长沙 [切换城市] 长沙招聘

IT Security Manager ID22302

星巴克企业管理(中国)有限公司

  • 公司规模:10000人以上
  • 公司性质:外资(欧美)
  • 公司行业:批发/零售

职位信息

  • 发布日期:2017-10-25
  • 工作地点:上海
  • 工作经验:5-7年经验
  • 学历要求:本科
  • 语言要求:英语熟练
  • 职位类别:其他  

职位描述

职位描述:
Job Title: IT Security Manager, Cloud and Infrastructure

Key Responsibilities:
- Work closely with Corporate Information Protection Service team to ensure all security protection measures, policies, and procedures, including general IT standards, are designed, implemented, and functioning as planned throughout China as well as globally;
- Research virus outbreaks, vulnerabilities, penetration test, and other suspected security problems globally and work with/advise local IT staff on how to fix the issues. Run or assist in IT Security projects; Configure, maintain, and troubleshoot all security technologies to ensure applications, users, systems, and the network continue to operate securely and in a globally consistent manner. This leader must ensure that all security operations and work is consistent with the IPS Security team approach globally. Regional variances must be kept to a minimum to ensure consistent operations of fault-tolerant/automated technologies, processes, and support by any of the IPS Security staff
- Meet with local users throughout China, IT staff, and business leaders as appropriate to understand local needs as affected by security and work with the rest of the security team to address the needs. Also keep this same group informed of security policies and procedures and be willing to evangelize security as a business enabler and protection measure
- As possible keep abreast of regional laws and practices that might affect how company handles data, implements technologies, and addresses policy violations. This knowledge is expected to be gained via keeping current with security industry publications, working with other security professionals in region, and in discussions with regional legal and human resource teams. Also keep current in IT Security trends and technologies by reading/following security industry publications and networking with other security professionals
- Periodically review local operations, educate on security issues specific to that area, and ensure compliance to policies and standards. Perform security technology implementation or updates per the approved global IPS Security project portfolio or operational duties
- Provide spirited, positive leadership when working on projects, issue resolution, and prevention improvements. Challenge obsolete practices; question accepted truths. Develop practical systems scope that enhances the business function. Control the project scope, resources, and quality within budget and schedule to meet objectives
- Assist in providing inputs for project review meetings and management presentations
- Provide analysis, counsel, and direction to personnel on other teams or business units to analyze security problems on their projects and advise on how they are to securely deploy & maintain their solutions. Maintain an understanding of business processes and the implications of computer systems on these processes

 Knowledge, Capabilities and Experience:
- Strong infrastructure and cloud and cloud knowledge of information security principles & technical security controls
- Strong technical skills and proven track record on cloud computing including service architecture, implementation and migration, and on-going management with security controls and principles ensuring.
- Strong technical security skills in design, architecture, assessment skills with knowledge in different project delivery models (Waterfall, Agile, DevOps)
- Specialist knowledge in one or more of the following areas:
1) Web application security
2) Mobile application security (Android, iOS, Windows)
3) End point security
4) Wireless security
5) Network security
6) Encryption
7) Application programming
- Strong interpersonal skill and it is able to lead progression with ambiguities and changes
- Strong project management skills and able to manage a portfolio of engagements
- General knowledge of information security, including infrastructure security, application security, identity and access management, compliance frameworks, and other regulatory requirements such as PCI and SOX

Key Requirements:
- At least 5 years of technology experience in security operation
- Excellent understanding on security risk management model. Familiar with security technology implementation and on-going maintenance for firewall, remote access, encryption, authentication, virus control, vulnerability scan, DLP, content filtering, monitoring. Experience on cloud and e-business security evaluation is plus
- Thorough knowledge of internetworking, including TCP/IP, IPsec, routers, IP internetwork configuration and design
- Substantial knowledge of information security practices and technology
- Experience with standards work in security, such as ISO 27001, PCI etc.
- Experience with major cloud service provider
- CISSP, CISA, CISM, TOGAF certified or equivalent qualification is plus
- The ability to read, write, and speak English and Mandarin
- Bachelor’s degree required preferably in Information Technology, IT Security or related field

职能类别: 其他

关键字: IT Security

公司介绍

    星巴克咖啡公司成立于1971年,始终致力于商业道德采购并烘焙世界上高品质的阿拉比卡咖啡。今天,在全球76个国家和地区,拥有28,000多家门店的星巴克是世界上首屈一指的专业咖啡烘焙商和零售商。星巴克始终坚持对卓越品质和服务的承诺,遵循我们的愿景和价值观,通过每一杯优质的咖啡每天为顾客营造独特的星巴克体验。

    自1999年进入中国以来,秉承“激发并孕育人文精神——每人、每杯、每个社区”的公司使命,我们始终致力于在中国成为一家与众不同的公司:在传承经典咖啡文化的同时,关爱我们的伙伴,为顾客提供超越期望的星巴克体验,并为所在社区的繁荣做出自己的贡献。目前星巴克已经在中国大陆130多个城市开设了3,000多家门店,拥有40,000名身穿绿围裙的星巴克伙伴。这一独特优势使我们能够在每一天,通过每一家星巴克门店,践行我们的承诺。

    我们热爱我们的咖啡。我们相信通过一杯高品质的手工咖啡可以传递和分享真挚情感,而这样简单的行为或许可以为顾客提供一些正能量。因此,星巴克始终致力于通过道德采购,烘焙并提供高品质的阿拉比卡咖啡豆。我们还在中国云南普洱建立了星巴克中国咖啡种植者支持中心,旨在整合和促进可持续种植规范在当地的推广,助力云南咖啡产业的发展。从一粒种子到一杯咖啡,每一个环节都倾入了星巴克的心意和努力,只为每一次光顾我们门店的顾客可以享受醇香的浓缩咖啡及其钟爱的咖啡饮品。

    我们热爱我们的顾客。星巴克在为顾客提供始终如一的优质星巴克体验的同时,也一直致力于提升我们的顾客体验。在对产品质量和服务精益求精的基础上,星巴克强调创新,强调产品和服务的个性化,强调不断给顾客带来愉悦和惊喜。同时,星巴克充分尊重中国历史悠久的传统文化,在门店设计、地方食品和饮料供应等方面,完美地将当地习俗融合到星巴克体验之中。目前,星巴克在北京、上海和成都开设了四家风格鲜明的旗舰店。

    独特的星巴克数字平台,包括星巴克移动应用软件和星享俱乐部,帮助我们在门店以外建立与顾客的连接。星巴克始终致力于通过不断创新,建立我们和顾客之间的情感连接,同时激发他们在店内店外与更多人分享这些美好瞬间。2015年12月,星巴克在天猫上推出官方旗舰店,将独特的门店体验与线上“第四空间”体验紧密对接,这是星巴克第一个“互联网+咖啡”的心意传递平台。为了实现线上和线下门店体验的无缝对接,星巴克中国分别与腾讯、阿里巴巴达成战略合作,为顾客带来数字时代的全新零售体验。2017年,星巴克在中国创新推出首个基于微信平台的社交礼品体验“用星说”,鼓励每一个人,在每一刻,都能以一个简单的小行动,对在乎的人用心说出自己的心意。此外,为了进一步满足中国消费者多样化的支付需求,星巴克中国门店已全面接入微信和支付宝。

    我们热爱我们的伙伴。星巴克不仅是一家“咖啡”公司,更是一家“人”的公司。星巴克的核心和灵魂是“星巴克人”。在星巴克,员工被称作“伙伴”,因为他们除了拥有保险、医疗等方面的福利外,还拥有获得公司“咖啡豆股票”的权利,真正成为公司的一员。同时,星巴克还积极为伙伴打造实现梦想的平台,坚信把伙伴利益放在第一位,尊重他们所做出的贡献。星巴克连续获得怡安翰威特2013年度、2015年度、2017年度“中国***雇主奖”及2017美世***福利创新奖,肯定了星巴克在中国对于企业文化及人才发展等方面的持续投入和卓越成绩。

    星巴克视自己为一家“不同寻常”的公司。星巴克在中国发展的同时,也带来了星巴克的核心价值——融入并回馈当地社会。通过各种方式与所在社区建立深层次的连接是星巴克一贯的宗旨。进入中国以来,星巴克始终致力于回馈社会,对于中国社会的发展做出自己的一份贡献,在地方和全国范围内开展企业社会责任项目。至今,星巴克中国的伙伴和志愿者们一共贡献了超过65万小时的社区服务,增进了与社区和顾客的情感联系。

    秉承我们的企业价值,付之于切实行动,我们致力于打造一个与众不同的公司,一个继续让我们的伙伴和顾客为之骄傲的企业。


     如果你想了解更多星巴克中国的信息,请登陆星巴克公司主页:www.starbucks.com.cn

联系方式

  • Email:Celin.Zhu@starbucks.cn
  • 公司地址:地址:span星巴克门店