Our client is a global well-known retail company with office in America, Europe and Asia Pacific region

 Lead and supervise managed security services team on day-to-day security operations including incident management and vulnerability management across company;
 Lead penetration testing and forensic analysis across GLP;
 Establish and maintain procedures of security operations for all responsible areas and technologies;
 Establish and maintain incident response playbooks;
 Establish, maintain and report metrics to accurately track the current state of defenses, protections and performance;
 Lead, manage, promote and monitor cybersecurity awareness program for all regions and countries;
 Assist with creation, adoption, and maturing of threat modeling and security requirements functions and processes;
 Assist with application vulnerability fixing;
 Lead adoption of new solutions, techniques and technologies understanding according values and impacts.

 5 years of information technology working experience;
 3 years of cybersecurity engineering and operations working experience.
 Global enterprise experience is a plus;
 Identity and Access Management (IAM) experience is a plus;
 Certified Ethical Hacker (CEH) or Offensive Security Certified Professional (OSCP) is a plus;
 Project Management Professional (PMP) certificate is a plus; and
 Information Technology Infrastructure Library (ITIL) certificate is a plus.
 Deep insight of cybersecurity incident response processes and technologies such as IPS, EDR, UEBA, SIEM and SOAR;
 Knowledge of and experience with global security operations center;
 Knowledge of and experience with NIST Cybersecurity Framework (CSF);
 Knowledge of and experience with MITRE ATT&CK and Cyber Kill Chain;
 Knowledge of common cyber-attacks and counter measures;
 Knowledge of and experience with cybersecurity architecting, engineering and global deployment of cybersecurity technologies;
 Ability of scripting and/or programming;
 Ability of reviewing Java source code; and
 Experience with security operations metrics and dashboard report;