蚂蚁金服Ant International-Security Operations Lead-Anext Bank
任职要求
- BS/MS in Computer Science / Cybersecurity with 5 years and above relevant experience in security operations, incident response, or other cybersecurity roles; startup experience is a plus. - Proven track record of managing outsourced security services like SOC, MDR, or threat detection providers. - Experience solutioning and incorporating technical security controls align with industrial framework and regulatory requirements such as NIST CSF framework, MAS TRMG, MAS Cloud Advisory. - Experience in developing processes and playbooks for a growing organization. - Hands-on experience deploying, operating, automating security systems. - Expertise in threat intelligence, vulnerability management, and coordinating threat response initiatives. - Excellent analytical and problem-solving capabilities with attention to detail. - Strong understanding of cloud security (AWS, Azure, GCP) and DevSecOps practices, Ali Cloud experience is a plus. - Ability to communicate technical concepts clearly to non-technical stakeholders. - Strategic thinker with the ability to prioritize tasks and manage competing demands in a fast-paced startup environment. - Relevant certifications, such as CISSP, CISM, CEH, or equivalent.
工作职责
- Lead the security operations function aligned with organizational goals and risks appetites, and collaborate with other security functional teams to enhance protection measures and overall security posture. - Develop and maintain the organization’s incident response playbooks and security operational runbooks. - Manage outsourced service providers, including intra-group outsourcing arrangements and other third-party vendors. Perform regular evaluations of vendor performance and oversee Service Level Agreements (SLAs). - Ensure high performance, accountability, and compliance from all outsourced providers while optimizing costs. - Lead the organization’s incident response efforts, working closely with internal teams and external partners during security events. - Conduct detailed investigations into security breaches and anomalous activities, and provide insights for remediation and improvement. - Communicate actionable insights and updates on the evolving threat landscape to relevant stakeholders. - Identify and implement new technologies, tools, and methodologies to enhance security operations efficiency and effectiveness. - Provide regular reporting to leadership and other functional heads on security operations metrics and trends.
1. Physical Security:• Develop and maintain physical security standards and procedures for all facilities.• Manage access control systems, surveillance technologies (CCTV), detection, and perimeter security.• Coordinate site risk assessments and implement corrective measures.• Oversee security contractors and ensure compliance with service-level agreements. 2. Security Operations Center (SOC):• Lead 24/7 monitoring of incidents, threats, and emergencies affecting personnel, facilities, and operations.• Manage incident reporting, escalation protocols, and real-time response coordination.• Ensure SOC integration with emergency services, crisis response, and business continuity teams.• Maintain incident tracking systems and dashboards with KPIs and performance reports. 3. EHS (Environment, Health & Safety):• Implement EHS programs aligned with local regulations and global standards.• Conduct safety audits, risk assessments, and compliance inspections.• Promote a safety culture through training, awareness campaigns, and best practice sharing.• Lead investigations of EHS-related incidents and ensure timely reporting and corrective actions. 4. Risk Management & Compliance:• Identify and assess security and safety risks across operations.• Ensure adherence to applicable laws, regulations, and industry best practices.• Develop and test emergency response plans, including fire drills, evacuation procedures, and crisis simulations. 5. Stakeholder Engagement & Reporting:• Prepare regular reports and presentations for senior leadership on security performance, incident trends, and risk posture.• Support cross-functional projects requiring security and safety input.
Join NVIDIA’s Security Team as Manager of our China Security Operations Center (SOC), safeguarding the discoveries that power AI, accelerated computing, autonomous machines, and gaming worldwide. Based in mainland China, you will lead analysts who detect, investigate, and contain threats. Your blend of technical depth and empathetic leadership will keep local operations fully aligned with PIPL and other relevant Chinese cybersecurity regulations while sharing intelligence with NVIDIA’s global defenses wherever lawful. Harnessing short Scrum cycles, you’ll drive rapid improvements—from tuning detections to automating playbooks—so every sprint delivers measurable risk reduction. If decisive action, analytical grit, and cross‑functional collaboration excite you, we invite you to craft the future of security at NVIDIA. Resilience emerges where clarity, speed, and trust converge! Ready to convert expertise into agile defenses that keep NVIDIA’s innovations safe?You lead with confident vitality, turning sophisticated threats into clear, time‑boxed objectives and empowering your team to act. Anchored in Agile values, you favor individuals and interactions, working solutions, and fast feedback—ensuring each sprint delivers customer value without sacrificing real‑time response. Data grounds your decisions, passion energizes partners, and steady support nurtures growth even as you set the standard. What you’ll be doing: • Guide, mentor, and develop SOC analysts in China, encouraging a high‑performance, inclusive culture. • Architect and continuously improve monitoring, detection, and response across on‑prem, hybrid, and multi‑cloud environments and protect GPU‑accelerated AI/ML pipelines. • Run the team in Scrum: facilitate planning, stand‑ups, reviews, and retrospectives; maintain a transparent backlog ordered by risk reduction and customer value. • Embed PIPL and other relevant Chinese cybersecurity regulations into day‑to‑day SOC processes, partnering with Legal and Compliance teams while supporting global collaboration where permissible. • Define, track, and act on metrics (MTTD, MTTR, sprint velocity) and operate staffing/on‑call schedules that balance 24 × 7 coverage with follow‑the‑sun hand‑offs. • Evaluate and integrate China‑compliant security tooling and automation, sharing threat intelligence and capabilities with the wider NVIDIA SOC as regulations allow.
KEY PURPOSE OF ROLE The Country Security Lead (CSL) for ASML China acts as the local representative of the ASML CISO and protects and secures ASML’s Intellectual property, digital assets and technologies in China, in line with ASML’s Security strategy. The CSL for China develops and implements comprehensive security roadmaps for China, in close alignment with the local sector 1st line Security Risk Managers and the central 2nd line security team, to protect sensitive data against cyber and physical threats and ensures compliance with relevant regulations. ASML manages 1st line security via the sectors which creates a challenge on country level where multiple sectors can be represented. To manage security from a country point of view with local security risk managers reporting into the central sector SRM’s, ASML set up a Virtual Security Team (VST) to bring all relevant (security) representatives together in one virtual team to manage jointly security for China. The CSL forms and drives the Virtual Security Team (VST) in China, consisting of China’s first and second line security representatives and other relevant stakeholders, to improve the level of security maturity in China and report progress to the country’s Management Team. KEY RESPONSIBILITIES Overall: responsible for managing the China security organization on behalf of the CISO of ASML, driving the development and delivery of security services in China. Challenge and verify the adequate performance of security controls in China, against ASML and China risk appetite and as executed by the first line of responsibility in the sectors in China. Strategy: execute the central security strategy as determined by the CISO and adding country specific aspects to it to improve security maturity. Risk management: Collaboration with the 1st line sector SRMs to identify, assess and mitigate security risks, overseeing and reporting via the China Virtual Security Team (VST). Identify improvement opportunities together with the 1st line sector SRMs’ and the 2nd line team in terms of processes and activities. The CSL provides necessary support for improvements and will act in a pivotal role to bring (security) teams together where needed Incident response: overseeing the development of country specific response plans, assuring the timely and thorough handling of security indents under coordination of the central Security Operations Centre Compliance oversight: ensuring adherence to centrally determined or country specific laws and regulations related to information security. Team leadership & capability building: act on behalf of the CISO of ASML and work closely together with the 1st line country SRM’s to define and execute a joined security roadmap for China. Assure the capabilities as required by the central Second Line Security, Intelligence Fusion Centre and Security Operations Center teams are developed and maintained, as well as organizing Security activities related to risk culture and awareness initiatives. Will drive the preparation of a uniform reporting out to the China Country Management Team and align with the CISO and the VST team the agenda for these meetings. Stakeholder engagement: Providing regular updates, in alignment with the local first line sector Security Risk Managers of the VST, to senior management in China on the status of information security in China and the central information security program. Considering the given governance, this will always be in alignment with the respective 1st line SRM. Providing the general security training to all China staff to improve their awareness Some travel will be required to other ASML offices in China, and abroad (+/- 15%) KEY WORKING RELATIONSHIPS External: Security Vendors, Customers, Suppliers, (always in alignment with local account management and procurement teams, Industry Peers and Forums) Internal: ASML China IT, local ASML Sector Security Functions, RBA&S, Legal, Sectors
- Manage daily security operations (patrols, CCTV, access control) to entire LEX network. - Lead and train security staff to maintain high service and safety standards. - Manage incident reports, investigations, and emergency response. - Coordinate with local authorities and external partners. - Ensure compliance with safety and security regulations.