Cyber Security Specialist

Join an industry leader and make a positive change in the sustainable use of the world’s natural resources. Together, we will transform the business and drive the industry toward a greener future.

At Metso, you will be supported by our inclusive culture and a network of colleagues from around the world. With us, you will embark on a personal growth journey and are encouraged to realize your potential. This is your invitation to rise above the possible.

Job posting end date: 08/30/2024

Introduction

We are seeking a Cyber Security Specialist to join our global IT team. You will be responsible for regional IT security in APAC, responsible for the planning, development, project management, change management, and general operation of the service in the region. You will direct report to the Regional IT Director and assist China IT Manager in all subsequent scope of work assigned or identified not limiting to the role and responsibilities description below.

This position is mainly located in China, but we are happy to offer flexible working arrangements, including hybrid options. // however, it involves up to occasional travel to Australia, India, and other countries in APAC region.

Team you belong to

You will join a team of IT experts dedicated to cyber security field. We are working together on communicating standards, fostering awareness, and addressing current and emerging threats; integrating security seamlessly into every area of IT and working culture within Metso’s team and business.

We work closely with internal // external stakeholders, such as Global security team, and local IT team and business managers. Our team culture is all about team working. The members in our team are located worldwide.

What you’ll do

Manage the regional IT security in accordance with corporate directives, policies and guidelines. Act in line with the corporate strategy with focus on the integrity of IT services for the business. Collaborate with regional, global, and external multidisciplinary teams to maintain highest standard of security in the environment, identify and mitigate risks and threats to operational systems, contribute to the development of security improvements, plan and execute security related projects. Form part of the global Cyber Security team as a regional virtual team member, acting as a service representative for the product in the APAC region. Perform regular reporting of the security status in region to global and regional stakeholders. Implement practices and policies for cyber security and data protection by following various government and industry regulations. Communicate regional plans, demands and improvement areas to global teams for attention, planning and actions. Raise recommendations for identified improvement areas to continuously develop and enhance the global service management. Engage with Country IT Managers, Specialists, Business Analysts, Application Owners, business stakeholders and others, to proactively communicate global directives, roadmaps and programs for awareness, local planning and alignment. Collaborate and support regional efforts and resources with implementation of global security initiatives and improvements in all areas including infrastructure, applications, IT services and awareness training. Participate in the evaluation and development of new and existing IT and OT solutions in region, provide guidance and support to ensure compliance with security and confidentiality of information in accordance with mandatory policies and regulations. Perform analysis of services and advise on best practices with system configuration and security. Coordinate and participate in IT disaster prevention and recovery planning as part of the disaster management and business continuity planning process. Respond to security incidents and compliance breaches in region. Support analysis and investigations to ensure timely recovery and restoration of services. Document events and prepare detailed reports including identified causes, corrective actions, lessons learned. Have ownership responsibility of selected local applications and software packages in region. Be available after hours for on-call response to critical and major incidents, alerts, threats and investigations that may require remote meetings or on-site attendance to ensure prompt assessment, mitigation efforts, and recovery actions.

Who you are

Minimum 7 years experience in IT services and infrastructure. Degree in Information Technology or equivalent level of knowledge gained through combination of education, training and experience; Experience in IT infrastructure management including networking, servers, cloud computing, end-user computing, and mobile devices; Experience in IT security including SIEM, network packet and log analysis, vulnerability scanning, virus defence, forensics, investigation and reporting; Experience with application security management including configuration, access control, auditing and compliance; Leadership and experience in project management and IT services; Excellent verbal and written communication skills in English and Chinese; Demonstrated ability to work flexibly within tight time schedules and in accordance with variable workload demands, manage and prioritize tasks efficiently; Experience in dealing with services provided by third parties; Ability to provide active support in a diverse and large-scale environment; Demonstrated stakeholder management skills in complex matrix environments; Knowledge of escalation procedures with global teams and service towers, incident management and other disciplines related to service delivery; Knowledge of ITIL, SAFe Agile, LPM, PMI and processes; Solid skills in activity and resource planning, decision making and problem solving; Proactive attitude, critical analysis, ability to summarize communication; Demonstrated ability to work flexibly within tight time schedules and in accordance with variable workload demands; Demonstrated success in identifying opportunities for improvement and driving service improvement initiatives; Maintaining high performance levels for service-related processes, and implementing improvement activities wherever necessary.

What's in it for you

An inspiring purpose - Enabling sustainable modern life. Minerals and metals are the backbone of essential functions in the modern world. However, there's a pressing need for more sustainable solutions to collect and process them. At Metso, you get to be part of transforming the industry and making a positive change. Wellbeing and safety - Benefit from occupational healthcare, generous benefits plan, healthy living rewards, mental well-being services, on-site gym, bicycle benefits, and engagement surveys. Compensation and rewards -Global incentive program tied to business and performance targets, car benefits, and meal benefits. Hybrid working possibilities - While we are big advocates of meeting and collaborating in person, we believe in fostering a flexible work environment. A thriving culture - We are committed to developing an inclusive culture that enables everyone to do their best and reach their full potential. A culture that is courageous, compelling, and caring, and unites our people to build a sustainable future together. Extensive learning opportunities - Ongoing growth dialogues, internal mobility, mentoring programs, education assistance, ambitious projects, and global opportunities. Worldwide support - Leverage our network of peers across the world, offering valuable assistance. We get things done together, through open and honest communication.

Introduction

We are seeking a Cyber Security Specialist to join our global IT team. You will be responsible for regional IT security in APAC, responsible for the planning, development, project management, change management, and general operation of the service in the region. You will direct report to the Regional IT Director and assist China IT Manager in all subsequent scope of work assigned or identified not limiting to the role and responsibilities description below.

This position is mainly located in China, but we are happy to offer flexible working arrangements, including hybrid options. // however, it involves up to occasional travel to Australia, India, and other countries in APAC region.

Team you belong to

You will join a team of IT experts dedicated to cyber security field. We are working together on communicating standards, fostering awareness, and addressing current and emerging threats; integrating security seamlessly into every area of IT and working culture within Metso’s team and business.

We work closely with internal // external stakeholders, such as Global security team, and local IT team and business managers. Our team culture is all about team working. The members in our team are located worldwide.

What you’ll do

Manage the regional IT security in accordance with corporate directives, policies and guidelines. Act in line with the corporate strategy with focus on the integrity of IT services for the business. Collaborate with regional, global, and external multidisciplinary teams to maintain highest standard of security in the environment, identify and mitigate risks and threats to operational systems, contribute to the development of security improvements, plan and execute security related projects. Form part of the global Cyber Security team as a regional virtual team member, acting as a service representative for the product in the APAC region. Perform regular reporting of the security status in region to global and regional stakeholders. Implement practices and policies for cyber security and data protection by following various government and industry regulations. Communicate regional plans, demands and improvement areas to global teams for attention, planning and actions. Raise recommendations for identified improvement areas to continuously develop and enhance the global service management. Engage with Country IT Managers, Specialists, Business Analysts, Application Owners, business stakeholders and others, to proactively communicate global directives, roadmaps and programs for awareness, local planning and alignment. Collaborate and support regional efforts and resources with implementation of global security initiatives and improvements in all areas including infrastructure, applications, IT services and awareness training. Participate in the evaluation and development of new and existing IT and OT solutions in region, provide guidance and support to ensure compliance with security and confidentiality of information in accordance with mandatory policies and regulations. Perform analysis of services and advise on best practices with system configuration and security. Coordinate and participate in IT disaster prevention and recovery planning as part of the disaster management and business continuity planning process. Respond to security incidents and compliance breaches in region. Support analysis and investigations to ensure timely recovery and restoration of services. Document events and prepare detailed reports including identified causes, corrective actions, lessons learned. Have ownership responsibility of selected local applications and software packages in region. Be available after hours for on-call response to critical and major incidents, alerts, threats and investigations that may require remote meetings or on-site attendance to ensure prompt assessment, mitigation efforts, and recovery actions.

Who you are

Minimum 7 years experience in IT services and infrastructure. Degree in Information Technology or equivalent level of knowledge gained through combination of education, training and experience; Experience in IT infrastructure management including networking, servers, cloud computing, end-user computing, and mobile devices; Experience in IT security including SIEM, network packet and log analysis, vulnerability scanning, virus defence, forensics, investigation and reporting; Experience with application security management including configuration, access control, auditing and compliance; Leadership and experience in project management and IT services; Excellent verbal and written communication skills in English and Chinese; Demonstrated ability to work flexibly within tight time schedules and in accordance with variable workload demands, manage and prioritize tasks efficiently; Experience in dealing with services provided by third parties; Ability to provide active support in a diverse and large-scale environment; Demonstrated stakeholder management skills in complex matrix environments; Knowledge of escalation procedures with global teams and service towers, incident management and other disciplines related to service delivery; Knowledge of ITIL, SAFe Agile, LPM, PMI and processes; Solid skills in activity and resource planning, decision making and problem solving; Proactive attitude, critical analysis, ability to summarize communication; Demonstrated ability to work flexibly within tight time schedules and in accordance with variable workload demands; Demonstrated success in identifying opportunities for improvement and driving service improvement initiatives; Maintaining high performance levels for service-related processes, and implementing improvement activities wherever necessary.

What's in it for you

An inspiring purpose - Enabling sustainable modern life. Minerals and metals are the backbone of essential functions in the modern world. However, there's a pressing need for more sustainable solutions to collect and process them. At Metso, you get to be part of transforming the industry and making a positive change. Wellbeing and safety - Benefit from occupational healthcare, generous benefits plan, healthy living rewards, mental well-being services, on-site gym, bicycle benefits, and engagement surveys. Compensation and rewards -Global incentive program tied to business and performance targets, car benefits, and meal benefits. Hybrid working possibilities - While we are big advocates of meeting and collaborating in person, we believe in fostering a flexible work environment. A thriving culture - We are committed to developing an inclusive culture that enables everyone to do their best and reach their full potential. A culture that is courageous, compelling, and caring, and unites our people to build a sustainable future together. Extensive learning opportunities - Ongoing growth dialogues, internal mobility, mentoring programs, education assistance, ambitious projects, and global opportunities. Worldwide support - Leverage our network of peers across the world, offering valuable assistance. We get things done together, through open and honest communication.

- - - -

---