VIE - Data Governance & System risks Officer H / F

Description du poste

Credit Agricole Life Insurance Japan (CALJ), established in 2007, has 2 business lines : creditor protection insurance business (GCL) and saving business, to answer the needs of clients through a diversified distribution network with more than 40 banking partners in Japan.

CALJ is a 100% subsidiary of Credit Agricole Assurances (CAA), the number 1 insurance company in France and the number 1 bancassurance player in Europe.

This position is a new position to increase resources dedicated to IT security, as requirements from CA Group and from regulators in Europe and in Japan are increasing. High level of interaction with CA Group companies in Japan (such as CA CIB) and with parent company (CAA) in France is expected.

Department :

Data Governance & System Risk / IT Security Department :

1. Data governance and control

2. Control of system risks (Research, Analysis and Planning related to Group requirement)

3. Management of IT security (Research, Analysis and Planning related to Group

requirement)

4. Management of BCP (Research, Analysis and Planning related to Group requirement)

5. Other matters related to Data governance

Job description :

• Schedule / Task management related to Data Governance & System risks / IT Security (IAM, access management, applications profiles, security incidents,

vulnerability, pentest, back-up, obsolescence, encryption, support to IT, support to

business).

Project-related work (local or from Head Office), related to security, risks, data and

aligned with CA Group policies, French, European and local regulations

Operational risk management (risk analysis, assessment, mitigation, indicators,)

covering on-premise and cloud (SOC reports)

Appropriate management of Outsourcing governance. Understand the regulations

and adapt the entity outsourcing management in order to respect them in terms of

security, risk, quality, resilience, BCP, assessment.

IT Personal information management : data management, data quality reporting,

application and changes of Group rules and regulations

Understanding of architecture and infrastructure (technical and functional flows)

including on premise and cloud computing management

Provides Data Governance & System risks / IT Security training / awareness to all

staff

Technology watch on cyber threat, AI, encryption, etc

Documentation creation, update, translation (sometimes)

Group security and standards review and adaptation to local rules. Application of

FSA guidelines

Audit recommendations closing (internal, Group, FSA,)

Collaboration with other departments, CAA, CAAI and CACIB Japan on different

topics

Meeting preparation (Risk committees, Security workshops, IT meetings,),

meeting lead or active participation with CxO level (Local and Head Office) on

different topics

BCP preparation and participation