Cyber Security Business Partner in the United States for a Short-video Platform
Hireio, Inc., San Francisco, CA, US
Job Description
The team is missioned to build infrastructures, platforms, and technologies, as well as to support cross-functional teams to protect our users, products, and infrastructures. In this team, you'll have a unique opportunity to have first-hand exposure to the strategy of the company in key security initiatives, especially in building scalable and secure-by-design systems and solutions. Our challenges are not your regular day-to-day technical problems; you'll be part of a team that's developing new solutions to new security challenges of a kind not previously addressed by big tech. It's working fast, at scale, and we're making a difference.
Requirements
- Have a deep understanding infrastructure components and keep track of infrastructure evolution or changes, especially those with potential security risks.
- Stay informed about relevant regulations and industry standards related to infrastructure security. Ensure that the company's infrastructure practices adhere to compliance requirements, and assist in audits and assessments as needed.
- Develop a robust infrastructure security strategy; define security policies, guidelines, and best practices for infrastructure components, including but not limited to networks, servers, databases, and cloud environments.
- Provide guidance and expertise in designing secure infrastructure architectures. Collaborate with engineering and compliance teams to ensure that security controls, encryption, access controls, and monitoring mechanisms are integrated into infrastructure design.
- Drive thorough risk assessments to identify vulnerabilities, threats, and potential risks within the infrastructure. Work collaboratively to design and implement effective risk mitigation measures, ensuring the ongoing protection of critical assets.
- Implement and oversee vulnerability assessment and management processes for infrastructure components. Collaborate with the Infrastructure team to remediate vulnerabilities and ensure a secure infrastructure environment.
- Develop and implement incident response plans tailored to infrastructure-related incidents. Lead incident response efforts, coordinating with technical teams to contain incidents, investigate root causes, and restore normal operations.
- Promote and introduce cutting-edge security technologies to mitigate known/unknown security risks in the company's infrastructure effectively and efficiently.
- Engage with all stakeholders to understand their infrastructure security needs and requirements. Foster strong partnerships to promote a cohesive security posture across the company.
Benefits
- Bachelor's degree in Information Security, Computer Science, or a related field. Relevant certifications such as CISSP, CCSP, or CISM are highly desirable.
- 10+ years of hands-on experience in infrastructure security, system administration, or network security.
- Proficiency in designing and securing complex infrastructure environments, including on-premises and cloud-based solutions. - In-depth knowledge of security frameworks, standards, and best practices applicable to infrastructure security.
- Strong analytical and problem-solving skills, with the ability to assess risks and develop effective mitigation strategies.
- Excellent communication and collaboration skills to interact with technical and non-technical stakeholders.
- Experience with vulnerability management, incident response, and disaster recovery planning is preferrable