中级农民
- 积分
- 127
- 大米
- 颗
- 鳄梨
- 个
- 水井
- 尺
- 蓝莓
- 颗
- 萝卜
- 根
- 小米
- 粒
- 学分
- 个
- 注册时间
- 2012-6-5
- 最后登录
- 1970-1-1
|
InfoSec Lead
. .и
Responsibilities
.--
Lead compliance efforts in ISO27001 standards attainment and maintenance
Ability to apply common controls framework for efficient planning of compliance strategy. 1point 3acres
Work with technical teams to achieve compliant solutions with sound engineering principles
Liaison with partner auditing firms to plan, schedule interviews and artifact submission, and drive results to efficient closure
Bug Bounty issue evaluation and recommendations
. ΧDemonstrate integrity by example and pragmatic approach
Modern firewall management - layer 7 and SDN, i.e. Palo Alto Networks
Building monitoring, detection, and alerting systems.
Providing designs and standards for containers and hybrid cloud deployments. From 1point 3acres bbs
Creating and operating security tooling and scripting.
Contribute and communicate practical risk analysis for prioritizations, both for roadmap and emergent issues.
Assist with Product Security guidance and process
Assist with CI/CD and other security tools support
Security Education and Training - preparation of materials and communication through diverse parts of the org. Contribution to security awareness programming.
InfoSec On-Call Rotation. Χ
Requirements
BA/BS degree in a relevant engineering field or equivalent practical experience
Self-organized and comfortable working in a fast-paced environment.
Experience supporting security best practices within a large scale Internet environment.
Experience with network and server hardware, especially SDN and working with Great Firewall.
Experience with various operating systems security - Linux, OSX, Windows, *nix systems and shells, daemons, and processes
Experience with AWS security (IAM, EC2, VPC, S3, etc..) and cloud best practices. 1point3acres.com
Experience with containers (Docker, Windows Server), and specifically container security
Knowledge of cryptography, PKI, TLS as well as practical implementation of the same
Experience with one or more scripting/programming languages. Proficiency in at least one scripting language like Python, shell, or Lua.
Experience with some compliance reporting, esp. In PCI and/or ITGC.
Level Depending On Experience
Auditing or compliance certification
|
|