×
新闻
最新消息
瑞士腕表品牌 Richard Mille 成为法拉利新一任合作伙伴
香水巨头 Inter Parfums 上季度业绩创历史最好,Anna Sui “SKY”香水热销
深度|揭秘 Diptyque、Byredo、Evelom背后的投资人:像“收藏艺术品”一样投资品牌
Puma 发布2020年财报:全球跑步热潮助力品牌复苏,将更关注女性市场
Gucci母公司为什么要入股这家二手奢侈品平台?
LVMH集团旗下高端男装品牌 Pink 被一位英国零售高管收购
从资生堂到香奈儿,2020年都提交了多少商标申请?
路易威登和芬迪关闭香港时代广场的门店
受儿子炒鞋牵连,Nike 北美总经理被迫离职
Chanel 因门店装修设计涉嫌侵权而被卷入法律纠纷
​上海K11去年收入逆势大涨37%,新世界全面押注中国内地
早报 | 完美日记母公司收购Eve Lom;Gucci母公司入股二手奢侈品平台
深度 | 为什么说FARFETCH天猫店开业是一个行业分水岭?
深度 | 明星真的能做好时尚品牌吗?
LV大秀临时改期,巴黎时装周日程特别延长1日结束
“Prada 厌恶某件东西的样子总是很吸引我”—— 五位“顶流”朋友对话 Prada 和 Raf Simons
LVMH 主席的家族投资公司联合 L Catterton 收购德国百年凉鞋品牌 Birkenstock
日本美妆巨头 Pola Orbis 收购定制化美容健康创业品牌 FUJIMI 的母公司
从 Prada 到 Lora Piana,羽绒服最新趋势尽在米兰时装周!
接纳自我!美国著名设计师 Diane von Furstenberg 新书即将面世
国内女装JNBY母公司上半财年收入增长逾8%,股价一度大涨24%
德国奢侈品电商 Mytheresa 发布上市后首份季报:销售额大涨32.9%,利润持续增长
分享至
字体大小
aA+ aA-
打印
点击这里打印

Expert Cyber Security Analyst - Director Level

国家/地区 : 中国 中国

省份 : 上海

城市 : Shanghai

类别 : 零售

合同类别 : 正式员工

工作性质 : 全职

职位描述

Nike does more than outfit the world's best athletes. We are a place to explore potential, obliterate boundaries, and push out the edges of what can be. We're looking for people who can grow, think, dream and create. We thrive in a culture that embraces diversity and rewards imagination. We seek achievers, leaders and visionaries. At Nike, it's about bringing what you have to a challenging a constantly evolving game.
Nike Technology brings together technology and process expertise to create value for the consumer. We deliver one-stop, integrated process and technology capabilities that enable Nike, Inc.'s businesses and brands worldwide. Our focus is on providing Lean solutions that eliminate waste, maximize consumer value, and drive profitable business growth.
As the Expert Cyber Security Analyst, you will be working with the business and information technology functions in Nike Geographies to enable Nike's cyber security program, ensure Nike maintaining a security posture commensurate with the risk tolerance while meeting business objectives, and regulatory requirements. You will work to weave cyber security into all IT and business projects and functions, while enabling business operations and missions. The Expert Cyber Security Analyst will leverage knowledge of best practices to be able to support applicable regulatory, policy, standards and legal requirements, while conducting and overseeing formal internal risk assessments, vendor risk assessments and self-assessments for various Information systems and processes.
The candidate shall also support internal and external compliance requirements and programs, be able to interpret technology (regulatory) requirements e.g. Cyber Security Law requirements, MLPS (Multi-Level Protection Schema), SOX control requirements, develop and/or follow appropriate processes to keep the organization in compliance and reduce legal liabilities. Drive compliance with all legal, regulatory, and corporate information security policy requirements.
The Expert Cyber Security Analyst will coordinate various of global and geo Cyber Security functions, such as penetration testing, application security, cyber security engineering, and serve as the liaison of Global and Geo Cyber Security teams for Nike Information Security programs and solutions, and ensure appropriate design and implementation of Cyber security programs, solutions, processes and tools.

职位要求

- Perform risk assessments in accordance with the company assessment methodology
- Oversee adherence to security policies, standards, guidelines and baselines.
- Provide remediation recommendations and/or recommend alternate solutions to resolve gaps against Policy & Standards.
- Liaise with threat intelligence and vulnerability management teams to drive remediation of security of vulnerabilities.
- Ensure policies are communicated regularly to stakeholders and customers
- Promote and monitor our corporate security awareness program.
- Identify cyber security events and incidents and follow Nike processes to report, re-mediate, and recover.
- Enable incident response processes by quickly identifying system and data owners as well as the specific fields and classification of Nike data involved.
- Actively participate in lessons learned and resultant process improvement from response activities.
- Develop and share an understanding of systems and processes employed in Nike Geographies
- Identify ways to further protect Nike data through understanding Nike processes, systems, and partnerships in both current and future states
- To make it clear, we're not looking for just anyone. We're looking for someone special, someone who has these experiences and clearly demonstrates these skills:
- Bachelor's Degree and a minimum of 10 years relevant IT experience
- CISSP, CRISC, CISM, CISA or GIAC or other relevant Information Security certifications beneficial
- At least 6-7 years of experiences in cyber security risk assessment and risk management
- At least 5 years of documenting and implementing security policies, standards, and/or controls
- At least 3-5 years of security monitoring experience and incident response activities; preferably within a professional services firm or similar environment
- Solid understanding of network security, OSI model, and information security architecture, previous work as a security engineer is a plus
- Comfortable with interfacing with other internal or external organizations regarding security policy and standards violations, security controls failure, and incident response situations
- Strong knowledge of incident response and crisis management with the ability to identify both tactical and strategic solutions using strong verbal and written communication skills
- Strong working and technical knowledge of identity and access management and data loss prevention security domains
- Understanding of network, desktop and server technologies, including experience with network intrusion methods, network containment, segregation techniques and technologies such as Intrusion Detection Systems (IDS) and Intrusion Protection Systems (IPS)
- IT Audit, internal Audit and/or risk advisory experience is a plus
- Comfortable working with ambiguity is a must
- Excellent analytical and problem solving skills
- Strong business acumen to quickly learn new business processes and understand how application
- performance requirements support the business in achieving revenue and profit goals.
- Excellent collaboration skills - must be eager to work as part of a cohesive team and work as a partner to other teams within Nike, Inc., locally and globally
- Exceptional communication skills, including the ability to gather relevant data and information, actively listen, dialogue freely, verbalize ideas effectively, negotiate tense situations successfully and manage and resolve conflict
- Proven presentation and facilitation skills
- Must excel working in team-oriented roles that rely on ability to collaborate with others
- Experience working successfully in a highly matrixed work environment
- Passion for the Nike brand and for an innovative, Just Do It work environment
分享至
打印
点击这里打印

本网站是为时尚,奢侈品和美容行业的职业人士服务的专业网站。