本帖最后由slbenben于2017-2-410:09编辑
工作地点:上海 职位:咨询 公司:某全球四大咨询公司 Advisory-Risk-CyberSecurity-Senior Clientresponsibilities ·ParticipateinInformationSecurityandDataPrivacyengagements ·Workeffectivelyasateammember,sharingresponsibility,providingsupport,maintainingcommunicationandupdatingseniorteammembersonprogress ·Helppreparereportsandschedulesthatwillbedeliveredtoclientsandotherparties ·Developandmaintainproductiveworkingrelationshipswithclientpersonnel ·BuildstronginternalrelationshipswithinErnst&YoungAdvisoryServicesandwithotherservicelinesacrosstheorganization
Peopleresponsibilities ·Conductperformancereviewsandcontributetoperformancefeedbackforstaff ·Contributetopeople-relatedinitiativesincludingteambuilding,identificationoftrainingneeds,careerdevelopmentplanning,etc ·Understandandfollowworkplacepoliciesandprocedures
Technicalskillsrequirements ·EnterpriseriskserviceswithaspecificfocusonIT,andrelatedindustrystandards ·CommonITgovernanceandcontrolindustryframeworks,includingCObIT,RiskIT,ValIT,ITindustryframeworkssuchasITILandCMM ·ITassuranceandcompliance ·Abroadappreciationofbusinessprocesses,datastructures,ITapplicationsandinfrastructure,ITprocesses,andgovernanceandinternalcontrolprinciples ·InfrastructureInformationsystemssecurityassessment,design,architecture,implementation,managementandreporting nStrongtechnicalorsecurityskillsrelatedtoabroadrangeofoperatingsystems,databasesorsecuritytools,e.g.,UNIX,Linux,Windows2000andNT,firewallsandIDSsystems ·ExperiencewithprogramminglanguagessuchasJava,C,C++,C#,asp,and.NET lFamiliaritywithsecurityandriskstandardssuchasISO2701-2,PCIDSS,NIST,ITIL,COBIT lExperienceofsecuritytestingmethodsandtechniquesincludingnetwork,operatingandapplicationsystemconfigurationreviewandinternal/externalpenetrationtesting lExperienceofmanualattackandpenetrationtestingaboveandbeyondtherunningofautomatedtools lExperienceindevelopingcustomscriptsorprograms(usedforportscanningandvulnerabilityidentification) ·Applications nAnunderstandingofwebbasedapplicationvulnerabilitiesandexperienceinapplicationsecurityreviewandtesting nAnunderstandingofmobileapplicationvulnerabilitiesandexperienceinmobileapplicationsecurityreviewandtesting nFamiliaritywithsecuritystandardsreferencesuchasOWASP,SANS,NIST nUnderstandingofsecuredevelopmentpracticeandframework Qualifications uBachelor'sDegreeinComputerScience,InformationTechnologyorrelateddisciplines. uAminimumof3yearsrelevantexperienceinInformationTechnologywithatleast2yearsdemonstrableexperienceinpenetrationtestingtosysteminfrastructure,webormobileapplicationsystemsisamust. uSoundknowledgeandexperienceinusingdifferenthackingtoolstoperformfootprinting,enumerationandexploitationofsysteminfrastructure,webandmobileapplications.
欢迎招聘咨询顾问、IT精英人才等请加微信:gogoat或加全国IT求职招聘群:146999050
[p=24,null,left]不想错过高端求职信息?关注我们的微信吧!微信公众号:ITILXF()
圈子决定你的未来,关注IT高端精英圈,人脉+知识+资讯,尽在你掌握!
|