500强美资名企招聘 IT Security Technician
上海万宝盛华人力资源有限公司
- 公司规模:500-1000人
- 公司性质:外资(欧美)
- 公司行业:专业服务(咨询、人力资源、财会)
职位信息
- 发布日期:2014-04-30
- 工作地点:上海
- 招聘人数:1
- 职位月薪:面议
- 职位类别:信息技术专员 网络信息安全工程师
职位描述
Job Description
We currently has an opening for an experienced IT system technician that is well versed in IT security, such like IT infrastructure vulnerability management, Patch management, Data Loss Prevention, security tools management and analysis, incident management, and industry best practices in securing IT systems.
You will ensure applicable Global Information Security policies, standards and industry best practices are followed; implement, monitor and analyze information security measures in support of customer requirements and business goals.
Responsibilities include:
1. Working within the GIS security team assist in expanding the functional capability including Threat & Vulnerability Management(TVM) , scanning of network connected devices worldwide and integration of TVM related reporting
2. Conduct vulnerability scans on a regular basis, analyze and communicate results to GIS internal and customers for improvement.
3. Perform manual audit/assessment in various areas, and communicate risks to GIS internal.
4. Analyze raw logs from different security tools such like AV and F/W Systems, correlate with security best practices and report to GIS internal.
5. Assist in developing enterprise level patch management and data loss prevention.
6. Be involved in gather data and evidence to be used per security incidents.
7. Work closely with GIS team to manage security/risk controls.
8. Conduct security research in keeping abreast of latest security issues.
Position Skills and Knowledge required (two or more technical skills are preferred):
? Broad knowledge of networking, routing protocols, switching, firewalling, Extranet and DMZ security and remote access methodologies.
? Hands on experiences in build or maintain (or hardening) MS/Unix/Linux operating systems.
? Experience on security tools’ management, such like AV, F/W, SIEM, etc.
? Be good at report analyzing, data correlation, and result communication.
? Solid understanding of factors that influence applications (web app etc) security. Familiarity with related industry standards and technical best practices.
? Hands on experience using vulnerability assessment, network scanning and DLP tools such as Appscan, IPSonar, Vontu, etc is preferred.
Key Competencies
?Bachelor's degree in computer science or related field
? Must have 3+ years of IT related experiences, 2+ years on information security.
? Solid understanding of information technology and certain level understanding of information security best practices
? Quick learner, good analytical skills and the ability to multi-task
? Able to work independently and in a team environment
? Good oral and written communication skills (English) with the ability to present and discuss technical information in a way that establishes rapport, persuades others, and gains understanding.
? One or more certifications in following areas: Cisco, Microsoft, Oracle, Linux, UNIX.
? Experience with the following standards and frameworks, a plus: ISO 27001, ITIL, COBIT, SDLC.
? One or more, current Information Security related certifications CISSP, CISP, CISA, CISM, GIAC, CEH, etc is a plus.
We currently has an opening for an experienced IT system technician that is well versed in IT security, such like IT infrastructure vulnerability management, Patch management, Data Loss Prevention, security tools management and analysis, incident management, and industry best practices in securing IT systems.
You will ensure applicable Global Information Security policies, standards and industry best practices are followed; implement, monitor and analyze information security measures in support of customer requirements and business goals.
Responsibilities include:
1. Working within the GIS security team assist in expanding the functional capability including Threat & Vulnerability Management(TVM) , scanning of network connected devices worldwide and integration of TVM related reporting
2. Conduct vulnerability scans on a regular basis, analyze and communicate results to GIS internal and customers for improvement.
3. Perform manual audit/assessment in various areas, and communicate risks to GIS internal.
4. Analyze raw logs from different security tools such like AV and F/W Systems, correlate with security best practices and report to GIS internal.
5. Assist in developing enterprise level patch management and data loss prevention.
6. Be involved in gather data and evidence to be used per security incidents.
7. Work closely with GIS team to manage security/risk controls.
8. Conduct security research in keeping abreast of latest security issues.
Position Skills and Knowledge required (two or more technical skills are preferred):
? Broad knowledge of networking, routing protocols, switching, firewalling, Extranet and DMZ security and remote access methodologies.
? Hands on experiences in build or maintain (or hardening) MS/Unix/Linux operating systems.
? Experience on security tools’ management, such like AV, F/W, SIEM, etc.
? Be good at report analyzing, data correlation, and result communication.
? Solid understanding of factors that influence applications (web app etc) security. Familiarity with related industry standards and technical best practices.
? Hands on experience using vulnerability assessment, network scanning and DLP tools such as Appscan, IPSonar, Vontu, etc is preferred.
Key Competencies
?Bachelor's degree in computer science or related field
? Must have 3+ years of IT related experiences, 2+ years on information security.
? Solid understanding of information technology and certain level understanding of information security best practices
? Quick learner, good analytical skills and the ability to multi-task
? Able to work independently and in a team environment
? Good oral and written communication skills (English) with the ability to present and discuss technical information in a way that establishes rapport, persuades others, and gains understanding.
? One or more certifications in following areas: Cisco, Microsoft, Oracle, Linux, UNIX.
? Experience with the following standards and frameworks, a plus: ISO 27001, ITIL, COBIT, SDLC.
? One or more, current Information Security related certifications CISSP, CISP, CISA, CISM, GIAC, CEH, etc is a plus.
公司介绍
Manpower是全球弹性用工和长期人才解决方案的领导者,致力于提供商业所需的灵活用工方案。通过我们值得信赖的品牌形象,为客户构建人才库,快速满足客户的人力需求。并时时评估和发展我们雇员所拥有的技能,使他们拥有与时俱进的技能,按时保质出色地完成每一项工作。
我们提供企业人才培养服务。我们根据企业人才发展战略、岗位职能等设计人才培训系统方案,使人岗合一、展现个人魅力。在实现个人、团队、公司目标的同时,提升个人全面技能,达到企业可持续发展,使企业及个人在风云变幻环境中成为赢家。
我们提供企业人才培养服务。我们根据企业人才发展战略、岗位职能等设计人才培训系统方案,使人岗合一、展现个人魅力。在实现个人、团队、公司目标的同时,提升个人全面技能,达到企业可持续发展,使企业及个人在风云变幻环境中成为赢家。