亚马逊Customer Incident Response Program Manager, Global Services Security
任职要求
基本任职资格 - 8+ years of program or project management experience - Experience using data and metrics to determine and drive improvements - Experience owning program strategy, end to end delivery, and communicating results to senior leadership - 5+ years of Program or Project Management experience managing enterprise-level projects and continuous improvement programs in the Security domain. - Program or Project Management Professional Certification 优先任职资格 - 2+ years of driving process improvements experience - Master's degree, or MBA in business, operations, human resources, adult education, organizational development, instructional design or related field - Experience in owning cross-team security implementation programs inclusive of metrics, communications and prioritization. - Experience driving operational security and secure software development lifecycle programs. - Experience working in a security operations environment. - Have at least one active project or agile management certification. - AWS experience and/or relevant certifications. Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.
工作职责
• A proven track record of implementing, delivering large projects and communicating effectively at executive level • Manage a portfolio of critical security offerings and services that are internal and external facing • Excellent program and project management skills, with the ability to work in a fast-paced environment • Effective prioritization of tasks, and seamless operation across organizational boundaries • Building and deploying training programs for all users in the Greater China Region • Brief customers on AWS CIRT and AWS Security Incident Response service • Continuously prioritize risk for service teams, security teams, and executive leadership • Collaborate with business/service teams to understand and confirm security assessment scope and controls design
KEY PURPOSE OF ROLE The Country Security Lead (CSL) for ASML China acts as the local representative of the ASML CISO and protects and secures ASML’s Intellectual property, digital assets and technologies in China, in line with ASML’s Security strategy. The CSL for China develops and implements comprehensive security roadmaps for China, in close alignment with the local sector 1st line Security Risk Managers and the central 2nd line security team, to protect sensitive data against cyber and physical threats and ensures compliance with relevant regulations. ASML manages 1st line security via the sectors which creates a challenge on country level where multiple sectors can be represented. To manage security from a country point of view with local security risk managers reporting into the central sector SRM’s, ASML set up a Virtual Security Team (VST) to bring all relevant (security) representatives together in one virtual team to manage jointly security for China. The CSL forms and drives the Virtual Security Team (VST) in China, consisting of China’s first and second line security representatives and other relevant stakeholders, to improve the level of security maturity in China and report progress to the country’s Management Team. KEY RESPONSIBILITIES Overall: responsible for managing the China security organization on behalf of the CISO of ASML, driving the development and delivery of security services in China. Challenge and verify the adequate performance of security controls in China, against ASML and China risk appetite and as executed by the first line of responsibility in the sectors in China. Strategy: execute the central security strategy as determined by the CISO and adding country specific aspects to it to improve security maturity. Risk management: Collaboration with the 1st line sector SRMs to identify, assess and mitigate security risks, overseeing and reporting via the China Virtual Security Team (VST). Identify improvement opportunities together with the 1st line sector SRMs’ and the 2nd line team in terms of processes and activities. The CSL provides necessary support for improvements and will act in a pivotal role to bring (security) teams together where needed Incident response: overseeing the development of country specific response plans, assuring the timely and thorough handling of security indents under coordination of the central Security Operations Centre Compliance oversight: ensuring adherence to centrally determined or country specific laws and regulations related to information security. Team leadership & capability building: act on behalf of the CISO of ASML and work closely together with the 1st line country SRM’s to define and execute a joined security roadmap for China. Assure the capabilities as required by the central Second Line Security, Intelligence Fusion Centre and Security Operations Center teams are developed and maintained, as well as organizing Security activities related to risk culture and awareness initiatives. Will drive the preparation of a uniform reporting out to the China Country Management Team and align with the CISO and the VST team the agenda for these meetings. Stakeholder engagement: Providing regular updates, in alignment with the local first line sector Security Risk Managers of the VST, to senior management in China on the status of information security in China and the central information security program. Considering the given governance, this will always be in alignment with the respective 1st line SRM. Providing the general security training to all China staff to improve their awareness Some travel will be required to other ASML offices in China, and abroad (+/- 15%) KEY WORKING RELATIONSHIPS External: Security Vendors, Customers, Suppliers, (always in alignment with local account management and procurement teams, Industry Peers and Forums) Internal: ASML China IT, local ASML Sector Security Functions, RBA&S, Legal, Sectors
N/A
L1 SOC monitoring (24x7 shift basis) ● L1 SOC monitoring of security alerts 24x7 utilising SIEM, EDR tools, and intrusion detection systems (IDS/IPS) ● Analyse logs, network traffic, end point data or other source logs to identify suspicious activity or indicators of compromise (IoCs). ● Triage and prioritize alerts based on severity, impact, and organizational risk, and perform required escalations and mitigations Incident response ● Perform containment and mitigation actions for incidents. Escalate confirmed or high-risk incidents to L2/L3 analysts or incident response teams. ● Collate required information to complete incident documentation and report if necessary. Governance ● To support the Security GRC team during regulatory inspection, external audit, customer queries, security certificate programs, and internal audit projects to ensure compliance with regulations and customer requirements. ● Perform due diligence to assess the information security posture of our third parties ● Support in any on-site assessments of our third party / outsourced parties Vulnerability & threat intelligence: ● Stay updated on emerging threats through threat intelligence
THE ROLE This role will be a support engineer within the Tesla IT Infrastructure Engineering & Operations department. The Sr. Incident Response Engineer will be coordinating with cross-functional engineering teams for Incident Response & Management in terms of the high availability to Tesla Manufacturing, Business Operations, Customer Service & Experience. We help to reduce the occurrence of incidents by using efficient IT Operation monitoring, effective risk analysis and professional team collaboration. The Tesla APAC Incident Response Center is a growing team consist of professionals from diverse backgrounds, which will offer you a fantastic development environment. This role will be based on Giga Factory Shanghai, China but will provide support to Tesla Business globally considering of the growing business & great mission. RESPONSIBILITIES • Independently lead incident response and management to minimize impact and ensure optimal response times. Develop incident response plans, conduct post-mortem analyses, and organize drills to enhance preparedness. • Drive IT service management projects. Establish/optimize SOPs to reduce inter-team communication barriers, promote technical knowledge sharing, and improve team incident response capabilities. • Monitor IT infrastructure and data center operations, including servers, networks, and applications. Analyze real-time stability metrics, mitigate risks, and deliver regular operational analysis reports. • Proactively enhance team efficiency through tool automation, process refinement, and adoption of industry best practices. Support daily operations and foster a culture of continuous improvement. • Oversee infrastructure changes to minimize risks, streamline approval workflows, and ensure compliance with change management protocols.