- 目錄
第1篇 信息安全專員職位描述與崗位職責(zé)任職要求
職位描述:
職責(zé)描述:
1、配合基礎(chǔ)設(shè)施經(jīng)理完成整體網(wǎng)絡(luò)安全策劃部署及調(diào)整;
2、完成服務(wù)器架構(gòu)、承載業(yè)務(wù)等安全策略部署及調(diào)整;
3、負(fù)責(zé)信息部相關(guān)安全稽核及管理;
4、領(lǐng)導(dǎo)交代的其他工作。
任職要求:
1、本科(含)以上學(xué)歷,計(jì)算機(jī)相關(guān)專業(yè),1年以上工作經(jīng)驗(yàn);
2、熟悉國家信息安全相關(guān)標(biāo)準(zhǔn)及法律法規(guī),熟悉并能熟練操作配置vmware linu_ cisco ai_ 等主流品牌高可用解決方案。
第2篇 信息安全專員崗位職責(zé)
信息安全專員 中天金融集團(tuán)股份有限公司 中天金融集團(tuán)股份有限公司,中天城投,中天城投集團(tuán)股份有限公司,中天金融,貴陽中天城投,中天 職責(zé)描述:
1、 協(xié)助信息安全經(jīng)理進(jìn)行集團(tuán)信息安全制度的收集、整理、編寫;跟蹤、總結(jié)制度及標(biāo)準(zhǔn)的執(zhí)行情況。
2、 參與推進(jìn)集團(tuán)及各分子公司的信息安全、等保等專業(yè)認(rèn)證工作。
3、 負(fù)責(zé)更新維護(hù)集團(tuán)風(fēng)險(xiǎn)庫,并跟進(jìn)風(fēng)險(xiǎn)消缺情況。
4、 參與集團(tuán)本部信息化安全系統(tǒng)規(guī)劃與設(shè)計(jì)。
5、 協(xié)助信息安全經(jīng)理開展對(duì)集團(tuán)及分子公司的信息安全系統(tǒng)執(zhí)行情況檢查,推進(jìn)安全系統(tǒng)的進(jìn)一步提升。
6、 跟進(jìn)集團(tuán)確認(rèn)的信息安全應(yīng)急方案,參與應(yīng)急演練;安全事件發(fā)生時(shí)參與應(yīng)急處理。
任職要求:
1、 全日制大學(xué)本科及以上學(xué)歷,計(jì)算機(jī)相關(guān)專業(yè)。
2、 具備3年以上信息安全領(lǐng)域的工作經(jīng)驗(yàn),具備金融類企業(yè)工作經(jīng)驗(yàn)優(yōu)先。
3、 熟悉安全管理領(lǐng)域的相關(guān)知識(shí),熟悉iso27001體系知識(shí)、iso22301體系知識(shí)、信息安全等級(jí)保護(hù)知識(shí)體系,擁有cisspcispcisacism等證書者優(yōu)先。
4、 熟悉主流安全產(chǎn)品,有防火墻、ids、ips、病毒防護(hù)等維護(hù)經(jīng)驗(yàn)。
5、 良好的溝通能力、協(xié)調(diào)能力,抗壓能力;能適應(yīng)加班。
第3篇 信息安全專員崗位職責(zé)信息安全專員職責(zé)任職要求
信息安全專員崗位職責(zé)
崗位職責(zé):
1、 定期對(duì)公司各項(xiàng)信息安全工作進(jìn)行檢查,審計(jì)及風(fēng)險(xiǎn)評(píng)估等工作,并出具審查報(bào)告、跟蹤反饋、監(jiān)督整改;
2、 負(fù)責(zé)公司各項(xiàng)信息安全規(guī)范和流程的制定與完善;
3、 負(fù)責(zé)信息安全事件應(yīng)急響應(yīng);
4、 參與信息安全體系建設(shè),并持續(xù)推動(dòng)優(yōu)化;
5、 負(fù)責(zé)公司內(nèi)部的it培訓(xùn);
6、 領(lǐng)導(dǎo)交辦的其他工作。
任職資格:
1、 本科以上學(xué)歷,計(jì)算機(jī)、信息管理等相關(guān)專業(yè)畢業(yè);
2、 三年以上信息技術(shù)從業(yè)經(jīng)驗(yàn),兩年以上運(yùn)維管理相關(guān)經(jīng)驗(yàn)優(yōu)先;
3、 持信息技術(shù)相關(guān)證書優(yōu)先;
4、 學(xué)習(xí)能力強(qiáng),工作嚴(yán)謹(jǐn)細(xì)致,良好的職業(yè)素養(yǎng)和職業(yè)操守;
5、 具有高度的責(zé)任心以及良好的團(tuán)隊(duì)協(xié)作精神,為人誠實(shí)可靠、品行端正。
第4篇 高級(jí)信息安全專員崗位職責(zé)
高級(jí)信息安全專員 崗位職責(zé):
review, interpret, define improvement actions and dispatch the tasks to different technical teams, based on the data sources from but not limited to the below:
1.vulnerability scanning report, audit logs.
2.corporate anti-virus system, corporate software inspector.
3.firewall logs, ids / idp.
4.penetration test, security incidents, microsoft security updates.
5.security threat alerts from the other security organizations.
6.prepare e_ecutive summary reports for the status of the various security systems and incidents monthly and ad-hoc.
7.primary driver or assistant on the regular security scannings in accordance with the gn it security calendar, such as vulnerability scanning, mbsa etc.
8.plan, supervise and participate in the implementation of the security improvements.
9.primary responsible for other security and compliance related activities such as various of audits.
10.operate siem and soc.
11.maintains personal developments on technical knowledge by attending educational workshops; security forums; online resources etc.
12.develop and keep documentations in responsible area updated.
任職要求:
1.fluent in both oral and written english.
2.broad knowledge on infrastructure technologies.
3.5+ years working e_periences in computer science.
4.3+ years working e_periences specialized in it security or closely related area.
5.3+ years working e_perience in multinational corporation is preferred.
6.certificates: ccna + mcse,cisp, cissp. 崗位職責(zé):
review, interpret, define improvement actions and dispatch the tasks to different technical teams, based on the data sources from but not limited to the below:
1.vulnerability scanning report, audit logs.
2.corporate anti-virus system, corporate software inspector.
3.firewall logs, ids / idp.
4.penetration test, security incidents, microsoft security updates.
5.security threat alerts from the other security organizations.
6.prepare e_ecutive summary reports for the status of the various security systems and incidents monthly and ad-hoc.
7.primary driver or assistant on the regular security scannings in accordance with the gn it security calendar, such as vulnerability scanning, mbsa etc.
8.plan, supervise and participate in the implementation of the security improvements.
9.primary responsible for other security and compliance related activities such as various of audits.
10.operate siem and soc.
11.maintains personal developments on technical knowledge by attending educational workshops; security forums; online resources etc.
12.develop and keep documentations in responsible area updated.
任職要求:
1.fluent in both oral and written english.
2.broad knowledge on infrastructure technologies.
3.5+ years working e_periences in computer science.
4.3+ years working e_periences specialized in it security or closely related area.
5.3+ years working e_perience in multinational corporation is preferred.
6.certificates: ccna + mcse,cisp, cissp.