Responsible for:
1. Overall responsible for developing, implementing and monitoring a strategic, comprehensive IT security plan across Enterprise IT and this role will provide the vision and leadership necessary to manage the risk to the business and will ensure business alignment, effective governance, system and infrastructure availability, integrity and confidentiality;and accountable for the planning,solution design, delivery for related security projects
2. Lead to shape enterprise Data&Cyber security related principles, policies, procedure to fullfill the shareholser's requirement and authority/law's requirement, especially where there are regulatory impacts and demands to ensure that the business provided are compliant to applicable regulations.
3. Be able to evaluate&define security architecture (functional level and infra level)and provide strategic risk guidence for IT projects, including evaluation and recommendation of technical controls.
4. Conduct the Cyber and data risk assessment for current business to evaluates potential security breaches, coordinates response, and recommend corrective actions to mitigate and reduce the risks.
5.Maintain a good relationship with shareholder, key stakeholders including business, other IT departments & security teams to deliver on security requirements timely and effectively.
6. Assist the line manager to join the relevant committees and meeting to present and explain cooperate level security projects/compliance status.
7. Provide the expert advice and support to the Goverance Affairs department's communication with relevant Authority and other Audit requirements.
要求
1. Know how for Enterprise security architecture design and related technology, like ISMS,SOC, VSOC, major technology, Data life cyle management etc
2. Solid knowledge latest regulatory and legal requirements on information security, PIPL, CSL, DSL, GDPR, etc. With the deep understanding of current security status and insight of industry trend.
3. Solid knowledge of ISO27001, TSAX, MLPS, SOX or other information security standards
4. Holder of CISSP, CISP and/or CISA, ISO, DPO preferred.
5. Proven experience in management of information security in multi-cloud and hybrid-cloud environments would be an advantage.
6. Experience in data governance, ICV compliance design, and Production security is highly preferred
7. Handson experience on Data Compliance related reporting tasks.
8.With excellent communication skills and teamwork spirit, can actively promote the problem improvement and discovery, with excellent logical analysis ability, the ability to solve complex problems
- 热门职位:
- ETL工程师招聘 DFT工程师招聘 风控算法招聘 技术文档工程师招聘 数字IC验证工程师招聘 性能测试招聘 数据挖掘招聘 有线传输工程师招聘 软件测试招聘 自然语言处理算法招聘 电池工程师招聘 Python招聘 FAE招聘 语音算法招聘 网络工程师招聘 无线/天线工程师招聘 技术合伙人招聘 系统管理员招聘 其他后端开发招聘 自动化测试招聘 Golang招聘 规控算法招聘 运维开发工程师招聘 游戏测试招聘 架构师招聘 iOS招聘 数据开发招聘 C#招聘 .NET招聘 项目助理招聘
- 推荐公司:
- 耀胜 上海幽然 瀚正淼 通明传媒人力资源专员/助理招聘 金华市盛世美家墙纸有限公司招聘 公主岭市鸿运塑业有限公司 武汉中威兴隆贸易有限公司 贵州竹梅文化发展有限公司 北京晟禾商务有限公司 天津蹦床馆管理员招聘 深圳市永骏网络科技有限公司 临沂品牌平面设计师招聘 宿迁市太平洋汽贸有限公司 曹县睿涵家居有限公司 深圳卒先电子商务有限公司 湖南升鸿商贸有限公司 凤阳梦天建筑装饰有限公司 内蒙古鑫鑫农牧业有限公司 深圳市雄远投资管理有限公司 清徐县众兴汽车服务有限公司 湖北淏阳蕲艾制品有限公司 苏州蓓护实业投资有限公司 武汉倩宁商贸有限公司 山西昕亿晟能源科技有限公司 杭州地坤装饰工程有限公司 五山秀企业管理咨询会计招聘 深圳合创源塑胶五金有限公司 山西汇腾源商贸有限公司 北京欧玛文化传播有限公司 开平市力泰五金制品有限公司
更新于:2025-02-08