公司概况
拥有多元业务,行业龙头。管理千亿以上规模资产,快速扩张上下游多业务模式。
This job has been closed. You will find bellow the job description as a reminder. It is not possible to apply anymore.
拥有多元业务,行业龙头。管理千亿以上规模资产,快速扩张上下游多业务模式。
Job Purpose
This position plays an important role as part of the global info security operations team.
The focus will be on one or more areas as below:
Manage the outsourced Global Security Operations Center (SOC) and SIEM tools
Information security incident management and investigation
Manage Identity & Access Management (IAM) operations and Firewall rule operations
Manage vulnerability (infra & application) and the lifecycle
Manage penetration testing and Red/Blue team exercise
Manage information security operations improvements
Job Responsibilities Key Performance Measures
A member of global information security operations team to cover all global sites and will be assigned to be responsible for several of the Operations areas as below.
• Responsible for managing Global Security Operations Center (SOC), including daily operations, operations processes, operations quality, and team resources
• Responsible for end-to-end of incident and vulnerability management and lifecycle management
• Responsible for thorough and professional analysis of detected incidents, vulnerabilities and other unusual events and provide professional advice for improvement
• Responsible for detection and response related tools’ operations, change request and effectiveness improvement
• Responsible for Identity & Access Management (IAM) operations and Firewall rule operations, including but not limited to application request handling, firewall rule review & approval, process design & automation.
• Responsible for penetration testing, red/blue team exercise, including planning, execution, and analysis
• Responsible for incident investigation and forensic analysis
• Coordinate other information security functions and business functions on cross functional tasks
• Other information security operations tasks assigned by CISO or Global Info Security Ops Director Depends on the assigned task, the relevant KPIs below are selected
Detection Success
SOC quality
Quality of vulnerability and penetration testing delivery and mitigation
Effectiveness of tools
Automation of processes
Stakeholder’s feedback
Competency
Proven solid technical skills on global security operations, SOC management
Proven solid technical skills on tools management for detection, response, IAM, firewall and vulnerability, including but not limited to IPS, EDR, UEBA, SIEM and SOAR
Proven solid technical skills on penetration testing, code scanning, vulnerability management, Red/Blue team exercise
Knowledge of incident investigation and forensic analysis
Knowledge of and experience with NIST Cybersecurity Framework (CSF);
Knowledge of and experience with MITRE ATT&CK and Cyber Kill Chain;
Knowledge of common cyber-attacks and counter measures;
Ability of scripting and/or programming is a plus
Ability to work independently with or without direction and/or supervision;
Ability to prioritize and multitask in a complex environment;
Ability to influence and communicate effectively with both technical and non-technical audiences, including senior business executives and managers;
Technical ability of hands-on work when needed.
Qualification
Education Background Bachelor Degree of Information Security or Other Related Majors
Professional Skill
Meet the competencies as defined above
Fluency of English language. Japanese is a plus
International work experiences is a plus
Professional Authentication
Certified Information Systems Security Professional (CISSP) or equivalent