Credit Agricole Life Insurance Japan (“CALJ”), established in 2007, has 2 business lines: creditor protection insurance business (“GCL”) and saving business, to answer the needs of clients through a diversified distribution network with more than 40 banking partners in Japan.
CALJ is a 100% subsidiary of Credit Agricole Assurances (CAA), the number 1 insurance company in France and the number 1 bancassurance player in Europe.
This position is a new position to increase resources dedicated to IT security, as requirements from CA Group and from regulators in Europe and in Japan are increasing. High level of interaction with CA Group companies in Japan (such as CA CIB) and with parent company (CAA) in France is expected.
Department :
Data Governance & System Risk / IT Security Department :
1. Data governance and control
2. Control of system risks (Research, Analysis and Planning related to Group requirement)
3. Management of IT security (Research, Analysis and Planning related to Group
requirement)
4. Management of BCP (Research, Analysis and Planning related to Group requirement)
5. Other matters related to Data governance
Job description :
- Schedule/Task management related to Data Governance & System risks / IT Security (IAM, access management, applications profiles, security incidents,
vulnerability, pentest, back-up, obsolescence, encryption, support to IT, support to
business…).
・ Project-related work (local or from Head Office), related to security, risks, data and
aligned with CA Group policies, French, European and local regulations
・ Operational risk management (risk analysis, assessment, mitigation, indicators,…)
covering on-premise and cloud (SOC reports)
・ Appropriate management of Outsourcing governance. Understand the regulations
and adapt the entity outsourcing management in order to respect them in terms of
security, risk, quality, resilience, BCP, assessment….
・ IT Personal information management: data management, data quality reporting,
application and changes of Group rules and regulations
・ Understanding of architecture and infrastructure (technical and functional flows)
including on premise and cloud computing management
・ Provides Data Governance & System risks / IT Security training/awareness to all
staff
・ Technology watch on cyber threat, AI, encryption, etc…
・ Documentation creation, update, translation (sometimes)
・ Group security and standards review and adaptation to local rules. Application of
FSA guidelines
・ Audit recommendations closing (internal, Group, FSA,…)
・ Collaboration with other departments, CAA, CAAI and CACIB Japan on different
topics
・ Meeting preparation (Risk committees, Security workshops, IT meetings,…),
meeting lead or active participation with CxO level (Local and Head Office) on
different topics
・ BCP preparation and participation
