Job Description



Cyber Security Engineer (Mobile)



Reports to:



Tokyo, Japan or WFAA (Work From Anywhere Anytime)

Job Type:




The candidates are required to be legally permitted to work in Japan. Paidy would not be able to sponsor the work permits for now, until immigration restrictions from Japanese government are softened. 




About Paidy Inc.

Paidy was founded with the mission to create a world of “We remove the barriers, embrace simplicity”, offering its real-time monthly consolidated credit service all across Japan.

Paidy started Japan’s first instant post-pay credit service for ecommerce consumers in October 2014. Paidy requires no pre-registration or credit card to use; Paidy consumers purchase products online using only a mobile phone number and email address (verification is established through a four-digit code via SMS or voice pin-code) and settle a single monthly bill for all their purchases, either at a convenience store, by bank transfer or auto debit. Paidy also supports multi-pay installments and subscriptions. There are currently over 4,000,000 Paidy accounts in use (Oct 2020). Paidy has proved a powerful means of persuading first time buyers to transact online. Its proprietary models and machine learning

mean that transactions are underwritten in seconds, with guaranteed payment to merchants.

Paidy increases merchant revenues by reducing incomplete transactions, increasing conversion rates, boosting average order values, and facilitating easy repeat buying.

For more information visit



About the Security Team


Although cyber security is everyone’s responsibility, our security team is primarily responsible for solving some of the most challenging and exciting problems to mitigate cyber threats that are common organization-wide and industry-wide.


As the digital world moves exponentially, we are constantly aligning our cyber security strategy, especially in today’s dynamic environment.  Consequently, Information Security is very important to us and excel to implement the latest cyber resilience and cyber security practices.



Your Duties & Responsibilities



Understands our business and market before thinking about technology and security solutions.


Communicates effortlessly with a culturally diverse team across multiple time zones; resolves conflict professionally and pragmatically.


A self-starter and takes initiative to drive progress while building rapport with internal and external stakeholders.



●     Plan and implement solutions to business challenges, working directly with other engineers and product management on mobile security

●     Develop features, maintain and improve existing SDK/applications to support Paidy products

●     Create security tooling and automation to make teams more efficient

●     Participate in all phases of the Software Development Life Cycle, implementing features and addressing issues

●     Enjoy a wide scope of responsibility and lots of flexibility in selecting the appropriate technical solutions to business challenges and opportunities

●     Own and lead Paidy’s mobile app security strategy.

●     Partner with product owners, developers, QA, and architecture in ensuring that security is embedded throughout the SDLC.

●     Provides guidance to staff on insights in changing security standards

●     Develop strategies to assess 3rd party libraries for mobile

●     Perform dynamic and static scans for all mobile products

●     Active advocate of mobile development platforms (iOS and Android Native) through both internal and external developer communities

●     Remain an active learner in all technologies related to iOS, Android development (Java, Kotlin, Swift, swift migrations, iOS SDK, Xcode, 3rd party libraries, iOS developments, etc.)

●     Perform Peer reviews, Influence and contribute to group discussions and incorporate feedback/communication from the broader team

●     Mentor team and leaders on Mobile Security Strategy. Actively engage with developers/architects/ outside of the local sprint team across various disciplines (Android, iOS, APIs, Web, etc.)

●     Consistently share Secure Mobile Industry best practices and improve processes within and across sprint teams.

●     Identify technical obstacles early and work closely with the team to find creative solutions



Your skills and experience


●     Minimum of 5 years experience with mobile security in finance, ideally in a large multinational environment

●     Minimum of 4 years experience in threat hunting, pentesting, or threat analysis with a focus on mobile applications

●     Experience identifying, investigating, and responding to complex attacks on mobile and API technologies

●     Strong understanding of threat landscape in terms of the tools, tactics, and techniques of threats employing both commodity and custom malware

●     Extensive experience with attack emulation tools

●     Experience in developing attack Tactics, Techniques and Procedures (TTPs) using the MITRE ATT&CK Framework construct

●     Solid understanding of cybersecurity training needs and operations (tools, processes and techniques in cyber)

●     Familiar with Atlassian products, Git, and CI/CD pipelines


Required Education


●     Bachelor’s degree in Computer Science (related field) or equivalent work experience


Required Certifications:


●     GIAC Mobile Device Security Analyst (GMOB) (or ability to acquire within probation period)


Desired Certifications:


●     OSCP

●     CISSP

●     CCSP

●     AWS Certified Security


Direct Report (who reports to this person)




Paidy Value


Candidates must be able to demonstrate affinity with the Paidy core values:


Diversity & Inclusion: Respect all of human beings, focus on our potentials and leverage our differences  


Self-starter: Proactively demonstrate ownership, motivate and reflect ourselves


Customer-driven: Identify solutions based on what customers need


Openness: Be open to feedback and constructively critical


Visionary: See the big picture and make the impossible, possible


Expertise: Be learning animals, be hungry for new things and keep growing


Resilience: No hesitation to be bold, take risks and make mistakes everyday





Apply for this Job

* Required

When autocomplete results are available use up and down arrows to review
+ Add Another Education