外资零售快消集团
Infrastructure Security Architect
时装零售
网络安全
上海
10年以上
本科
面议
职位描述
• Develop and sustain security architectures for cloud environments (e.g., Tencent Cloud, Azure, GCP), ensuring robust protection against cyber threats and alignment with industry best practices and regulatory requirements.
• Perform risk assessments and security evaluations across infrastructure components, including Cloud IaaS/PaaS services, physical data centers, operating systems, networks, and storage systems.
• Lead the implementation of defense in depth strategies by integrating layered security controls across networks, systems, and endpoints.
• Design and deploy IAM solutions such as role based access control, privileged access management, and identity federation.
• Assess, select, and implement infrastructure security technologies and tools.
• Deliver training and expert guidance on infrastructure security best practices.
• Work closely with IT, Security Operations, and Security Governance teams to remediate vulnerabilities and support incident response.
• Continuously track emerging threats, new technologies, and regulatory developments relevant to infrastructure security.
职位要求
• Minimum of 8 years of experience in infrastructure security, cloud security, or IAM.
• Strong expertise in cloud security architecture, IAM design, and defense in depth methodologies.
• Practical experience designing, deploying, and operating security solutions such as EDR, CSPM, WAF, PAM, SIEM, and SOAR.
• Familiarity with major information security frameworks (ISO27001, ISO27701, NIST CSF) and cloud security standards (CSA, CIS Benchmarks).
• Preferred certifications include CCSP, CISSP, and cloud security credentials (AWS/Azure Security).
• Additional cloud and infrastructure certifications (AWS, Azure, Linux, Windows, VMware, Cisco) are advantageous.
• Degree in IT, Information Security, Computer Science, Software Engineering, or a related discipline.
• Proactive, adaptable, and committed to staying informed about evolving threats and technologies.
• Strong communication skills, capable of explaining complex security concepts to both technical and non technical audiences.
• Ability to manage multiple priorities, organize work effectively, and drive tasks or projects to completion.
• Able to work independently as well as collaboratively within a team.
• Highly motivated with a strong sense of responsibility and ownership.
咨询顾问
Shawn Cong
团队经理-IT & Cyber Security
分享