十分抱歉!

This job has been closed. You will find bellow the job description as a reminder. It is not possible to apply anymore.

地区: 上海
薪资: salary negotiable
行业: 其他
职能: IT/数字化/研发

公司概况

拥有多元业务,行业龙头。管理千亿以上规模资产,快速扩张上下游多业务模式。

职位描述

Job Purpose
This position plays an important role as part of the global info security operations team.

The focus will be on one or more areas as below:
 Manage the outsourced Global Security Operations Center (SOC) and SIEM tools
 Information security incident management and investigation
 Manage Identity & Access Management (IAM) operations and Firewall rule operations
 Manage vulnerability (infra & application) and the lifecycle
 Manage penetration testing and Red/Blue team exercise
 Manage information security operations improvements

Job Responsibilities Key Performance Measures
A member of global information security operations team to cover all global sites and will be assigned to be responsible for several of the Operations areas as below.

• Responsible for managing Global Security Operations Center (SOC), including daily operations, operations processes, operations quality, and team resources
• Responsible for end-to-end of incident and vulnerability management and lifecycle management
• Responsible for thorough and professional analysis of detected incidents, vulnerabilities and other unusual events and provide professional advice for improvement
• Responsible for detection and response related tools’ operations, change request and effectiveness improvement
• Responsible for Identity & Access Management (IAM) operations and Firewall rule operations, including but not limited to application request handling, firewall rule review & approval, process design & automation.
• Responsible for penetration testing, red/blue team exercise, including planning, execution, and analysis
• Responsible for incident investigation and forensic analysis
• Coordinate other information security functions and business functions on cross functional tasks
• Other information security operations tasks assigned by CISO or Global Info Security Ops Director Depends on the assigned task, the relevant KPIs below are selected
 Detection Success
 SOC quality
 Quality of vulnerability and penetration testing delivery and mitigation
 Effectiveness of tools
 Automation of processes
 Stakeholder’s feedback

Competency
 Proven solid technical skills on global security operations, SOC management
 Proven solid technical skills on tools management for detection, response, IAM, firewall and vulnerability, including but not limited to IPS, EDR, UEBA, SIEM and SOAR
 Proven solid technical skills on penetration testing, code scanning, vulnerability management, Red/Blue team exercise
 Knowledge of incident investigation and forensic analysis
 Knowledge of and experience with NIST Cybersecurity Framework (CSF);
 Knowledge of and experience with MITRE ATT&CK and Cyber Kill Chain;
 Knowledge of common cyber-attacks and counter measures;
 Ability of scripting and/or programming is a plus
 Ability to work independently with or without direction and/or supervision;
 Ability to prioritize and multitask in a complex environment;
 Ability to influence and communicate effectively with both technical and non-technical audiences, including senior business executives and managers;
 Technical ability of hands-on work when needed.

Qualification
Education Background Bachelor Degree of Information Security or Other Related Majors

Professional Skill 
Meet the competencies as defined above
 Fluency of English language. Japanese is a plus
 International work experiences is a plus

Professional Authentication 
Certified Information Systems Security Professional (CISSP) or equivalent