
NIST AI RMFやGoogle Secure AI Frameworkなどの最先端フレームワークを活用し、クラウド(多Cloud含む)セキュリティの専門性を高める機会。