Job Description: Senior Information Security Engineer
Job Title: Information Security Engineer
Department/Function: IT Department
Job Description:
- Responsible for the digital information security construction and operation of the business in the United States special district, and coordinating the implementation of the information security system:
- Conducting security checks on network architecture, regularly assessing information security risks within the network architecture, and proposing and promoting rectification measures.
- Implementing, operating, and optimizing industrial information security solutions at the base.
- Responsible for the operation, inspection, policy configuration management, and optimization of information security equipment and systems.
- Planning, implementing, and optimizing data security and compliance work at the US base.
- Operation of the industrial information security situation at the base, including response and handling of security issues such as network attacks, viruses, and vulnerabilities, as well as conducting event tracing and subsequent tracking.
- Conducting security compliance checks for group information security and promoting the implementation of information security management measures.
- Organizing and conducting information security publicity and training to enhance the overall information security protection level and security awareness of all staff.
Qualifications
- Familiar with the operation and maintenance of mainstream information security equipment and software, including firewalls, intrusion detection, WAF, log auditing, network access, internet behavior, antivirus software, etc.
- Familiar with data security-related technologies and products, including data encryption, data anonymization, DLP, etc.
- Strong knowledge of common network protocols and principles of common vulnerability attacks, with practical experience in application layer security protection.
- Having experience in planning, drafting, and independently implementing large-scale network security projects.
- Familiar with various attack and defense technologies, common hacker attack techniques, and possessing the ability to detect and respond to hacker behavior.
- Familiar with local information security laws, regulations, standards, and technical specifications in the United States, proficient in basic knowledge of information security management and technology in various fields.
- Priority will be given to those with network and information security-related certifications (such as CISP, CISA, CISSP, etc.)