CakeResume Job Search

提供網際網路服務的全球領先者之一，全球佈局涵蓋10大產業：電商﹑信用卡及支付﹑銀行﹑證券﹑保險﹑運動與文化﹑通訊﹑數位生活﹑生活休閒及廣告媒體等。在全球30個國家及地區推出超過70種以上的

個人研究 70% 對影響世界的產品進行漏洞研究 將找到的漏洞回報廠商並進行漏洞發表 檢測或協助專案 30% 規劃、執行產品安全測試 根據檢測需求，研究相關弱點或開發相關工具 協助紅隊執行專

▲Responsibilities: - Testing and identifying platform native application and web service vulnerabilities. - Responding to all produce services/application security breaches. - Ensuring that the product service infrastructure and data are protected by enabling the appropriate security controls. - Daily reporting, and communication with the relevant departments. - Reply to vulnerability reports and liaise with the engineering teams to address issues. - Research new attack techniques and mitigate t

1.Perform cybersecurity incident investigation, mitigation and prevention (Security Operation Center) 2.Develop or implement the security controls to assist in detection, prevention and analysis of security threats. 3.Collect the world-wide cybersecurity intelligence (hacking activity, TTP, IOCs) and build-up the detection rules to strengthen the visibility and detection rate. 4.Perform application security enforcement and penetration-test for reducing AP vulnerability.

• Responsible for cybersecurity services development including security assessment, penetration testing and vulnerability assessment for various of IOT devices; • Develop/maintain cyber security assessment methodlogy in compliance with global cyber security requirements and regulations; • Interlock with SGS global cyber security experts to develop/maintain localized SOPs and also technical Cyber Lab Infrastructure; • Maintain/contribute to knowledge base of cyber security, including vulnerabilit

Act as the IT security Purple team to identify and validate exploitable vulnerabilities for IT continuous improvement ahead of real adversaries. Develop and enable "Security Assessment Automation" capability for IT security risk assessment.

[Job Content] 1. Building systems and applications to enhance working models and speed up work processes. 2. Work with users to identify system requirements and track additional features. 3. Improving code quality and vulnerabilities. 4. Maintaining the production server environment, including databases, storage, and scripts. 5. Keep the existing server in good working order. 6. Provide support and enhancement of existing CI/CD flow and functions, and