? Implement ‘IT in engineering laboratory/manufacture' in plant according to central directive （ITL/ITM）
根據(jù)中央指令在工廠實(shí)施IT工程實(shí)驗(yàn)室/制造中的應(yīng)用設(shè)置
- Defining and implementing engineering laboratory/manufacture infrastructure concept (including IT devices, network, server and database, etc.) considering both daily operation and future needs
定義并實(shí)施工程實(shí)驗(yàn)室/制造基礎(chǔ)設(shè)施的IT設(shè)置及使用方案（包含IT設(shè)備、網(wǎng)絡(luò)、服務(wù)器及數(shù)據(jù)庫等），兼顧日常運(yùn)營與未來需求
- Define and ensure organizational measures for data security in laboratories/manufacture
制定并落實(shí)實(shí)驗(yàn)室/制造環(huán)節(jié)的數(shù)據(jù)安全組織措施
- Training and coordination of local lab/MOE organization
培訓(xùn)并協(xié)調(diào)本地實(shí)驗(yàn)室及生產(chǎn)現(xiàn)場的IT及網(wǎng)絡(luò)安全
- Perform annual IT security audits in local laboratories/manufacture
對(duì)當(dāng)?shù)貙?shí)驗(yàn)室/生產(chǎn)現(xiàn)場執(zhí)行年度IT安全審計(jì)
- Consulting for setup and acquisition of related equipment
提供相關(guān)IT設(shè)備配置與采購咨詢
- Perform regular communication with local Engineering/manufacture management on ITL/ITM topics
定期與本地工程/制造管理部門就ITL/ITM議題進(jìn)行溝通
? IT and data security for business data and local developed application/systems （LAC）
業(yè)務(wù)數(shù)據(jù)及本地開發(fā)應(yīng)用/系統(tǒng)的IT與數(shù)據(jù)安全
- Define and implement security checklist and control process
制定并實(shí)施安全檢查清單與控制流程
- Support risk assessment and implement measures accordingly
支持風(fēng)險(xiǎn)評(píng)估并落實(shí)相應(yīng)措施
- Yearly risk re-certification for running applications
運(yùn)行應(yīng)用程序的年度風(fēng)險(xiǎn)再認(rèn)證
? ISP, IDM and access management
ISP、IDM及訪問管理
- User Training & awareness improvement in department
部門用戶培訓(xùn)與意識(shí)提升
- Provide security consult to served departments
為服務(wù)部門提供安全咨詢
- Document and regular updating of ISP concept according to central directive and regional laws
依據(jù)中央指令及區(qū)域法規(guī)記錄并定期更新ISP方案
- Define data protection method in department level to avoid business loss
制定部門級(jí)數(shù)據(jù)保護(hù)方法以避免業(yè)務(wù)損失
- Department folder Authorization concept definition
部門文件夾授權(quán)方案定義
- Local application registration and management
本地應(yīng)用程序注冊(cè)與管理
- Non-standard software management to avoid compliance issue
非標(biāo)準(zhǔn)軟件管理以規(guī)避合規(guī)風(fēng)險(xiǎn)
- Authorization application in IDM and regular checks to ensure proper usage
在IDM中實(shí)施授權(quán)申請(qǐng)機(jī)制并定期核查確保規(guī)范使用
? Other relevant tasks arranged by superiors for achieving company’s objectives.
上級(jí)交辦的為實(shí)現(xiàn)公司目標(biāo)的其他工作。
? Education學(xué)歷
Bachelor or above degree, major in Computer Science, Information Security, Information System, Information Management or other similar majors.
本科及以上學(xué)歷，計(jì)算機(jī)科學(xué)、信息安全、信息系統(tǒng)、信息管理或相關(guān)專業(yè)。
? Experience工作經(jīng)驗(yàn)
Minimum 3 years work experience in cyber security, data security, newwork and server maintainence, Computer Hardware or Software management, previous relevant working experience in a global environment is an advantage.
三年以上網(wǎng)絡(luò)安全、數(shù)據(jù)安全、網(wǎng)絡(luò)及服務(wù)器運(yùn)維、計(jì)算機(jī)硬件或軟件管理相關(guān)工作經(jīng)驗(yàn)，有跨國企業(yè)從業(yè)經(jīng)歷更佳；
? Skills技能
- Basic understanding of information security and/or IT governance and/or access and identity management topics
具備信息安全和/或IT治理和/或訪問與身份管理領(lǐng)域的基礎(chǔ)知識(shí)
- Self-confident, Communication/influence skills, Presentation Skills, team player
自信果敢，具備溝通/影響力技巧、演示能力，善于團(tuán)隊(duì)協(xié)作
- Clear and fluent in Mandarin, Good written and oral English
普通話清晰流利，英語書面及口語能力良好
- Proficient in the use of word, excel, ppt and other commonly used office software
熟練使用Word、Excel、PPT等常用辦公軟件
- Meet with below requirements are preferred
符合以下條件者優(yōu)先：
? Entitled as CISA or CISSP or ISO27001 IA/LA or PMP/Prince2
持有CISA、CISSP、ISO27001 IA/LA或PMP/Prince2認(rèn)證
? Digital talents who are familiar with python, power platform, etc.
熟悉Python、Power Platform等技術(shù)的數(shù)字化人才
? Other其它
- Positive attitude, proactive and initiative
積極的態(tài)度，前瞻性和進(jìn)取心
- Well organized, logic thinking, attention to details
思維清晰，有邏輯，細(xì)心
- High reliability and confidentiality consciousness
高度的責(zé)任心和保密意識(shí)
- Good health
身體健康
- Good professional ethics
良好的職業(yè)道德
- Care about details and precision
注重細(xì)節(jié)及精確性
- Self-motivated and able to work under pressure
能夠自我激勵(lì)并承受工作壓力
- Able to work overtime if necessary
必要時(shí)可以加班
- Hold positive attitude whenever facing different opinions or other problems and take nessesary actions to facilitate solutions
出現(xiàn)意見不合或其他問題時(shí)能夠以積極的態(tài)度應(yīng)對(duì)，并采取行動(dòng)積極配合以促進(jìn)問題的解決。