Cummins Inc. Cybersecurity Compliance Manager 信息安全与合规经理 in Beijing, China
Cybersecurity Compliance Manager 信息安全与合规经理
Lead Cummins China Multi-Level Protection Scheme Certification Program
Perform and conduct IT security assessment, configuration and data privacy audit on internal systems and applications, provide guidance for remediation
Develop local cybersecurity policy and process based on global polices/local laws and industry standards.
Conduct IT security assessment and audit for Cummins China and subsidiary entities
Lead cybersecurity-related projects
Conducts software and systems engineering and software systems research to develop new capabilities, ensuring cybersecurity is fully integrated. Conducts comprehensive technology research to evaluate potential vulnerabilities in cyberspace systems.
Conducts vulnerability scans, analyzes findings and makes recommendations to help mitigate or eliminate vulnerabilities in systems.
Identifies systemic issues based on the analysis of vulnerability findings, configuration assessments and derived metrics.
Troubleshoots hardware/software interfaces and interoperability between integrated systems.
Conducts system engineering and research to develop new solutions that ensure cybersecurity controls are integrated into the enterprise to support business goals.
Integrates and aligns cybersecurity system configurations to ensure system performance meets documented requirements.
Conducts and/or supports authorized penetration tools and testing on enterprise assets.
Designs hardware, operating systems, and software applications to adequately address cybersecurity requirements.
5 years or above working experience, 3 years or above Cybersecurity working experience.
Good oral and written English skills
Be familiar with China Cybersecurity Law, Multi-Level Protection Scheme.
Be familiar with ISO27001, NIST,
Multi-national companies experience is a plus
Has CISSP and/or CISA certificate is a plus
Cybersecurity System Integration - Creates, writes, tests and deploys scripts, code, configurations and controls utilizing the appropriate standards, best practices and tools to provide system integration and data fusion that enable better cybersecurity visibility, assessment and automation.
Systems Requirements Planning - Develops a detailed set of use cases and requirements through documenting and deriving capabilities that are needed to operate, manage, administer and deploy enterprise cybersecurity capabilities and tools.
Technology Research and Development - Conducts technology assessment and integration processes through proof of concept projects to evaluate its utility.
Troubleshooting - Diagnoses and resolves the customer-identified issue by utilizing appropriate department standards to satisfy customer expectations.
Data Administration - Administers data storage and applications through proper training and coordinated efforts with internal and external partners to maintain system health and uptime.
Network Services - Installs, configures, tests, operates, maintains and manages network security equipment and software through proper training and collaboration with internal and external partners to enable the secure sharing and transmission of data in support of cybersecurity and business information systems.
Systems Administration - Installs, configures, troubleshoots and maintains server configurations through proper training and coordinated efforts with internal and external partners to ensure the confidentiality, integrity and availability of data and systems.
Tech savvy - Anticipating and adopting innovations in business-building digital and technology applications.
Manages complexity - Making sense of complex, high quantity, and sometimes contradictory information to effectively solve problems.
Balances stakeholders - Anticipating and balancing the needs of multiple stakeholders.
Optimizes work processes - Knowing the most effective and efficient processes to get things done, with a focus on continuous improvement.
Instills trust - Gaining the confidence and trust of others through honesty, integrity, and authenticity.
Education, Licenses, Certifications
Bachelor degree or above, computer-related majors.
This position may require licensing for compliance with export controls or sanctions regulations.
Job SYSTEMS/INFORMATION TECHNOLOGY
Primary Location China-Beijing-Beijing-China, Beijing, CUMMINS HQ
Job Type Experienced - Exempt / Office
Recruitment Job Type Exempt - Experienced
Job Posting Oct 14, 2021, 12:23:10 AM
Unposting Date Ongoing
Req ID: 210004LG