×
新闻
最新消息
Kantar 奢侈品消费者研究报告:视频“种草”成为主流;超七成消费者会浏览官网
瑞士被选为首届中国消博会唯一主宾国,制表业巨头 Swatch集团将携旗下六个腕表品牌参展
传:比利时奢华皮具老牌 Delvaux 或将被香港冯氏兄弟出售
强者恒强,中国并不是所有奢侈品牌的“金矿”
深度 | SHEIN到底能走多远?
瑞士香精香料巨头 Givaudan 2021开年发展强劲,香氛与美容部门增长9.9%
加州可持续美妆品牌 Biossance 的母公司 Amyris 收购美容人工智能公司 Beauty Labs
万豪旗下精品奢华酒店 EDITION(艾迪逊)两年内将在全球新开八家酒店
MIT研发出新型功能性纤维,水分吸收和蒸发能力都优于传统纤维
正装产能过剩,意大利奢侈男装品牌 Brioni 计划精简成本并裁员320人
Selfridges 和 Primark 背后的时尚零售大亨W. Galen Weston去世,享年80岁
财报速递|欧莱雅中国第一季度收入大涨近38%,但市场已开始感到担忧
英国迎来时尚消费反弹,法国零售协会则称时尚产业被抛弃
法国精品业联合会推出微信小程序,吸引中国年轻消费者
昨天 LVMH的股东大会上,主席Arnault说:2021年的前景“相当乐观”!
突发火灾的 Valentino 制鞋厂获 Prada 援助,铆钉鞋将于下月恢复生产
Dior 这场上海大秀,让我们嗅到了哪些信号?
早报 | 优衣库母公司计划每年在亚洲新增100家店;Gucci大秀微博观看量破3000万
深度 | 商业服饰品牌如何打造闭环?
Gucci、Balenciaga和BV的三角计划
意大利时尚手袋品牌O bag母公司摆脱一场危机:逃税指控被法院撤销
与客户共创,法国环保时尚品牌 Atelier Unes 完成40万欧元融资
分享至
字体大小
aA+ aA-
打印
点击这里打印

Senior Cyber Security Analyst

国家/地区 : 中国 中国

省份 : 上海

城市 : Shanghai

类别 : 物流

合同类别 : 正式员工

工作性质 : 全职

职位描述

Become a Part of the NIKE, Inc. Team
NIKE, Inc. does more than outfit the world's best athletes. It is a place to explore potential, obliterate boundaries and push out the edges of what can be. The company looks for people who can grow, think, dream and create. Its culture thrives by embracing diversity and rewarding imagination. The brand seeks achievers, leaders and visionaries. At Nike, it's about each person bringing skills and passion to a challenging and constantly evolving game.
SECTION 1: WHO ARE WE LOOKING FOR
We're looking for a Senior Cyber Security Analyst. This role must be passionate about GRC. You will work with the business and information technology functions in Nike Geographies to enable Nike's cyber security program, ensure Nike maintaining a security posture commensurate with the risk tolerance while meeting business objectives, and regulatory requirements.
The candidate needs to have strong communication skills, be able to clearly and effectively articulate risks and security recommendations, prioritize and develop appropriate risk and control messages per different audiences. The candidate also needs to have excellent analytical and problem-solving skills, and a strong business acumen to quickly learn new business processes and understand how to provide risk-commercial balanced security advices, help business making risk informed decisions and help Nike stay compliant with relevant laws and regulations.
They should be comfortable working with ambiguity, and able to interface with other internal or external organizations regarding security policy and standards violations, security controls failure, and provide sound risk control recommendations.
SECTION 2: WHAT WILL YOU WORK ON
If this is you, you'll be working with Corporate Information Security team and perform these key tasks:
- Perform and help to lead risk assessments in accordance with the company assessment methodology, and Nike security policies and standards. Perform detailed analysis of threats and vulnerabilities in all areas of information security including network security, asset security, security engineering, identity and access management, security operations and software development security. This also includes reviewing key systems and complex IT infrastructures (e.g. cloud services).
- Champion information security policies, standards, controls, and processes so that compliance requirements are addressed as part of "business as usual" operations. Help lead control design and control operations related in support of compliance requirements. Provide expert level remediation recommendations and/or recommend alternate solutions to resolve gaps against Policy & Standards.
- Leverage knowledge of best practices and industry standards to support of applicable regulatory, policy, standards and legal requirements. Drive and help to lead internal and external compliance requirements and programs, be able to interpret technology (regulatory) requirements e.g. Cyber Security Law requirements, MLPS (Multi-Level Protection Scheme), SOX control requirements, develop and/or follow appropriate processes to keep the organization in compliance and reduce legal liabilities.
- Coordinate various of global and geo Cyber Security functions, such as penetration testing, application security, cyber security engineering, and serve as the liaison of Global and Geo Cyber Security teams for Nike Information Security programs and solutions, and ensure appropriate design and implementation of Cyber security programs, solutions, processes and tools.
- Promote and monitor our corporate security awareness program. Collaborate effectively with NIKE leaders, managers, employees, and partners to provide deliberate and thoughtful engagement throughout Nike.
- Effective, positive verbal and written communication skills and experienced creating and developing high-quality risk assessment reports and other PowerPoint presentations.
SECTION 3: WHO WILL YOU WORK WITH
- Reports directly to the regional Corporate Information Security (CIS) leadership
- Collaborates with regional and global GRC and other CIS functions
- Works with Nike business owners, technology teams, various governance and Legal and Privacy functions

职位要求

SECTION 4: WHAT YOU BRING
- Bachelor's Degree and a minimum of 5 years relevant IT experience, experiences in cyber security risk assessment and risk management or documenting and implementing security policies, standards, and/or controls
- CISSP, CRISC, CISM, CISA, GIAC, CCSP or CCSK or other relevant Information Security certifications beneficial
- Knowledge of information security principles, frameworks, and best practices (e.g., PCI DSS, COBIT, COSO, NIST and ISO 27000).
- Solid understanding of network security, OSI model, and information security architecture, previous work as a security engineer is a plus
- Strong knowledge of incident response and crisis management with the ability to identify both tactical and strategic solutions using strong verbal and written communication skills
- Strong working and technical knowledge of identity and access management and data loss prevention security domains
- Understanding of network, desktop and server technologies, including experience with network intrusion methods, network containment, segregation techniques and technologies such as Intrusion Detection Systems (IDS) and Intrusion Protection Systems (IPS)
- IT Audit, internal Audit and/or risk advisory experience is a plus
- Excellent collaboration skills - must be eager to work as part of a cohesive team and work as a partner to other teams within Nike, Inc., locally and globally
- Exceptional communication skills, including the ability to gather relevant data and information, actively listen, dialogue freely, verbalize ideas effectively, negotiate tense situations successfully and manage and resolve conflict
- Proven presentation and facilitation skills
- Must excel working in team-oriented roles that rely on ability to collaborate with others
- Experience working successfully in a highly matrixed work environment
- Passion for the Nike brand and for an innovative, Just Do It work environment
NIKE, Inc. is a growth company that looks for team members to grow with it. Nike offers a generous total rewards package, casual work environment, a diverse and inclusive culture, and an electric atmosphere for professional development. No matter the location, or the role, every Nike employee shares one galvanizing mission: To bring inspiration and innovation to every athlete* in the world. NIKE, Inc. is committed to employing a diverse workforce. Qualified applicants will receive consideration without regard to race, color, religion, sex, national origin, age, sexual orientation, gender identity, gender expression, veteran status, or disability.
分享至
打印
点击这里打印

类似的招聘信息

本网站是为时尚,奢侈品和美容行业的职业人士服务的专业网站。