职位:security manager
地点:上海
- Ensure security strategy alignment with business strategy for corporate
- Drive security, risk and Compliance in line with corporate Security Policies and procedures.
- Manage internal security audits and facilitate external audits (ISO 27001, Corporate audits etc.)
- Review and evaluate the system of management controls, assess their adequacy & effectiveness and recommend methods for improvement
- Perform periodic review and identify gaps and drive efforts with Business team for closure of security gaps.
- Tracking and closure of vulnerabilities identified during the Penetration testing.
- Immediate plan for Antivirus and patch management
- All critical systems need to be identified after discussion with business owners from a Business Continuity perspective.
- Ensuring completion of new operation acceptance security checklist completion by vendors before go ahead from IT side. Security templates (ACD/ICD) to be shared with IT which vendors must complete.
- Identification of critical systems which require logs review and monitoring.
- Compilation of list of risks and ensure & maintain the Risk Register
- Security Policy exception with risk mitigation process should be implemented for all IT deviation cases.
- Ensure compliance to Security Incident Management.
- Plan and oversee Backup strategy and plan from security governance perspective.
- Preparation of China Security manual document.
- Conduct of regular security awareness is to be conducted for all business and IT users.
- Good in communication with Mandarin & English.
联系人:微信 terry2656590
欢迎招聘咨询顾问、IT精英人才等请加微信:gogoat 或加全国IT求职招聘群:146999050
不想错过高端求职信息?关注我们的微信吧!微信公众号:ITILXF ()
圈子决定你的未来,关注IT高端精英圈,人脉+知识+资讯,尽在你掌握!
|