Cybersecurity Consultant

Cybersecurity Professional Position Summary: Conduct daily analysis, tracing, and handling of cybersecurity threat incidents, and emergency response to sudden security events; research advanced technologies, develop security tools, and promote operations automation; manage and monitor security, including firewalls, WAF, EDR, and other equipment and security policy audits according to standards.

Key Responsibilities:
• Conduct daily analysis, tracing, and handling of cybersecurity threat incidents, and emergency response to sudden security events; regularly organize offensive and defensive drills, emergency exercises, and simulation exercises.
• Research advanced offensive and defensive technologies, develop and build security tools, and promote security operations automation; collaborate on security scanning of networks, systems, endpoints, and applications, promote patch repair work, conduct web security penetration testing, and perform security assessments and hardening of various interfaces.
• Manage and monitor security, including firewalls, WAF, EDR, and other equipment and security policy audits according to standards; strengthen various security management measures, conduct real-time security status monitoring, and issue problem warnings.
• Implement internal audit management systems, conduct internal audit quality control and management work, and related rectification work; implement quality control standards; carry out various security operations such as asset security management, account security management, and information security management according to company security operation systems and processes.

Requirements:
• Education: Master's degree or above in Computer Science, Information Security, Cybersecurity, or related fields preferred.
• Work Experience: 5 years or more of work experience. Over 5 years of security management and operations experience.
• Technical Experience: Proficiency in exploiting and understanding various mainstream systems, databases, and web security vulnerabilities; understanding of internal network penetration and domain penetration methods; knowledge of common security vulnerabilities; familiarity with common hacker attack methods, principles, defenses, and bypass techniques; understanding of common network and security devices; knowledge of security incident handling and application response theories and methods.