資安工程師(台北/無經驗可)
SGS
- New Taipei City
- Permanent
- Full-time
TAIWAN'S LEADING TESTING, INSPECTION AND CERTIFICATION COMPANY.我們始終以超越客戶和社會的期望,及提供卓越的市場服務為己任。身為行業的領導者,SGS提供專業的商務解決方案,協助提升產品品質、安全性、生產力及降低風險;在法規日益增多的國際市場上為客戶領航。我們獨立公正的服務為客戶提供特殊的價值,並確保其業務的永續發展。經營理念
成為一個最具競爭力與生產力的服務組織是我們的目標。持續改善我們在檢驗、測試與驗證的核心能力,以提供最佳的服務,這是我們之精髓所在。我們的競爭力與對客戶不斷提供無與倫比的服務,將是決定我們在本地與跨國客戶心目中首要地位的不二法門。SGS 的主要核心業務為以下三類:
測試Testing
我們的全球服務網絡、實驗室設備及具備豐富知識與經驗的專業人員,幫助您降低風險、縮短產品上市時間,並根據相關的健康、安全和規範對您產品品質、安全和性能提供實驗室測試。
驗證Certification
我們為最具國際公信力之驗證機構,透過專業驗證與嚴謹稽核服務,確保您企業及組織之產品、流程、服務或系統符合國際標準、國內規範與利益相關者的要求。
檢驗Inspection
我們提供領先世界的全方位檢驗服務,諸如檢查貨物轉運過程中之狀況和重量,以協助控制其數量和品質,滿足不同地區和市場的所有相關規範需求。台灣分佈
SGS 集團於 1952 年在台灣設立瑞商遠東公證股份有限公司,成立初期在台北、基隆及高雄三大城市設立分公司。為配合國內產業升級及國際化的需求,於 1991 年 5 月成立台灣檢驗科技股份有限公司,以擴大提供專業測試及技術服務。2016年程智科技股份有限公司加入SGS 集團,在台電子電器領域服務更臻完整。
SGS 在台灣的經濟成長中扮演著重要的角色,協助廠商符合政府法規、拓展外銷、並提升品質,未來亦將秉持 SGS 的優良傳統,繼續為台灣未來經濟發展貢獻心力。如需更多資訊,請詳閱SGS台灣官網:職缺說明【Primary Responsibilitie】
The Cyebr Security Expert will be responsible for evaluating the security for customer'organizartion and produsts . Working in partnership with SGS clients in Taiwan and Asia-Pacific, you will provide a best-in-class commercial cybersecurity evaluation , inspection and certification service and solution offering that focuses on device, infrastructure and cloud security.【Specific Responsobilities】
- Lead of cybersecurity evaluation to target organization , processes and products;
- Responsible for cybersecurity services development including security assessment, penetration testing and vulnerability assessment for various of IOT devices;
- Develop/maintain cyber security assessment methodlogy in compliance with global cyber security requirements and regulations; Maintain/contribute to knowledge base of cyber security, including vulnerability, cryptography, secure element, etc.
- Responsible for quality of work in-line with global SGS-internal standards on cybersecurity;
- Serve as mentor and subject matter expert to internal and external stakeholders;
- Technical support for selling global cybersecurity services to local market;
- Contribute to the global cybersecurity strategy together with the other Cyber Labs;
- Proven work experience in Cyber security, Privacy and ISO auditing;
- Familiarity with process maturity models and risk management;
- Understanding of the latest security principles, techniques and concepts;
- Understanding of compliance requirements and regulations across different regions;
- Experience in communicating information and developing reports related to cyber security;
- Experience in project management and relationship management.
- Bachelor's degree in Electrical and Electronic , Computer Engineering, IT Security or a related field or demonstrated domain knowledge;
- At least 3 years of experience working within the Cybersecurity environment;
- Hands-on experience in vulnerability assessment and penetration test, familiar with security assessment tools, scripting, etc.
- Thorough understanding of the latest security principles, techniques, and protocols;
- Sound knowledge of PKI infrastructure, cipher protocal and hardware Root of Trust;
- Knowledge of threat modelling methodology (e.g. STRIDE, DREAD, etc.)
- Understanding of security/privacy standard , including ISO27001, ISO 27701, IEC 62443 or other IT governance best practices;
- Preferably with one or more of the given certifications - CISSP, CISA, CCSP or CEH;
- It will be a plus if with solid experience in Automotive, Industrial or Medical solutions.
- Able to work independently, being a team player, ability to work well under pressure according defined procedures;
- Able to multi-task, prioritize, and manage own and team's time effectively;
- Applies judgment and acts according to the SGS standards of ethics and integrity;
- Fluent in English is a must; knowledge of other languages would be a plus.