×
新闻
最新消息
​深度 | LV的成长
想要重新定义奢侈品的VTMNTS会成功吗?
法国香水生产商 Inter Parfums 去年净销售额增长30%,突破10亿美元大关
中国连开五店,意大利奢侈品牌 Etro 被LVMH旗下基金控股后发生了哪些变化?
早报 | 海南离岛免税店春节总销售破25亿;NikeLab项目或以失败告终
深度 | Schiaparelli的焦虑
人事六则|苏富比亚洲区和中国区任命高管;The RealReal 任命新CEO;Fabiana Filippi、Calvin Klein 等高管任命
野心毕露,卡戴珊紧身衣品牌抢来Moncler高管
早报 | 上海恒隆广场去年销售额大跌24%;抵制代购或令LVMH旗下品牌单店收入减少一半
深度 | Nike与Tiffany的联名球鞋能打动消费者吗?
Nike 起诉潮牌 BAPE 抄袭其经典鞋款,称:“几乎就是1比1的复制”
Prada集团正式迎来新任CEO,最新文件披露其薪酬水平
LVMH集团主席罕见表态:坚决与“代购”作斗争,不惜付出高昂代价
突发 | Gucci任命Valentino成衣设计师为创意总监
财报速递 | LV去年收入首次破200亿欧元
传奇豪华列车品牌“东方快车”将进军海洋,打造世界上最大的帆船邮轮
路易威登将于3月推出首个婴儿系列
宝马集团2022年度在中国交付79.2万台汽车,劳斯莱斯全球销量创历史新高
占据全球美容市场14%份额,欧莱雅集团表示将“继续有效地投资品牌”
工艺、设计、可持续:在 Pitti Uomo 男装展上捕捉家居行业的“新迹象”
曾与LV、迪奥和宝格丽合作的艺术家严培明与轩尼诗联袂推出十二生肖巨幅画卷庆贺春节
分析称Burberry中国业务下滑将结束,第三财季收入增长5%
地址
Shanghai, SH, CN
分享至
字体大小
aA+ aA-
打印
点击这里打印

sr Information Security Analyst

国家/地区 : 中国 中国

省份 : 上海

城市 : Shanghai

类别 : 物流

合同类别 : 正式员工

工作性质 : 全职

职位描述

Job Description:

The position of Information Security Analyst will report to the Director of Information Security and is responsible for supporting corporate information security initiatives to ensure the protection of the company's information assets. The Information Security Analyst will be responsible for performing regular operational security functions, ongoing compliance-related activities, and conduction security assessments across various technologies. This position will serve as a project member on multiple projects simultaneously and will interact regularly with technical subject matter experts.

The ideal candidate will hold a Bachelor's of Science degree in Information Security and have at least 4 years of experience in a Security or Technology role. The candidate must possess a strong understanding of the role of Information Security Policies and Standards and a strong understanding of vulnerability management including penetration testing, and risk frameworks.

Responsibilities Include, but Are Not Limited to:

  • Execution of information security reviews against infrastructure, applications, and vendor services (cloud platforms).
  • Vulnerability identification and remediation
  • Execution of security root cause analysis and forensics as part of the enterprise's Cyber Incident Response Plan.
  • IT compliance monitoring and issue lifecycle reporting.
  • Familiarity with Chinese Cybersecurity Law
  • Support multiple Information security projects, including; Administrator Activity Monitoring, Security Event and Incident Management, and General Security Administration.
  • Support the Global Privileged Access Entitlement Review Process.
  • Coordinate activities of vendors performing penetration tests.
  • Participation in various programs and initiatives supporting the further implementation of the company's Information Security Policies and Standards.
Requirements and Qualifications

  • Strong foundation in information technology and information security principles.
  • Strong knowledge of current security threats, techniques, and landscape, as well as a dedicated and self-driven desire to research current information security landscape.
  • Experience in threat modeling to identify risks posed by new technologies or implementations.
  • Familiarity with forensic tools used as part of security event investigations.
  • Possession of or ability to obtain professional certifications in information security or risk management, such as a CISSP, CEH, CISM or CRISC.
  • Basic knowledge of security and control frameworks, such as NIST CSF, ISO27001/2, COBIT, ITIL, and CIS.
  • Interpersonal and collaborative skills and the ability to communicate security and risk-related concepts to technical and nontechnical audiences.
  • Innovative, creative, curious and passionate about security and information technology.
  • High degree of initiative, dependability and ability to work with little supervision.
  • Proficiency in Office365 tools and collaboration technologies.
  • Ability to formulate a clear and actionable plan and execute against it.
分享至
打印
点击这里打印