Current jobs related to Cybersecurity Expert - Shanghai, Shanghai - Cisco


  • Shanghai, China ExxonMobil Full time

     About us At ExxonMobil, our vision is to lead in energy innovations that advance modern living and a net-zero future. As one of the world’s largest publicly traded energy and chemical companies, we are powered by a unique and diverse workforce fueled by the pride in what we do and what we stand for. The success of our Upstream, Product Solutions and...

Cybersecurity Expert

1 month ago


Shanghai, Shanghai, China Cisco Full time

Cisco is seeking highly skilled Senior Information Security Analysts to join our team. As a key member of our security operations group, you will play a critical role in reducing security incident risks for our businesses.

Key Responsibilities:
  • Monitor security alerts using Splunk and other security tools, perform thorough investigation and remediation of security incidents.
  • Develop and refine detection strategies to identify security threats and anomalies, including custom detection rules, alerts and dashboards in Splunk.
  • Stay ahead of emerging cyber threats and trends, and conduct regular threat hunting activities
  • Use technical expertise to address security challenges across various platforms, including Cloud environments. (AWS, GCP, Azure, etc)
  • Create automation scripts and tools to improve operations.
  • Collaborate with IT and DevOps for security integration.
  • Assist Threat Hunting Investigators and external support teams in triage and event resolution
  • Document cases, triage procedures and findings accurately and thoroughly
  • Inform higher-level priorities, improvements and problem resolutions to improve effectiveness.
  • Develop security controls and conduct vulnerability assessments.
  • Respond to cybersecurity breaches and perform root cause analysis.
  • Continuously learn and adapt to new technologies and environments.

Estimated salary: $120,000 - $180,000 per year, depending on experience and qualifications.

Requirements:
  • Above 5 years relevant working experience with degree in IT / CS / MIS / Information Security or equivalent operational experience (postgraduate degrees are a plus).
  • IT technical experience in areas such as IT Infrastructure services (DNS, Web Servers, Email, etc...), Network, Operating Systems (Windows/Mac/Unix)/ Cloud security (AWS, GCP, Azure, etc...), identity management, web application management, security operations, and SIEM technologies (especially Splunk Enterprise).
  • Strong knowledge of incident response, security trends, malware, antivirus, threat intelligence, and risk management.
  • Detection Engineering Pipeline (and the development of detection rules)
  • Experience with automation scripting (Python)
  • Ability to work in a high-pressure Global environment, handle Security incidents, and be available for off-hours and on-call shifts.
  • Fluent in spoken English and Chinese, documentation & communication skills.
About Cisco:

We change the world, one connection at a time. Everything we do is guided by one big goal: to make powerful connections between people and technology that empower a new kind of networked world.