Location Shanghai
Salary 1000000-1500000CNY
Job functions
Job number 10458

Company overview

Global internet company

Job description

Key Responsibilities:
• Conduct data breach and security incident investigations including compromise assessment
• Assess threats and technologies effecting security vulnerabilities and recent internet threats
• Perform malware analysis and reverse engineering
• Defend systems against unauthorized access, modification and/or destruction
• Liaison with other cyber threat analysis entities
• Identify abnormalities and report violations
• Oversee and monitor routine security administration
• Apply expertise in both host and network analysis to ascertain the impact of an attack and develop threat trends and mitigation techniques and countermeasures that can prevent future attacks.
• Design and conduct security audits to ensure operational security
• Respond immediately to security incidents and provide post-incident analysis
• Provide technical advice to colleagues
Basic Qualifications:
• 10+ years of experience in information security with at least 5+ years in security incident response
• Host based security investigation (Windows, Linux, Network/Security appliances)
• Operating SIEM and CTI (Cyber Threat Intelligence) Solutions and developing use cases
• Knowledge and experiences of EDR (Endpoint Detection and Response) system and tools such as Carbon Black, CrowdStrike, EnCase-EDR, FTK, Volatility memory forensic, etc.
• Knowledge of application security such as Web application, Mobile app traffics, etc.
• Ability to be flexible and work during non-business hours (to support a global team in different time zones)
Preferred Qualifications:
• Language: Korean and English
• Certified in one or more of the following: CISSP, CISA, CCNA, CISM, SANS GIAC
• Working knowledge of the intelligence lifecycle and current cyber threat landscape
• Understanding of major threats and threat actors and their relevance to the eCommerce industry
• Knowledge of Cloud service practices and principles (e.g AWS, Azure)
• Proficient in one or more computer programming languages
• Development experience in Automation and Script (Linux shell, Python, Perl, Powershell)
• Experience in developing using Log Search (ELK, Splunk), TSDB(Time series DB)
• Knowledge of DevOps and Agile practices and principles
• Knowledge of open security testing standards and projects, including OWASP and ATT&CK

Additional information

Need Help?

Feel free to connect with us

Job application

You are about to apply to the following job: Principle Security Engineer-CERT . Applying a job is not a commitment, it gives us the authorization to show your CV to the employer

Upload from Computer

Full Name
Company and title


i18n: If This Is Not You i18n: Go To Linkedin i18n: And Log In With Your Credentials.

Application confirmed!
Thank you for applying! We shall be in touch with you.

Jobs you might be interested in