Consulting - Cyber Security - Consultant - BJ
Excellent career opportunity with Ernst & Young:
Ernst & Young is one of the leading global professional services organizations with 268,000 staff around the world. We are proud of our people culture which we believe sets us apart in the profession. Ernst & Young helps you achieve your best by providing great learning and career growth opportunities, by offering ways to help you achieve satisfaction in work and life, and by looking at each decision with a keen eye toward how it will affect you.
Job summary:
Cyber Security's engagements focus on the assessment and/or evaluation of IT systems and the mitigation of IT-related business risks. Engagements may be either assurance (attestation) and/or risk advisory in nature, and vary considerably in size and complexity. All of our Security services, whether assurance or advisory in nature, are designed for the dual purpose of strengthening internal controls and helping our clients improve IT and business performance
网络安全合规/管理咨询顾问 (北京)
岗位职责:
- 调研客户信息安全现状,实施信息安全风险评估,编写信息安全风险评估报告;
- 参与设计信息安全管理体系或IT风险管理体系,编写信息安全及IT风险管控相关的方针策略、组织人员、制度流程等规范,并协助客户推进安全体系运行, 推动客户业务的数据安全和隐私保护方案落地执行;
- 跟进数据安全、个人信息安全等国家和行业法规、政策和相关标准,制定监管合规方案和细则,协助企业务合规和平稳运行;
- 提供业务部门合规咨询,支持各类数据安全与个人信息相关审查和认证等;
- 提供客户业务,合规,安全各部门的安全培训。
任职资格:
- 本科及以上学历,信息安全,信息管理,计算机科学,软件工程等相关专业
- 具有1-2年及以上安全管理或安全咨询相关工作经验;
- 了解网络安全管理、标准和框架,如:中国网络安全法,ISO27001等
- 熟悉信息安全、等级保护、个人信息保护等国家和行业法规、政策和相关标准;
- 具有的业务调研、安全风险分析及数据安全管理制度、流程建设经验;
- 具有良好的沟通表达能力和组织协调能力,拥有团队合作精神,优秀的文档编写能力。
- 良好的英语读、写、说能力
