Chengdu - Manager, Information Security, IT

岗位职责

ServiceLineOverviewInformationTechnologyServices(ITS)isasingle,integratedserviceorganizationwithglobal,nationalandpractice-basedcomponentsthatworktogethertomeetserviceexpectationsanddeliverpriorityprojectstoKPMGChina.AboutTheRoleAsapartoftheSecurityOperationsCentre,youwillworkwithateamofSOCanalyststodeliverprofessionalcybersecurityservices,whichspansthefullrangeofsecuritymonitoring,incidentinvestigation,responseandreporting,threatintelligentandvulnerabilitymanagement,andothersecurityanalyticsfunctions.KeyResponsibilitiesTheroleisresponsibleforthedeterminationandescalationofallprioritizedincidents,thecommunicationwithotherteamsandglobalSOC,aswellasbeingthetechnicalrepresentativewhencallupon.61PrepareandmaintaintheSecurityEventandIncidentResponse(SEIR)Plan61Ensuretheincidentresponseteamhasthenecessarypersonnel,resourcesandskillsetstohandlecybersecurityincidents61Actingasliaisonwithuppermanagementandotherteamsinhandlingsecurityincidents61Ensurethequalityof(24x7)round-the-clocksecuritymonitoringservices61Reviewscopeofincidentimpactandseverity61EvaluatesecurityanalyticssolutionsExperience&BackgroundBachelor’sdegree,withamajorinITorotherrelevantdisciplines.5+yearexperienceinITSecurity/SOC/incidentdetectionandresponsefield.3+yearexperienceinateammanagementrole.HolderofCISSP,CISMand/orCISApreferred.Provenexperienceinincidentdetection&responseinmulti-cloudandhybrid-cloudenvironments.Experienceindataanalytics,processautomation,andapplicationdevelopmentwillbeanadvantage.ProvenexperienceinSIEM,SOARandTIPtools,developandenhanceIRplaybook,securitysolutionsevaluationandrecommendations.TechnicalknowledgeofMITREATT&CK,CyberKillChain,NIST.Experiencewithendpointsecurityproducts,firewalltechnologies,threatintelligence,penetrationtests,informationsecurityprinciplesandpracticeswillbeanadvantage.ExperiencewithChinabrandsecurityvendorswillbeanadvantage.Strongdesiretodevelopandfollowstandardsandprocedures.StrongcommunicationskillsinbothChineseandEnglish.职能类