职位描述
What you will do:
* Partner with technology Teams to establish an Architecture that meets SWA
technology standard.
* Partner with the SRE team to design a secure infrastructure.
* Develop and ensure security guidelines and best practices are being
followed via technical controls, automation, and auditing.
* Maintain policies and create automation to ensure all systems follow
regulatory security standards and compliance.
* Regularly perform penetration testing and coordinate with engineering teams
to address vulnerabilities.
* Participate in architecture and design reviews to mitigate security and
privacy risks Create hardening standards for our infrastructure to minimize
attack vectors.
* Coordinate compliance audits and assist auditing teams in the automation
and collection of evidence.
* Audit and deploy security tooling for code, network, and resource intrusion
detection systems.
* Triage security alerts and take appropriate action.
* Lead incident response efforts and documentation.
What we look for:
* Min 3 years’ relevant experience, a holder of CISSP / CISM / CISA
Certificate or similar is preferred.
* Solid knowledge of various information security frameworks
* Expertise in data protection laws and practices
* Experience in working in an international and multicultural organization.
* Understand core business processes and associated technical solutions.
* Strong grasp of technology – IT systems, cloud technologies and information
data security, as well as business applications (ERP, HRIS, Finance, Retail
solutions)
* Good communication skills:
* Ability to raw multiple parties into a dialogue
* Ability to educate a non-technical audience about various security measures
and Data Protection requirements.
* Ability to work in a multinational, multicultural environment
multigeneration, using the latest communications methods and with adapted /
hybrid work environments.
* Proactive, able to work independently and under pressure with good
organizational and time management skills
#LI-LL9
#LI-Onsite