国际银行-安全响应工程师 (contractor)

Beijing Temporary View Job Description
This role focuses on handling cybersecurity incidents from detection to resolution in a complex and dynamic environment. You will work closely with cross-functional teams to assess risks, make critical decisions, and protect business operations.
  • Own end-to-end cybersecurity incident response
  • Drive real impact on business risk

About Our Client

A prominent multilateral financial institution based in Asia, the organization focuses on supporting sustainable development and infrastructure investment across its member countries. We are currently looking for a Cybersecurity Operations & Incident Response Consultant to support the institution's Information Security team, focusing on security event monitoring, threat detection, and incident response activities.

***Contractor形式合作,长期稳定,1年1签

Job Description

1. Cybersecurity Operations:
Perform daily real time monitoring review and analysis of cybersecurity alerts/signals from multiple sources.
Triage security incidents including social engineering attacks, malware, hacking, unauthorized access, data breach, business email compromise etc.
Ensure incident documentation and handling is completed accurately within the case management system.
Refine current use cases implemented on the security stack to reduce/minimize false positives.
Create and maintain corresponding cybersecurity incident handling books
Support the improvement of related cybersecurity operations technologies
2. Digital Forensics and Incident Response:
Act as a first point of contact for cybersecurity incidents escalated by the Managed Security Services vendor and take responsibility end-to-end for incident investigation and response activities
Conduct forensic analysis to determine cause and extent of breach (where applicable)
Work together with various IT and business stakeholders to restore business operations with minimal impact efficiently.
Recommend remediation/recovery plans
Prepare timely, detailed and accurate incident report update
3. Reporting:
Participating in the development, editing and reviewing various IT Security reports such as weekly and monthly security reports, business supporting reports, regular cybersecurity reports, threat alerts etc.
Provide post-incident reports for management and stakeholders encompassing easy to understand details on risk and impact, containment, remediation and threat actors etc.
4. Other agreed cybersecurity related assignment
Performs other duties and responsibilities as assigned or required.

The Successful Applicant

REQUIRED QUALIFICATION AND EXPERIENCE
Proven domain expertise in cyber defense with intensive hands-on experience.
Knowledge of security protection for digital workspace, hybrid cloud and business applications such Microsoft 365, Azure, AWS etc.
Knowledge of security and monitoring products such as firewall, EDR, IDS/IPS, Sandbox, Anti-Malware, SIEM, DLP, etc.
Familiar with popular operating systems such as Windows, Linux, macOS, etc.
Bachelor's degree or higher in Computer Science, Information Technology, Computer Programming, Information Security, etc. Equivalent combination of education and experience is acceptable.
Familiar with programming or scripting languages such as Python, Power Shell, Unix Shell, SQL etc. is a plus.
At least three (3) years' experience in cyber security operations, digital forensics and incident response and/or cyber security engineering.
Excellent problem-solving and analytical skills, with the ability to quickly identify security issues and propose security solutions.
Self-starter with the ability to work both independently and as a team player.
Must be able to write thorough, concise, and user-friendly documentation in English.
Strong interpersonal communication skills in English, both verbal and written.

What's on Offer

Long-term role starts from 1-year contract
Global exposure
Real incident ownership
Critical decision-making

Contact
Hao Zheng
Quote job ref
JN-062026-7029463
Phone number
+86 10 5969 0622

Job summary

Function
Technology
Specialisation
Security
What is your area of specialisation?
Financial Services
Location
Beijing
Contract type
Temporary
Consultant name
Hao Zheng
Consultant phone
+86 10 5969 0622
Job Reference
JN-062026-7029463

Diversity & Inclusion at Michael Page

We don't just accept difference - we celebrate it. We encourage applicants from all backgrounds to apply for this role and are committed to building inclusive, diverse workplaces where everyone can thrive. If you require any support or reasonable adjustments during the recruitment process, please let us know.