DAP OPS Manager
米其林(中国)投资有限公司
- 公司性质:外资(欧美)
- 公司行业:机械/设备/重工
职位信息
- 发布日期:2017-06-14
- 工作地点:上海-长宁区
- 招聘人数:1人
- 学历要求:本科
- 职位月薪:15-35万/年
- 职位类别:技术支持/维护经理
职位描述
职位描述:
Principal Accountabilities:
1. Understand Michelin cloud stradegy and the technical roadmap on cloud
2. Support Group Security Architect to identify complaince gap when organization move to Azure. Meet Michelin compliance requirements via cloud adoption from technical standpoint. Understand Azure coompliance foundation, include Trustworthy technolog, compliance process investment and 3-party certification. Work with microsoft expert to meet Michelin specific compliance by Azure security architecture insight study, identify the choices and further feasibility study.
3. Put Cloud risk management in place with Microsoft Azure practice and compliant with Michelin Security requirement. Identify threats and vulnerabilities to the environment. Calculate risk. Report risks across the cloud environment. Address risks based on impact assessment and the associated business case. Test potential remediation effectiveness and calculate residual risk. Manage risks on an ongoing basis.
4. Accountable for Identity and access management on the cloud. Implement consistent discipline acrose on premise and Cloud with the guide of EUX, EP architect. Summarize identity provisioning requirement in terms of SaaS, PaaS and IaaS. Evaluate how to more securely automate the identity provisioning by using the current on-premises infrastructure. From federation standpoint, Evaluate the methods available and how to integrate these methods with the current on-premises infrastructure. Evaluate the organization’s requirement for SSO and how to integrate it with current apps. Evaluate cloud service provider profile management options and how these options map with the organization’s requirement. Evaluate cloud service provider options to control data access, Enforce Role-Based Access Control (RBAC).
5. Align with GOM and enforce operational security on cloud by incorporating organizational learning throughout the existing process and adopting industry standards and practices for cloud operations. Use a security information management approach in line with industry standards. Continuously update controls and mitigations to enhance the operation’s security.
6. Follow Microsoft and Michelin best practice to secure the data, E2E protect towards, from and on Cloud. Enforce data encryption on endpoint device no matter company assets or BYOD. Ensure that the data leave from endpoint and transit to cloud is still protected. Ensure redundancy and protection the data in the cloud provider’s servers, their storage infrastructure .understand cloud service provider performs data encryption at rest, approach of the key management and data redundancy. Enforce data encryption on the file itself and encrypt the transport layer.
Key Qualities Required:
1. Multiple skills in Vulnerability Assessments, Intrusion Prevention and Detection, Access Control and Authorization, Policy enforcement, Application Security, Protocol Analysis, Firewall Rulesets, Incident Response, DLP, Encryption, Two-Factor Authentication, Web-filtering, Centralized Security Event Logging, Advanced Threat Protection, tools.
2. Excellent technical knowledge of mainstream operating systems (for example, Microsoft Windows and UNIX) and a wide range of security technologies, such as network security appliances, identity and access management (IAM) systems, Anti-malware solutions, automated policy compliance and desktop security tools.
3. Web application security experience including OWASP vulnerabilities, browser security, javascript security, Deep understanding of web application attacks including SQLi, XSS, XXE, and other common security issues
4. Significant knowledge of TCP/IP, cryptographic protocols and algorithms, operating system internals and operations, and application level protocols. Ability to configure, operate, and understand the regular workings of the following: Apache, PHP, SSH, UNIX hosts, TLS, etc.
5. Solid Public Cloud product knowledge, AWS, Azure and so on. Well understanding IaaS, PaaS, SaaS and comparison to on-premise IT System in terms of Security principle.
6. Good documentation skill.
Qualifications:
1. 7+ years relevant experience in IT domain, including minimum 3 years’ experience in an information-security related occupation and more than 2 years’ experience in Private, Public cloud operation or project or solution design.
2. Experience with common information security management frameworks, such as International Standards Organization (ISO) 17799/27001 and the IT Infrastructure Library (ITIL), Control Objectives for Information and Related Technology (CobiT) and National Institute of Standards and Technology (NIST) frameworks.
3. University degree in Computer Science or other engineering field.
4. Speak fluent English and Chinese
举报
分享
Principal Accountabilities:
1. Understand Michelin cloud stradegy and the technical roadmap on cloud
2. Support Group Security Architect to identify complaince gap when organization move to Azure. Meet Michelin compliance requirements via cloud adoption from technical standpoint. Understand Azure coompliance foundation, include Trustworthy technolog, compliance process investment and 3-party certification. Work with microsoft expert to meet Michelin specific compliance by Azure security architecture insight study, identify the choices and further feasibility study.
3. Put Cloud risk management in place with Microsoft Azure practice and compliant with Michelin Security requirement. Identify threats and vulnerabilities to the environment. Calculate risk. Report risks across the cloud environment. Address risks based on impact assessment and the associated business case. Test potential remediation effectiveness and calculate residual risk. Manage risks on an ongoing basis.
4. Accountable for Identity and access management on the cloud. Implement consistent discipline acrose on premise and Cloud with the guide of EUX, EP architect. Summarize identity provisioning requirement in terms of SaaS, PaaS and IaaS. Evaluate how to more securely automate the identity provisioning by using the current on-premises infrastructure. From federation standpoint, Evaluate the methods available and how to integrate these methods with the current on-premises infrastructure. Evaluate the organization’s requirement for SSO and how to integrate it with current apps. Evaluate cloud service provider profile management options and how these options map with the organization’s requirement. Evaluate cloud service provider options to control data access, Enforce Role-Based Access Control (RBAC).
5. Align with GOM and enforce operational security on cloud by incorporating organizational learning throughout the existing process and adopting industry standards and practices for cloud operations. Use a security information management approach in line with industry standards. Continuously update controls and mitigations to enhance the operation’s security.
6. Follow Microsoft and Michelin best practice to secure the data, E2E protect towards, from and on Cloud. Enforce data encryption on endpoint device no matter company assets or BYOD. Ensure that the data leave from endpoint and transit to cloud is still protected. Ensure redundancy and protection the data in the cloud provider’s servers, their storage infrastructure .understand cloud service provider performs data encryption at rest, approach of the key management and data redundancy. Enforce data encryption on the file itself and encrypt the transport layer.
Key Qualities Required:
1. Multiple skills in Vulnerability Assessments, Intrusion Prevention and Detection, Access Control and Authorization, Policy enforcement, Application Security, Protocol Analysis, Firewall Rulesets, Incident Response, DLP, Encryption, Two-Factor Authentication, Web-filtering, Centralized Security Event Logging, Advanced Threat Protection, tools.
2. Excellent technical knowledge of mainstream operating systems (for example, Microsoft Windows and UNIX) and a wide range of security technologies, such as network security appliances, identity and access management (IAM) systems, Anti-malware solutions, automated policy compliance and desktop security tools.
3. Web application security experience including OWASP vulnerabilities, browser security, javascript security, Deep understanding of web application attacks including SQLi, XSS, XXE, and other common security issues
4. Significant knowledge of TCP/IP, cryptographic protocols and algorithms, operating system internals and operations, and application level protocols. Ability to configure, operate, and understand the regular workings of the following: Apache, PHP, SSH, UNIX hosts, TLS, etc.
5. Solid Public Cloud product knowledge, AWS, Azure and so on. Well understanding IaaS, PaaS, SaaS and comparison to on-premise IT System in terms of Security principle.
6. Good documentation skill.
Qualifications:
1. 7+ years relevant experience in IT domain, including minimum 3 years’ experience in an information-security related occupation and more than 2 years’ experience in Private, Public cloud operation or project or solution design.
2. Experience with common information security management frameworks, such as International Standards Organization (ISO) 17799/27001 and the IT Infrastructure Library (ITIL), Control Objectives for Information and Related Technology (CobiT) and National Institute of Standards and Technology (NIST) frameworks.
3. University degree in Computer Science or other engineering field.
4. Speak fluent English and Chinese
职能类别: 技术支持/维护经理
公司介绍
米其林集团是世界500强企业之一,全球轮胎业科技和创新的领导者。在全球五大洲设有68间生产工厂,所生产的轮胎行销全球170多个国家,全球雇员人数约114, 000人。自1988年进入中国,业务快速增长,米其林已分别在沈阳和上海成立2家独资企业,1家合资企业,一个研发中心和位于上海的总部,以及一个设于香港的代表处。在台湾,米其林集团设有台湾米其林轮胎股份有限公司。米其林中国区现有的员工总数6,300名。