作者 |
上海外企搭建全新团队-招聘Security Officer (Individual) |
|
Chang [博客]
头衔: 海归少校 性别: 加入时间: 2008/10/08 文章: 81 来自: HeadHunter 海归分: 21748
|
|
作者:Chang 在 海归招聘 发贴, 来自【海归网】 http://www.haiguinet.com
CORE MISSION
She/he ensures and controls that the Data Center under her/his responsibility complies with comanySecurity policies, practices and standards (GGS Core IT and Corporate Security) but also with regulatory requirements applying to this scope. This applies to the DC hosting infrastructure (people, physical environment and IT) and includes both set-up and operations.
MAIN RESPONSIBILITIES
RACI based role definition is mentioned between brackets.
Ensure that the data kept, used and transferred is efficiently protected and in accordance with standards (AR).
Run periodic security audits to control proper configuration and operations at the DC (RA).
Contribute to Customer projects under the regional Solution Security Officer (SSO) governance. It includes pre-sales and new solution set-up (C).
Keep updated on cybercrime, threats, risks and counter-measures (technical survey).
Control for VPN setup between customer and single solution environment hosted within company premises.
Control for MPLS line setup between customer and single solution environment hosted within company.
Validate internal and external traffic flows for a solution and requesting the applicable firewall rules
Manage user privileges and access management per environment
Upon requested firewall changes, security analyst determines risk and justification and provides approval/rejection of change requests.
Automate Nessus scans on a monthly and ad hoc basis (as required) of network environments
Analyze vulnerability scans, pen tests, audits and patch reports to determine what patches are applicable and should be determined as critical or scheduled.
Support Pen testing by submitting appropriate temp firewall rules allowing testers access to target networks.
Assemble data and notify stakeholder of audit dates and scope. Coordinate audit agenda and manage evidence gathering as needed.
Generate, import, revoke and manage life for encryption keys
Identify malicious data streams against vulnerable system(s), alert and remediate, if possible.
Install antivirus on all servers, update on a daily or better basis their signature and manage the antivirus from a central console with logs fed to the syslog server.
Review the logs of security events, evaluate events to correlate data, determine if incident and report incident.
Review contracts, preliminary architecture and apps to be utilized for risk.
Identify incidents, report to Corp and Regional Security, provide resources for investigation team if required. Identify root and remediation of cause
Analyze traffic flows captured by security systems to assist in troubleshooting flow issues.
Review security requirements, comment and document acceptance or rejection of requirements beyond what are standard for company Data Center.
Conduct regular training of security awareness, security functions for non-security personnel (example Key Custodian) and alert to potential risks and events.
Coordinate with Savvis to manage DDOS service, review DDOS reports and address false positives and potential security events
Grant, revoke, modify access badge mode to control access to physical security zones. Issue keys to cages with lower security requirements.
Contract for security hardware and services, configuration, management and implementation
LEVELS OF EXPERTISE
N/A
MAIN RELATIONSHIPS
Internal
DC System Expert
Solution Security Officers
Regional GGS operations
Regional Security Manager
GGS IT Security Officer
GGS Risk manager
Corporate Security team
External
Regulatory bodies (VISA, MasterCard…) and accredited auditors.
Customers.
Outsourcers/Partners.
POSITION REQUIREMENTS
Education
Degree in Engineering ideally in computer security
CISSP certification and ISO27001 Lead Auditor or Lead Implementer certified are assets
Experience
5 plus years of experience successfully managing security in large, complex, and distributed IT infrastructure.
First experience in logical security governance (ideally in a banking environment).
Professional Knowledge
Use of symmetric and asymmetric cryptography, including public Key Infrastructure (PKI).
Network security, including Firewalls, Router and Switch but also NIPS (Network Intrusion Prevention System).
System security (Unix OS – Linux/Solaris, Windows): hardening and main weaknesses. Use of HIPS (Host Intrusion Prevention System).
Vulnerability assessment (Nessus) and others security diagnostic tools.
Incident response.
Processes
Incident management
Risk assessment
Change management
Tools
Nessus
PGP, S/MIM and others encryption tools.
ActiveDirectory browsing and auditing.
Language
Operation English
Interpersonal skills
Very high degree of integrity
Autonomous
Persuasive; pugnacity
Proactive
Reliable
Communication ability
Customer satisfaction oriented
作者:Chang 在 海归招聘 发贴, 来自【海归网】 http://www.haiguinet.com
相关主题 |
[报到]留美海归创建的团队, 诚聘英语流利,沟通能力强的年轻海归加入
|
海归招聘 |
2012-9-08 周六, 05:56 |
【玩跨境电商,你得如何组建初创团队】
|
海归商务 |
2014-3-07 周五, 20:45 |
上海大型国有商业银行招聘债券交易岗
|
IT |
2014-1-18 周六, 17:25 |
上海大型国有商业银行招聘 交易风险管控岗
|
IT |
2014-1-18 周六, 17:21 |
[原创]【猎头招聘】海外上市互联网公司招聘财务分析师/内控经理
|
海归招聘 |
2013-7-10 周三, 17:47 |
海知音教育(北京)招聘SAT教师
|
海归招聘 |
2013-6-02 周日, 17:29 |
知名教育集团诚聘有意从事留学行业的海归加入我们的团队
|
海归招聘 |
2013-2-21 周四, 14:51 |
[分享]猎招-上海某知名奢侈品公司招聘副财务经理~
|
金融财务 |
2012-12-06 周四, 15:21 |
| |
|
|
|
返回顶端 |
|
|
|
- 上海外企搭建全新团队-招聘Security Officer (Individual) -- Chang - (4999 Byte) 2014-3-07 周五, 17:11 (1366 reads)
|
|
|
您不能在本论坛发表新主题, 不能回复主题, 不能编辑自己的文章, 不能删除自己的文章, 不能发表投票, 您 不可以 发表活动帖子在本论坛, 不能添加附件可以下载文件, |
|
|