Senior Cybersecurity Engineer

 Job Summary 

We are seeking a highly skilled Senior Cybersecurity Engineer with over
5 years of experience in cybersecurity to join our dynamic team. The ideal
candidate will have a proven track record in designing and implementing
comprehensive information security systems, conducting risk assessments, and
managing security operations. This role involves strategic planning, project
management, and operational optimization to ensure robust protection across
enterprise systems, networks, and data. 

Key Responsibilities  

1. Strategic Planning and Framework Development:  

• Lead the design and implementation of an
  organization-wide information security management system, including
  policies, standards, and risk monitoring frameworks. 
• Drive compliance with international standards
  like regional information security regulations (e.g., Cybersecurity
  Classified Protection). 
• Develop and enforce full lifecycle security
  standards to enhance risk prediction and mitigation capabilities.  

1. Project Management:  

• Oversee end-to-end management of critical
  cybersecurity projects, including Security Operations Center (SOC)
  enhancements, Data Loss Prevention (DLP), honeypot deployments,
  zero-trust architecture, secure DNS, and network traffic analysis. 
• Conduct vendor evaluations, requirement
  analyses, system testing, project approvals, and delivery to ensure
  successful implementation of security solutions. 
• Coordinate with cross-functional teams to align
  security initiatives with organizational strategies.  

1. Security Operations and Optimization:  

• Manage and optimize SOC platforms, antivirus
  systems, data auditing and desensitization tools, and Web Application
  Firewalls (WAF). 
• Perform real-time analysis and response to
  security alerts, dynamically adjusting protection strategies. 
• Design and implement automated WAF blocking
  processes for IDC and private cloud environments. 
• Conduct regular vulnerability scans (host, web,
  and baseline) and ensure timely remediation of vulnerabilities identified
  by regulatory bodies.  

1. Emergency Response and Incident Management:  

• Lead incident response for intrusions, malware,
  malicious attacks, and unauthorized domain requests, producing detailed
  response reports. 
• Develop and execute emergency response plans,
  including simulations for ransomware and unauthorized access scenarios. 
• Collaborate with development and operations
  teams to address and resolve security incidents efficiently.  

1. Research and Innovation:  

• Stay updated on emerging cybersecurity threats
  and technologies, integrating cutting-edge solutions into the
  organization’s security posture. 
• Contribute to security technology research and
  the adoption of advanced tools to address evolving risks.  

Qualifications  

• Education: Bachelor’s degree in information engineering,
  Computer Science, Cybersecurity, or a related field. 
• Experience: Minimum of 5 years of professional experience
  in cybersecurity, with expertise in security planning, risk assessment,
  and operational management. 
• Technical Skills:  
• Deep understanding of enterprise-grade
  information systems and technical architectures. 
• Proficiency with mainstream security products
  (e.g., SOC, DLP, WAF, honeypots, zero-trust solutions). 
• Experience with vulnerability scanning, network
  traffic analysis, and secure DNS implementation. 
• Familiarity with cloud security (e.g., Alibaba
  Cloud, Huawei Cloud, or hybrid cloud environments).