- 招聘 : c/c++研发
- 论坛徽章:
- 1
|
SR. SECURITY ENGINEER
(Located in Beijing, China)
Job Description:
You will participate in security audits, risk analysis, vulnerability testing and security reviews of many systems
Responsibilities:
• 5 years of experience in at least one area of information security (software, cryptography, incident response, or web security; or policies and risk management)
• Assist software development teams in threat modeling, design reviews and solving security problems.
• Knowledge of system security vulnerabilities and remediation techniques
• Architect, design, implement, support, and evaluate security-focused tools and services, including project leadership roles
• Develop and interpret security policies and procedures
Basic Requirement:
• 5 years of experience in at least one area of information security (software, cryptography, incident response, or web security; or policies and risk management)
• Assist software development teams in threat modeling, design reviews and solving security problems.
• Knowledge of system security vulnerabilities and remediation techniques
• Architect, design, implement, support, and evaluate security-focused tools and services, including project leadership roles
• Develop and interpret security policies and procedures
• Familiarity with Chinese government security regulations
• Participate in tier 2 and tier 3 security operations support
• Participate in incident response
• Able to work independently with a minimum of supervision
• Fluency in Mandarin/Simplified Chinese and English
• Occasional travel within China and to the United States
Preferred Qualifications
• 4-year university degree, or equivalent, in Computer Science or similar field
• Extensive experience in two or more areas of security.
• Several years’ experience in vulnerability testing and auditing
• Experience working with development team(s) delivering commercial software or software-based services (development, QA testing, or security role)
• A history of delivering security training to business owners and software developers
• Able to carry out acquisition and vendor risk assessment due diligence
• Knowledge of threat modeling or other risk identification techniques
• Development experience in Java, C++ or C
• Scripting skills (e.g., Perl, Python shell scripting)
SR. SECURITY TPM
(Located in Beijing, China)
Responsibilities:
looking for a highly motivated Technical Program Manager (TPM) to lead the continued development of our Payments Security and Compliance program within our Payments Operations organization. The selected candidate will act as a Technical Project Manager (TPM) with an emphasis on security, risk, and compliance initiatives; including external partner security, mechanization of security testing platforms, and operational risk avoidance. This role will be asked to mature existing internal security improvement efforts and to lead security initiatives across the organization and in industry. This role will be implementing, and contributing to, global payment security team's strategy, but it will need to be localized for China specific environment.
The GPS Security and Compliance team is responsible for the security of all of the services offered by GPS. Our team works with internal and external service teams to solve security challenges, and builds tools to automate the auditing and operation of the GPS infrastructure. We are looking for super-smart software and systems professionals to join us and help us continue to raise the security bar for Payments.
In this role you will:
• Own and develop the ongoing Security and Compliance program
• Work proactively with internal stakeholders in various security organizations to enhance the security strategy
• Drive continual improvement and innovation in the management of our compliance controls and processes
• Lead network security focused projects from inception to completion
• Develop security and compliance metrics and communicate performance to technical teams and organizational leadership
• Create mechanisms to improve the efficiency of Payment Security related activities
• Stay current on emerging security threats, vulnerabilities and controls; driving appropriate action when necessary
• Evaluate new and emerging security products and technologies
• Basic Qualifications
• Bachelor's Degree in Computer Science or similar field
• Minimum 8 years in Information Security (analysis, operations, assessments, and remediation)
• Sharp analytical abilities
• Ability to drive results
• Strong sense of ownership, urgency, and drive
• Coordinate and execute security assessments of external partners, assess risks, identify gaps, present solutions, and develop and manage mitigation plans
• Lead the development and interpretation of security policies and procedures
• Lead security compliance efforts (e.g., PCI-DSS, SOX, Audit) and anticipate new compliance requirements
• Fluent in both English and Chinese
• Preferred Qualifications
• Contribute to the development and direction of the Global Payments Security Strategy
• Evaluate new and emerging security products and technologies
• Stay current on emerging security threats, vulnerabilities and controls
• Familiar with Chinese banking systems
• Designing and managing Operational Security Metrics
工作地点北京,有意者请发送CV至以下联系方式,如果合适我们会很快与您联系。
Email:eckofy@163.com
QQ:2369341673 |
|