北京招聘

Join a team that is changing millions of lives.

Transforming smiles. Transforming lives. Transforming an industry.

At Align Technology, we believe a great smile can transform a person’s life, so we create technology that gives people the confidence to take on whatever’s next. We revolutionized the orthodontic industry with the introduction of the Invisalign system, and we have never lost sight of that spirit of innovation. Our teams are constantly pushing the boundaries of what’s possible.

Ready to join us?

About this opportunity

The Information Security Engineer for APAC will report directly to the Senior Information Security Manager, APAC. This individual contributor position will be responsible for supporting Information Security initiatives within Align’s APAC region, with a focus on China based operations. The APAC region is made up of offices located in Australia, China, Hong Kong, India, Japan, Korea, New Zealand, Singapore, Taiwan, and Vietnam with primary operations in China within Shanghai, Chengdu, and Ziyang. The primary focus of this individual will be supporting initiatives from the Technology Governance, Risk & Compliance department within the Information Security team.

The Information Security Engineer will provide technical skills to review and influence Align’s information security approach across organizations and help protect Align’s information: our employee information, our customer information, and most importantly, our patient information.

In this role, you will…

This role will be responsible for implementing, formalizing and supporting Information Security initiatives within Align’s APAC region with a focus on the following responsibilities:

Business Partner:

? Follow company policy and governance, protect Align’s sensitive information through various protection systems, tools, data encryption, etc.

? Serve as a trusted advisor to APAC business functional areas (e.g. Finance, HR, Engineering) and/or internal APAC IT resources (such as infrastructure, applications, Cloud services).

? Collaborate with global team to set clear Information Security expectations for APAC region projects and collaborate with project teams to validate those expectations are being appropriately implemented prior to project deployments

Security Operations:

? In collaboration with Security Operations, assist with formalizing the Cybersecurity Incident Response program across all of APAC. Review of systems security event logs or report (e.g. malware occurrence) and follow through remediations

Technology Governance:

? Improve and drive information security awareness program in the APAC region

? Coordinate development and regular of exercises of Business Continuity Plans supporting critical and high business processes within the APAC region, focusing first on China

? Coordinate development and regular testing of Disaster Recovery Plans for technology supporting critical and high business processes within the China region

Technology Risk Management:

? Participate in and help drive the development of a risk assessment program covering the APAC region

? Formulate and maintain regular security metric reports

? Manage and update the Information Security risk model, and in coordination with other functional teams (e.g. HR, Finance, IT, Engineering), establish plans to securely manage the cyber risks associated with business activities and technical implementations

? Ensure completing timely APAC based assessments over vendors, applications and sites. Identify, document, formalize action plans and track technology related risks within the region

Technology Compliance:

? Perform Information security review and process assurance to upkeep the compliance of the Align

? Develop and map enterprise-wide technology controls which meet local business expectations and laws/regulations covering Align’s operations within the China region (e.g. CSL)

? Implement regulator specific request of technical controls and ensure compliance (e.g. CPCS)

? Other duties may be assigned as necessary.

? Provide consultation and response to regulator’s security questionnaire and/or on-site check

? Participate in key audits conduct by internal and external including Align’s SOC2 Audit and so on.

? Monitor technology controls within the region to support secure product development and ensure meeting compliance with SOX, SOC2, PCI, HIPAA, FDA, GDPR, local cyber and data privacy laws, and other legal and regulatory requirements as necessary

In this role, you’ll need …

• Strong English-speaking skills with experience working at an overseas company

• Bachelor’s degree or equivalent work experience

• 5+ years’ experience in Security, Compliance, Risk Management, and/or Audit

• Demonstrable experience in any of the following will be a plus: Classified Protection Cyber Security (CPCS) under Cybersecurity Law (CSL) in China and familiar with applying China CSL governance, infrastructure/ network security review and analysis, business continuity or disaster recovery, vulnerability management, and/or, security incident management and investigation

• Demonstrated knowledge in applying frameworks such as CSL and/or ISO

• A 'can do' attitude, high energy, and creativity is required along with organizational skills and the ability to handle multiple tasks

• Strong interpersonal, oral, written, and visual communication skills, with the ability to present findings concisely and effectively

• Ability to collaborate effectively with management, developers, program management, engineers, administrators, compliance and legal about objectives, requirements, and designs; and to persuade these groups as necessary to adopt to Information Security guidance

• Ability to pay careful attention to detail, notice patterns and connections

Sound like a good fit?

Great! Click the Apply link below to let us know you are interested. Not the right fit? Don’t worry, there are lots more opportunities. Please consider sharing this opportunity with others in your network.

About Align

Invisalign clear aligners, iTero Intraoral scanners, and OrthoCAD digital services that help dental professionals achieve the clinical results they expect and deliver effective, cutting-edge dental options to their patients.

爱齐公司是一家跨国公司，成立于1997年2月，于2001年在美国纳斯达克上市。其使命是成为创新牙齿矫正设备的主要供应商，我们的产品有隐形无托槽矫治器和口内扫描仪等。 爱齐科技设计和制造世界上先进的隐形矫治器系统 — 隐适美系统，提供 iTero 口内扫描仪和相关服务，以及 CAD/CAM 软件。爱齐科技旗下品牌隐适美拥有超过八百万用户，并通过iTero 口内扫描仪和 exocad 的CAD/CAM 软件推动数字化口腔医疗的发展，打造数字化正畸和修复流程，实现口腔治疗的现代化转型，致力于帮助口腔专业人员提高诊疗效率，优化患者的治疗效果。
爱齐公司强调创新、以结果为导向、以客户与团队合作为中心、自我领导的能力与精神，为员工提供多元化的发展空间，并为员工创造学习、友好、合作、健康的工作环境。我们竭诚邀请充满工作激情，具有挑战精神的精英加入到我公司，共同创造你与公司的成功！