珠海招聘

Educational Level

Bachelor's degree in information systems

Years of Experience

Minimum of 5 years’ experience in cyber security collection, analysis, and reporting process/procedures

Responsibilities

1. Works closely with the Asia SOC team capable of providing freedom of action in the cyber environment for every property and geography where LVSC operates.

2. Works closely with property IT Operations and other functional area specialists to ensure threat indicators are rated by severity and responded to in a manner consistent with the threat.

3. Contributes to the development and maintenance of the cyber security strategy.

4. Delivers a leadership role in providing network and system security advice and risk analysis to business units who engage with the Cyber Security team.

5. Contributes to the property Threat and Vulnerability Management team to ensure a well-defined program operates to identify, risk rate, and track vulnerabilities to remediation.

6. Contributes to the property Security Intelligence team to ensure security threat information, system log information, and sources of external intelligence are combined to provide real time response to cyber events.

7. Uses a thoughtful approach to delivering Dynamic, Static, and Code Review procedures to an application security program that functions centrally and provides global services to new projects and current Internet facing applications. Integrates the global Application Security Program into the IT PMO approval process.

8. Integrates the global strategy and approach to sourcing and integrating external sources of cyber intelligence.

9. Works as a member of the property Incident Response program.

10. Defines, gathers and reports on metrics regarding all security systems within the property environment.

11. This is an expert technical role. It is a key part of the cyber security cyber operations, programs and process for the property enterprise.

12. The role is involved in projects or issues of high complexity that require in-depth knowledge across multiple technical areas and business segments.

13. Coaching and development of technical IT personnel on security issues will be required

Other Requirements

1. Certifications (two or more of the following): GSEC, SSCP, Security+, CEH, GCIH, GCIA, GCED, GSE, or CISSP

2. 2 years hands-on experience with a SIEM in the detection, response, mitigation, and/or reporting of cyber threats affecting networks and one or more of the following:

3. Experience in computer intrusion analysis and incident response;

4. Intrusion detection;

5. Computer network surveillance/monitoring;

6. Knowledge and understanding of network protocols, network devices, multiple operating systems, and secure architectures;

7. Experience in computer evidence seizure, computer forensic analysis, and data recovery;

8. Computer network forensics;

9. System log analysis;

10. Experience with current cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks.

11. Current experience with network intrusion detection and response operations (Protect, Defend, Respond and Sustain methodology).

12. Current experience with cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks.

13. Demonstrated ability to document processes.

14. The ability to respond to crises objectively.

15. Proficiency with MS Office Applications.

16. Must be able to work collaboratively across agencies and physical locations.

17. In-depth knowledge of risk assessment methods and technologies.

18. Proficiency in performing risk, business impact, control and vulnerability assessments.

19. Excellent technical knowledge of mainstream operating systems and a wide range of security technologies, such as network security appliances, identity and access management (IAM) systems, anti-malware solutions, automated policy compliance tools, and desktop security tools.