合肥招聘

Key Responsibilities：

? Developing and maintaining all InfoSec awareness, education and training programs.

? Developing and maintaining targeted security awareness and training. Identify audiences for more targeted training (e.g. Executives, privileged users, etc.), develop appropriate training and awareness programs for those audiences, and deliver tailored training, such as for OWASP Top10, CyberSecurity Laws and privacy compliance.

? Developing metrics and reporting mechanisms for measuring awareness and understanding of information security across the enterprise.

? Assist the phishing awareness program, and other information security awareness tools and applications, raising the awareness of phishing through communications, periodic fake phishes, and phishing training.

? Assist in the design, implementation, documentation, publishing, maintain and communicate of security control, policies, procedures, standards and guidelines.

? Assist in ensuring that all new implementations of business solutions are compliant with the security requirements; ensuring best practice is always followed

? Review policy and standards exceptions

? Work with Legal and Privacy team to keep tracking and identifying compliance requiremnts of local cyber security laws and regulations, provide security advisory for gap analysis, risk assessment and remediation to project team and BP.

? Provides risk assessments and security briefings to leadership and advises them of critical issues that may affect customer or corporate security objectives

? Developing and maintaining vendor risk management program, include assist in vendor risk assessment for security terms review for project team, assist in global Vendor Risk Assessment (VRA) process and tools landing in GCR.

? Enagage in regular risk assessment and remediation based on updated digital asset inventory

Key Requirements

- Familiar with risk management best practice, International standard and cyber security related laws and regulation, include BS10012, ISO27001, PCI, P.R.C Cyber Security Law, Information Classified Security Protection etc.

-Proficient in providing security advisories, solutions or mitigation approach on the inherent risks

- Experience in understanding and deploying risk management frameworks

-Excellent written and verbal communication and organizational skills

- Good written and oral communication in both of Chinese and English

-Good interpersonal skill and project management capability

安利（中国）是美国安利公司在全球***的子公司，1995年4月正式开业，投资总额2.35亿美元，总部设于广州，并在北京、上海设有区域办公室，目前全国有员工近5,000名。秉承“为您生活添色彩”的愿景，安利（中国）在广州建有面积达14万平方米的现代化生产基地，在广州和上海设有研发中心，并在无锡建立了安利全球***一家也是国内***家专门从事中草药植物有机种植技术和植物提取物研究的安利植物研发中心。安利在全国开设近百家体验实体，目前生产、销售营养保健品、美容化妆品、个人护理产品、家居系列产品等500多款。

近年来，新安利2.0着力打造以数字化和社交电商驱动的新实力，并先后将全球数字创新中心、大数据创新中心、IT创新中心相继落户中国。背靠安利强大的营运体系，为创业者带来数字化赋能的全新展业图景，助力轻松展业。同时，作为营养健康食品行业的龙头企业，安利全面发力大健康赛道，发挥安利全球的产品、品牌、研发、服务优势，为中国消费者提供一站式健康生活方式解决方案，并推动中国营养健康食品产业向全球价值链上游迈进。

一直以来，安利非常重视人才的发展和培养，提供完善的机制和平台帮助员工激发潜能，并透过专才计划、社会及校园招聘等项目，广泛吸纳行业精英，同时配备技术大咖导师、跨国团队项目合作，提速职业发展通道，为员工创造多元化的工作机会，探索专业领域的深度长远发展。同时，安利致力于为员工打造美好的工作体验，透过覆盖全生命周期的员工体验之旅，为员工提供具有竞争力的全面薪酬福利体系、公开透明的沟通、灵活的工作时间和环境、激励成长的文化氛围等，帮助员工实现多姿多彩的美丽人生。

多年来，安利（中国）在质量、公益、创新、管理等方面得到了社会各界的广泛认同与赞誉，获得各类嘉奖近万项，含***奖项近700项。其中，凭借在薪酬福利、职业发展、人才规划、企业文化等人力资源多层面的出色表现，安利（中国）共收获过百项雇主殊荣，包括：中国典范雇主、中国最具吸引力雇主、中国年轻人最爱雇主等。