ROLE AND RESPONSIBILITIES

负责云平台系统提供全面的安全建议和设计完善的安全策略；

负责云平台及企业内部信息安全管理策略制定及定义，熟悉渗透测试，熟悉各类常见的安全问题、利用方法及解决方案；

负责信息安全服务（包括风险评估、漏洞扫描、渗透分析、安全加固等）；

主动检测云平台及网络节点安全配置，执行安全检查及利用的主流安全检测工具进行安全压力测试；

良好的团队协作能力、沟通能力、学习能力，善于解决问题和分析问题，有一定的抗压能力；

日常软件安全升级，操作系统安全加固和帐号审计，日志审计，入侵检测；

Responsible for providing comprehensive security recommendations and well-designed security policies for the systems based on Cloud technology (Alibaba / AWS);

Responsible for cloud platform and enterprise in-house information security management strategy formulation and definition, familiar with penetration testing, familiar with various security issues, utilization and solutions;

Responsible for information security services (including risk assessment, vulnerability scanning, penetration analysis, security enhancement, etc.);

Proactively monitoring on cloud platform and network security configuration, perform security check and use security detection tools for stress testing and analysis;

Good teamwork, communication, and learning skills, good at solving problems and analyzing problems, and having certain ability to withstand stress;

Software security upgrade, operation system security enhancement and auditing, log analysis, attacks detection;

QUALIFICATIONS AND EDUCATION REQUIREMENTS

本科及以上学历，计算机科学，统计学，工商管理等相关专业；

3-5年及以上企业信息安全管理，云安全管理（AliCloud / AWS）工作经验；

熟练掌握常见系统、网络、Web应用攻击技术和防御加固；

具备较强的网络安全整合实施能力，包括但不限于：防火墙、VPN、IPS、VPC,、SWG、SEG、WAF、EPP、SIEM等安全技术；

熟悉网络安全法，以及信息安全等保体系者优先考虑

了解常见安全攻击和漏洞，及其防护方法，对各种安全攻防技巧有较广泛的涉猎和深的理解；

熟练使用shell/Perl/Python等脚本语言；

有应急响应平台经验、完成过漏洞POC提交者优先

拥有机械、印刷及包装行业相关经验者优先；

良好的口头沟通和书面表达能力。这包括向第三方安全外包企业解释技术概念以及向技术人员解释业务概念的能力；

具有优秀的逻辑思维能力，并具有需求判断、引导、控制能力；具有优秀的文档编写能力，能完成高质量的需求说明书等相关文档；熟练使用微软office, Visio和相关的工具；

具备优秀的问题分析与解决能力，有良好的团队协作精神；

有良好的英文能力，口语优秀者优先；

Bachelor’s degree or above, major in computer science, statistics, business administration, etc.;

3-5 years and above enterprise information security management, cloud security management (AliCloud / AWS) work experience;

Familiar with the attack techniques regarding systems, networks, web application and defense reinforcement;

Strong network security integration implementation capabilities, including but not limited to firewall, VPN, IPS, VPC, SWG, SEG, WAF, EPP, SIEM and other security technologies;

Familiar with cybersecurity laws, as well as information security and other security systems are preferred;

Understand common security attacks and vulnerabilities, and their protection methods, and have a wide range of knowledge and deep understanding of various security offensive and defensive techniques;

Skilled in using scripting languages ??such as shell/Perl/Python;

Experience with emergency response platform, completed vulnerability POC submitter is preferred

Experience in the printing and packaging industry is preferred;

Good verbal communication and written communication skills. This includes the ability to explain technical concepts to outsourcing partners and to explain business concepts to technical staff;

Has excellent logical thinking ability, and can judge, guide, and control demand; has excellent document writing ability, can complete high-quality requirements manual and other related documents; proficient in using Microsoft Office, Visio and related tools;

Excellent problem analysis and resolution, good teamwork spirit;

Have good English skills, and excellent oral English is preferred;

上班地址：深圳湾科技生态园9栋B3座2088