长沙招聘

岗位职责:

1. Triages alerts as they come in and action appropriately.
2. Create tickets for necessary tasks that need to be executed by internal/external teams.
3. Conduct systems and tools health checks.
4. Respond to common alerts in a consistent and repeatable manner from multiple alerting sources.
5. Identify abnormal security events and trigger the call list / distribution list.
6. Recognize successful cyber intrusions and compromises through log review and analysis of relevant event detail information.
7. Launch and track security investigations to resolution. Recognize cyber-attacks based on their signatures.
8. Differentiate the false positives from true intrusion attempts and help remediate / prevent.
9. Analyze and assess security incidents and escalates to appropriate internal teams for additional assistance.
10. Actively investigate the latest in security vulnerabilities, advisories, incidents, and penetration techniques and notify client when appropriate.
11. Perform tasks as identified in a Security Operations Process Manual and runbooks.
12. Coordinate with internal teams for relevant security incident investigations.
13. Develop reports and/or briefings for events/incidents.
14. Maintain shift logs for all conducted SOC activities during scheduled hours.
15. Should be familiar with handling and mitigating attacks related to viruses, spoofing, hoaxes, malware
16. Should be familiar with emerging security threats and their attack vectors especially web application attacks
17. Excellent verbal and written English communication skills are most important for the role.

任职资格:

1. Skills
? Experience with one or more Security Information and Event Management (SIEM) solutions. (such as McAfee, LogLogic, Splunk, QRadar, ArcSight)
? Understanding of common attacks (e.g. brute force, SYN flood, session hijack, smurf etc.) and their SIEM signatures
? Experience in security monitoring, Incident Response (IR), security tools configuration and security remediation
? Strong knowledge and experience in Security Event Analysis capability

2. Experience:
? More than 2-4 years of experience with a reputed Services / consulting firm offering Security Consulting, Implementation and Managed Security
? More than 2 years of technical experience in Security Operations Center (SOC) and Cyber Security Incident Response.
? Experience with one or more Security Information and Event Management (SIEM) solutions. (such as McAfee, LogLogic, Splunk, QRadar, ArcSight)

3. Education
? Graduate in any stream or equivalent.
? Accredited Certification on Incident Handling (CEH, GCIH, ECIH) or any other industry certification(s) a plus.
? Splunk Certified User / SIEM training

康宝莱全球
康宝莱是一家全球领先的营养和体重管理公司， 由马克休斯于1980年成立。我们的营养补充、体重管理、能量与健身、个人护理产品销售遍及世界90多个国家和地区，在全球各地通过热忱的营销人员为您打造一个独一无二的使用体验。我们的产品富含蛋白质、膳食纤维和维生素等让您获得均衡营养，同时帮助您达成健康、积极的生活方式。

康宝莱中国
自2005年正式进入中国市场以来，康宝莱中国的每一天都在坚持夯实基础的策略，这个基础包括令顾客满意的优秀产品、成功的品牌宣传策略以及健康的服务商运作体系。近年来，康宝莱中国的业绩增势明显，中国市场地位也不断提升，逐日成为康宝莱全球名副其实的强力增长引擎。包括苏州、长沙、南京在内，康宝莱在中国已经建立了三处创新与生产基地。

社会责任和公益慈善
我们秉承诚信、守法的企业经营行为，通过执行严苛的质量标准，确保为消费者提供高质量产品。我们努力构建和谐、融洽的人际关系，并赢得客户的信任。我们关爱社区，努力改善弱势人群的生活质量，履行一个企业的社会责任。我们希望公司能和社会一起健康、繁荣地成长。“天使听见爱”慈善项目专项基金、“康宝莱之家”等公益项目已经在中国开展多年，2016年6月，康宝莱公益基金会正式成立，标志着康宝莱公益慈善事业迈进了新篇章。

我们的文化
康宝莱的企业文化生机勃勃：
我们的企业愿景是：人生从此更精彩。
我们的企业使命是：通过提供***的事业机会以及首屈一指的营养和体重管理产品，让人们的生活从此更精彩。

在康宝莱，你会感受到其独特的企业价值观。康宝莱是一家快速成长的企业，内外部环境都充满变化和富有挑战性。在康宝莱，每位员工能够接触到的工作是多样化的，每个人都可以在工作中不断地学习以充实自己，对优秀人才的内部发展和自我提升非常有利。公司提供友善愉快的工作环境，倡导外向、直接、团结的工作氛围。2015年、2016年，康宝莱中国荣膺GPTW大中华区***职场称号。

更多资料可浏览我们的网址：
http://www.herbalife.cn/