网络安全工程师

1. Take lead of the internal secure development control process.

2. Analyze customer or internal cybersecurity requirements.

3. Coordinating with developers for threat modeling and analysis to find the vulnerabilities.

4. Coordinating with developers to collect the software bill of material.

5. Develop the documents about cybersecurity.

6. Take lead of the integration test about cybersecurity.

7. Coordinating with relevant team to conduct penetration tests.

8. Bidding support for cybersecurity part.

Qualifications:

1. With over five years of professional experience in software R&D, including successfully leading the end-to-end development of software projects from conception to deployment.

2. Familiar with cybersecurity knowledge like vulnerability, Attack surface, CVE, Threat Modeling Analysis.

3. Deep Understand the network knowledge like TCP/IP, HTTP/HTTPS, OSI model, and network architecture, router, firewall.

4. Understand the basics knowledge of international standards like IEC 62443, ISO

27001.

5. It’s better that you have an interest in cybersecurity and have the experience of CTF competition.

6. Proficient in English and able to fluently communicate with foreigner.