Current jobs related to Cybersecurity Expert - Shanghai, Shanghai - Cisco
-
Identity and Access Management
5 months ago
Shanghai, China ExxonMobil Full timeAbout us At ExxonMobil, our vision is to lead in energy innovations that advance modern living and a net-zero future. As one of the world’s largest publicly traded energy and chemical companies, we are powered by a unique and diverse workforce fueled by the pride in what we do and what we stand for. The success of our Upstream, Product Solutions and...
Cybersecurity Expert
1 month ago
Cisco is seeking highly skilled Senior Information Security Analysts to join our team. As a key member of our security operations group, you will play a critical role in reducing security incident risks for our businesses.
Key Responsibilities:- Monitor security alerts using Splunk and other security tools, perform thorough investigation and remediation of security incidents.
- Develop and refine detection strategies to identify security threats and anomalies, including custom detection rules, alerts and dashboards in Splunk.
- Stay ahead of emerging cyber threats and trends, and conduct regular threat hunting activities
- Use technical expertise to address security challenges across various platforms, including Cloud environments. (AWS, GCP, Azure, etc)
- Create automation scripts and tools to improve operations.
- Collaborate with IT and DevOps for security integration.
- Assist Threat Hunting Investigators and external support teams in triage and event resolution
- Document cases, triage procedures and findings accurately and thoroughly
- Inform higher-level priorities, improvements and problem resolutions to improve effectiveness.
- Develop security controls and conduct vulnerability assessments.
- Respond to cybersecurity breaches and perform root cause analysis.
- Continuously learn and adapt to new technologies and environments.
Estimated salary: $120,000 - $180,000 per year, depending on experience and qualifications.
Requirements:- Above 5 years relevant working experience with degree in IT / CS / MIS / Information Security or equivalent operational experience (postgraduate degrees are a plus).
- IT technical experience in areas such as IT Infrastructure services (DNS, Web Servers, Email, etc...), Network, Operating Systems (Windows/Mac/Unix)/ Cloud security (AWS, GCP, Azure, etc...), identity management, web application management, security operations, and SIEM technologies (especially Splunk Enterprise).
- Strong knowledge of incident response, security trends, malware, antivirus, threat intelligence, and risk management.
- Detection Engineering Pipeline (and the development of detection rules)
- Experience with automation scripting (Python)
- Ability to work in a high-pressure Global environment, handle Security incidents, and be available for off-hours and on-call shifts.
- Fluent in spoken English and Chinese, documentation & communication skills.
We change the world, one connection at a time. Everything we do is guided by one big goal: to make powerful connections between people and technology that empower a new kind of networked world.