长沙招聘

Responsibilities:

As a specialist/expert of the PwC CDO Cloud Team, you will work in an operation team with extensive technology and industry experience, deliver standard security and compliance control service to meet platform and business KPI and SLA and auditing requirements. Specific responsibilities include but are not limited to:

•Responsible for handling all aspects of cloud platform security and compliance issue, creating and implementing security practices and ensuring the alignment of company cyber security and compliance requirements;

•During the cloud project planning, execution, provides security assessment, review and reporting;

•Working with other cloud operations team and GTS security team to ensure proper deployments of General cloud security controls, compliance complying;

•As operations tooling and process owner, designing, reviewing and implementing overall cloud platform operation and risk management policy and process to meet security and compliance requirement;

•Overall management for all the cloud platform Credentials, Certs, Keys, HW Tokens, etc;

•Perform internal audit/assessment on regular basis based on different business process compliance management and risk control mechanisms in different accounts to ensure the full compliance as per relevant standard, and identify potential issues/risks;

•Advising management team on security initiatives aligned with corporate security standard and requirements;

•Planning and composing the Cloud platform cybersecurity strategy and framework and implement tools to ensure the security of business information and cloud assets;

•Setup dry-run practices in areas of security, incident management, vulnerability management and etc;

•Establishing and executing a robust methodology for periodic reviews aiming to highlight the security and compliance gaps that exist in the operational processes;

•Planning and managing all user security awareness training.

Qualifications /Requirements:

•Bachelor’s degree or above in information security management or similar field;

•Proven working experience in IT system security and audit role (above 3 years);

•Skills and experience to translate security and compliance requirement into cloud architecture;

•Experience of IT security auditing management and execution;

•Excellent project management skills and strong ability to prioritize;

•Well Understanding with windows server system, Microsoft O365, computer networks, network administration and network installation;

•Ability to interact with IT personnel on all levels to resolve issues and provide security solutions in a timely manner;

•Good Communication and interpersonal skills including relationship building, listening and questioning;

•Good English, both spoken and written.

Preferred skills:

•Highly appreciated for 3+ years cloud production environment working experience;

•Proficient in IT Security and Compliance concept and methodology;

•Proficient in operation workflow and process design, familiar with ITSM and ITIL principle and tooling;

•Expertise in security and compliance management tooling, Alibaba/Huawei/Tencent Cloud is strongly desired, experience with AWS/Azure is a plus;

•Containers & container management including Docker, Kubernetes or Rancher;

•Related certifications (Ali/Azure/Aws Cloud, CISSP, CISA, ITIL, etc.) are preferred but not must;

•Familiar with IT Audit standard: ISO27001/27017/27018, DJCP, CCCPF.

The PwC China (including Mainland China, Hong Kong, Macau) does not accept unsolicited resumes from search firm recruiters. Fees will not be paid in the event a candidate submitted by a recruiter without an agreement in place is hired; such resumes will be deemed the sole property of PwC China (including Mainland China, Hong Kong, Macau). PwC China (including Mainland China, Hong Kong, Macau) is an equal opportunity employer. All aspects of employment will be based on merit, competence, performance, and business needs. We do not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under the local law.

普华永道 - 中国內地、中国香港及中国澳门
普华永道中国內地、中国香港及中国澳门成员机构根据各地适用的法律协作运营。整体而言，员工总数超过17,000人，其中包括超过600名合伙人。
   
无论客户身在何处，普华永道均能提供所需的专业意见。我们实务经验丰富、高素质的专业团队能聆听各种意见，帮助客户解决业务问题，发掘并把握机遇。我们的行业专业化有助于就客户关注的领域共创解决方案。

我们分布于以下城市：北京、上海、香港、沈阳、天津、大连、济南、青岛、郑州、西安、南京、合肥、苏州、武汉、成都、杭州、宁波、重庆、长沙、昆明、厦门、广州、深圳、澳门、海口。