网络信息技术经理工作职责
岗位职责:
采用全面的由上至下的评估方法帮助企业发现其存在的安全漏洞和威胁,并提供具体的技术层面,流程层面和策略上的建议,以减少这些安全漏洞造成损失的可能性。
服务的类型包括:
攻击与渗透测试
安全威胁与漏洞评估
安全基础架构评估
而基础架构测试的领域包含:
外部网络安全(Web应用,网络)
内部网络安全(Web应用,网络)
无线网络安全
远程连入安全
云架构安全
移动设备安全(设备、移动应用、开发代码)
任职要求:
Familiarwith HTTPProtocol;
FamiliarwithOWASPTOP10;
Familiarwithpenetrationtestingtools:burpsuite,appscan,Nessus,Wireshark,NMAP,Metasploit,Backtrack,etc.
Englishreportingskill;
Familiarwithatleast1developingorscriptlanguage(e.g.Java,Python)
Familiarwithatleastonedatabasetechnology(SQLServerorOracle)
Bachelordegreeininformationsecurity/computerscience
Language:Mandarin,canreadandwriteinroutinereportingEnglish
KeyResponsibilities
·Reviewsoftwareapplicationsforpotentialsecurityvulnerabilitiesbyconductingapplicationsecurityreviewsi.e.Requirementsreview,Designreview,CodeReviewandPenetrationtesting,VendorRiskAssessment.
·Understandthebusinessrequirements,evaluatepotentialproducts/solutionsandprovidetechnicalrecommendations.
·Be“handson”withtechnologyandtocontributetothedesign,developmentandsupportofprojectswiththesecurityrecommendations.
·SupporttheCloudsecuritystrategyandimplicationstoassociatedsolutions
·Representatexternalindustryconferencesandshareinsightswithinternalstakeholders
·Fostersecurityawarenesstodevelopercommunitybyrunningtrainingprogrammes.
·Provideleadershipandrepresentthedepartmentatvariousbusinessforums
·ProtectinformationassetsbypromotingtheunderstandingandacceptanceofInformationSecurityPolicyandStandards.
·LiaisonwithDevelopers,Architects,ProjectManagersandVendorstounderstandtheworkingofanapplication,howeffectivelytheyareimplementedandwheresecuritymechanismsareemployed.
·Reviewdesignanddevelopmentartefactstoensuresecurityqualityintheproductsbeingdeveloped.
·ProvidediligentandcompetentservicetocustomersbydeliveringanimpartialandaccurateservicewithIntegrity,honestyandinaccordancewiththeInformationSecurityPolicyandStandards
·Anyothertasksassignedbyyourlinemanager.
ExperienceandQualificationsRequired
·Relatedgraduatedegree
·Atleast5years’experienceworkinginasimilarrole
·Atleast8yearsJavadevelopmentexperiencesinacommercialenvironment
·1-2years.Netdevelopmentexperienceasapluswouldbepreferable
·GoodunderstandingofHTTP,webandmobileprogramming
·IndepthknowledgeofOWASPtoolsandmethodologies
·Knowledgeinapplicationsecurityrelatedmodulessuchasauthentication,authorization,datavalidationandencryptionCreativewithananalyticalbentofmindandproblemsolvingskills.
Securitynetworkconsultant(Location:Dalian)
Responsibility:
·Designanddeploysecuritysolutionsinmulti-vendorenvironments
·Developandimplementdesigns,standardsandpoliciesbasedoncustomersecurityrequirements
·Workonimprovingprocessesandautomationfornetworkinginfrastructureandsupportingsystems
·SignificantexperienceofoperatinginaDesignrole
·Abilitytosimplifyanalysisandpresentresultsclearlyatalllevelsofthebusiness-includingatseniormanagementteamlevel
·Workwithaworldwideteamoninnovationsofsecurityservices
RequiredSkills
·NetworkingengineerwithnetworksecurityknowledgeandexperienceinscriptinglanguagessuchasPython,JavaandPowerShell.
·GoodtohaveSplunk,SIEMandBigDataMiningskills
·Knowledgeofextensivesecurityproductsandhands-ondeploymentknowledgeinNetFlowanalysis,Next-generationfirewall/IPS,IdentityServicesEngine,TrustSec,Websecurity,EmailSecurity,WirelessSecurity,VirtualSecurityandbigdataanalytics.
·SubstantialexperienceinaNetworkEngineerpositionwithanInternetserviceproviderorenterprise-levelnetwork.
·StrongexperienceworkinginaUnix/Linuxenvironmentatsystemsadministratorlevel.
·Knowledgeofnetwork-basedandsystem-levelattacksandmitigationmethods.
·Knowledgeofsystem-levelattacksandmitigationmethodswithacorecompetencyinWindowsandLinux.MacOSXisadesirablebutnotrequired.
·UptodateknowledgeoffuturetechnologiesfornetworksecurityinSecuritydomains
·Abilitytoknowwhentoimplementsolutionsandconsideringtheimpactsi.e.cost,customerimpact,timescales,etc.
·Goodknowledgeinmodernthreatdetectionandanalysismethodologies
·Experienceofworkinginatechnology-basedroleandinterfacingtoavariednumberofinternalandexternalstakeholders
·Excellentwrittenandverbalpresentationskills.
·Extremelystrongtechnicalaccountliaisonandcustomermanagement,consultingskillsaremandatory.
·Atleast10+yearsofsecurityexperienceisrequiredwhichmustincludecustomer-facingrolestogetherwithclearlydemonstrableexperienceofmulti-vendorsolutions.
招聘网络信息技术经理的工资一般是多少
银行大堂经理 ¥4190元
部门经理 ¥10880元
成都商务拓展经理 ¥10180元
上海销售部经理 ¥14570元
临床项目经理pm ¥22390元
技术项目经理 ¥13610元
生产经理 ¥10720元
基金经理 ¥13710元
北京猎头项目经理 ¥16290元
武汉saas软件销售经理 ¥9680元