面議(經常性薪資達4萬元或以上) 台北市內湖區 10年工作經驗 今天剛更新
Responsibilities
Security assessment
perform vulnerability scanning and penetration testing against real services & environments in a controlled way
inspect and establish tenant security boundaries within multi-tenant cloud services (IaaS, PaaS, SaaS, …)
assess the security risks of AI models and data sets
evaluate security architecture design and processes against OWASP Top10s, MITRE ATT&CK/D3FEND, NIST standards, ATLAS for AI systems and other security frameworks
Infrastructure security design
define and revise infrastructure security zoning/segregation based on the real applications carried
design the security architecture with functions related to firewall, IPS, WAF in on-prem, cloud or hybrid environments
provide solutions to detect and deter the compromising and lateral movement in production environments
provide solutions to mitigate L3/L4 and L7 DDoS attacks from the Internet
manage vulnerabilities and countermeasures from application/code, networking, system, and firmware levels continuously
provide information security guidelines and practices for operations reference
Security operations
act as the technical escalation point during incident response for infrastructure-layer compromises
conduct internal training for information security concepts, techniques, and awareness
Regulation compliance
get and maintain the production environment certified for ISO27000 family, ISO27701 or similar while leveraging external parties.
Competence
Must have (80% or more)
strong understanding of web security and API security
strong understanding of system security in regards of OS (Linux and Windows Server) and server virtualization (hypervisors, containers, Kubernetes, …) hardening
strong understanding of data encryption and signing algorithms and tools for data at rest and data in transit
strong understanding of the tools for penetration testing including Nmap, Burp Suite, Metasploit, Cobalt Strike or similar
strong understanding of security observability, logging, auditability, SIEM integration, and compliance-driven monitoring architectures
good understanding of hardware and firmware security including BMC/IPMI hardening, UEFI/Secure Boot, TPM-based attestation, supply chain integrity verification
good understanding of identity management protocols and tools including Kerberos, LDAP/AD, OAuth2/OIDC, PAM
good understanding of authentication and authorization models including RBAC and ABAC
good understanding of modern global-scaled SP infrastructure design and data center design in regards of Internet access, networking, system, and storage
good understanding of CDN, public/private cloud architecture
familiar with one or more of information security compliance frameworks including ISO27001, SOC 2, NIST SP 800-53
familiar with at least one kind of scripting or programming languages for automating the security countermeasures
strong problem-solving and risk management skills
ability to write clear technical assessment reports and executive-level risk summaries
展開