德勤(Deloitte)
上海 ·咨询 ·1000-9999人
Cybersecurity Manager - 信息技术服部
25-40K
上海
5-10年
本科
全职
职位描述
About the Business
Overall Purpose of the Role
With strong background in both IT and Security areas. You'll use this dual expertise as you work closely with Infrastructure & Operations, and Development team on China Cloud Program to support from Cybersecurity perspective of Cloud First Strategy. You will work with Global security team for security management tools deployment to comply with member firm standard.
Work you'll do
Accountabilities – Key Result Areas
Work as a security SME to address the security concerns in China Cloud Program.
Work with global security team to assess the impacted CAP projects (AIP, SIEM, ARM, PAM, etc.) and localize the CAP services in China.
Support Cloud First strategy from Cybersecurity perspective, work with Development and Infrastructure team members for infrastructure and application migration to cloud.
Contribute to ensure compliance with corporate information security policies, standards and practices as well as liaise with relevant stakeholders, including contractors and vendors.
Security and compliance project management.
IT team, global security team, external security auditor, internal auditor.
A fit for the role? Let's talk about you.
Experience / Qualification Requirements
Certified Information Systems Security Professional (CISSP) or Certified Information Security Auditor/Manager (CISA/CISM) certification is preferred.
Bachelor's degree or above required, preferably in Information security, IT or Management field
5 + years' related security and risk compliance experience.
Managerial Competencies
Strong self-motivation, pro-active, good communication and analytical skills.
Ability to competently articulate risk-based Information security topics to the management.
Good people skills to work with business users and technical teams, independently work with less supervision and under pressure
A desire to challenge the status quo and to drive for continuous process improvement.
Exceptional written and oral presentation skills, both English and Mandarin.
Technical Competencies
Expertise in Information security, risk management, corporate governance and overall business objectives.
Knowledge and experience in networking, system and cybersecurity administration and best practices.
Exposure on cloud platform, cloud security industry best practices would be a plus.Strong analytical skills with a keen attention to detail.
Overall Purpose of the Role
With strong background in both IT and Security areas. You'll use this dual expertise as you work closely with Infrastructure & Operations, and Development team on China Cloud Program to support from Cybersecurity perspective of Cloud First Strategy. You will work with Global security team for security management tools deployment to comply with member firm standard.
Work you'll do
Accountabilities – Key Result Areas
Work as a security SME to address the security concerns in China Cloud Program.
Work with global security team to assess the impacted CAP projects (AIP, SIEM, ARM, PAM, etc.) and localize the CAP services in China.
Support Cloud First strategy from Cybersecurity perspective, work with Development and Infrastructure team members for infrastructure and application migration to cloud.
Contribute to ensure compliance with corporate information security policies, standards and practices as well as liaise with relevant stakeholders, including contractors and vendors.
Security and compliance project management.
IT team, global security team, external security auditor, internal auditor.
A fit for the role? Let's talk about you.
Experience / Qualification Requirements
Certified Information Systems Security Professional (CISSP) or Certified Information Security Auditor/Manager (CISA/CISM) certification is preferred.
Bachelor's degree or above required, preferably in Information security, IT or Management field
5 + years' related security and risk compliance experience.
Managerial Competencies
Strong self-motivation, pro-active, good communication and analytical skills.
Ability to competently articulate risk-based Information security topics to the management.
Good people skills to work with business users and technical teams, independently work with less supervision and under pressure
A desire to challenge the status quo and to drive for continuous process improvement.
Exceptional written and oral presentation skills, both English and Mandarin.
Technical Competencies
Expertise in Information security, risk management, corporate governance and overall business objectives.
Knowledge and experience in networking, system and cybersecurity administration and best practices.
Exposure on cloud platform, cloud security industry best practices would be a plus.Strong analytical skills with a keen attention to detail.
公司介绍
德勤中国是一家立足本土、连接全球的综合性专业服务机构,由德勤中国的合伙人共同拥有,始终服务于中国改革开放和经济建设的前沿。我们的办公室遍布中国30个城市,现有超过2万名专业人才,向客户提供审计及鉴证、管理咨询、财务咨询、风险咨询、税务与商务咨询等全球领先的一站式专业服务。
我们诚信为本,坚守质量,勇于创新,以卓越的专业能力、丰富的行业洞察和智慧的技术解决方案,助力各行各业的客户与合作伙伴把握机遇,应对挑战,实现世界一流的高质量发展目标。
德勤品牌始于1845年,其中文名称“德勤”于1978年起用,寓意“敬德修业,业精于勤”。德勤专业网络的成员机构遍布150多个国家或地区,以“因我不同,成就不凡”为宗旨,为资本市场增强公众信任,为客户转型升级赋能,为人才激活迎接未来的能力,为更繁荣的经济、更公平的社会和可持续的世界而开拓前行。
(重要)招聘声明
德勤中国所有招聘工作均由人力资源部负责组织实施,德勤中国人力资源部在BOSS直聘平台上的授权账号为德勤企业咨询(上海)有限公司,具体招聘信息请以该账号下发布的信息为准,德勤中国从未要求或授权任何第三方机构或个人在BOSS直聘平台发布德勤中国招聘面试或工作机会的信息。请勿向任何第三方机构或个人支付费用或提供个人信息。请广大应聘者通过德勤中国官方网站或BOSS直聘平台德勤企业咨询(上海)有限公司账号下发布的信息了解并参加相关招聘,不要相信任何虚假信息,提高警惕,严防上当受骗。
*德勤中国保留对任何冒用德勤名义进行虚假招聘的不法分子追究法律责任的权利。
我们诚信为本,坚守质量,勇于创新,以卓越的专业能力、丰富的行业洞察和智慧的技术解决方案,助力各行各业的客户与合作伙伴把握机遇,应对挑战,实现世界一流的高质量发展目标。
德勤品牌始于1845年,其中文名称“德勤”于1978年起用,寓意“敬德修业,业精于勤”。德勤专业网络的成员机构遍布150多个国家或地区,以“因我不同,成就不凡”为宗旨,为资本市场增强公众信任,为客户转型升级赋能,为人才激活迎接未来的能力,为更繁荣的经济、更公平的社会和可持续的世界而开拓前行。
(重要)招聘声明
德勤中国所有招聘工作均由人力资源部负责组织实施,德勤中国人力资源部在BOSS直聘平台上的授权账号为德勤企业咨询(上海)有限公司,具体招聘信息请以该账号下发布的信息为准,德勤中国从未要求或授权任何第三方机构或个人在BOSS直聘平台发布德勤中国招聘面试或工作机会的信息。请勿向任何第三方机构或个人支付费用或提供个人信息。请广大应聘者通过德勤中国官方网站或BOSS直聘平台德勤企业咨询(上海)有限公司账号下发布的信息了解并参加相关招聘,不要相信任何虚假信息,提高警惕,严防上当受骗。
*德勤中国保留对任何冒用德勤名义进行虚假招聘的不法分子追究法律责任的权利。
上海黄浦区外滩中心外滩中心26
面试经验
匿名用户
面试德勤(Del的资产评估·上海
感觉没戏
还可以,题目不是很难,主要是根据简历问了一些动机和未来发展的问题。
查看更多面经(879)
相似职位
