大众汽车集团是中国汽车产业历史最悠久、最成功的国际车企之一。集团与中国合作伙伴携手,为中国客户带来了便捷的个人移动出行。深耕中国四十余载,大众汽车集团及旗下品牌始终稳居时代前沿,助力中国汽车产业蓬勃发展。
大众汽车集团在华经营范围包括汽车整车、零部件、发动机以及变速箱的生产、销售与服务。集团旗下的大众汽车、奥迪、斯柯达、捷达、保时捷、宾利、兰博基尼、杜卡迪、曼恩和斯堪尼亚等品牌在中国各细分市场开展业务。
在汽车行业向智能网联汽车和自动驾驶时代加速迈进的浪潮中,大众汽车集团积极转型,凭借强有力的战略规划,力求在拥有巨大增长潜力的中国市场保持领先地位。为此,大众汽车集团稳步推进“2030目标”的实现,并持续贯彻“在中国,为中国”方针。
如今,约有5000万中国客户驾驶大众汽车集团旗下品牌车型。这一客户群体规模稳居中国市场车企首位。
IT Infrastructure Security Standard & Solution
Brief description of the position:
The Position Holder (PH) is responsible for providing Infrastructure Security standards, planning services and advisories for Hub-DI. Ensuring that the Infrastructure compliance with Security Policies. The key responsibilities including involving in Security architecture designing, solution evaluation, SPOC to information security and any related audits.
Key Tasks:
- Develop and implement a comprehensive IT security strategy for IT infrastructure that aligns with group and regional standards as well as business goals.
- Design and implement secure architecture for infrastructures in data center and cloud environments.
- Support enforcing IT security policies and standard that aligns with Group and regional standards and refining IT security standards, procedures, and guidelines for infrastructure platform.
- Design and support implement secure network architectures, including firewalls, VPN, etc, and ensure secure configuration of servers, routers and other infrastructure components.
- Design and support the implementation of security controls for both data center, cloud environments and container environments, and integrate them with existing IT security tools.
- Monitor, analysis, manage security breaches and vulnerabilities on IT infrastructure and provide incident response.
- Consultant and support the design of secured infrastructure architecture in IT applications.
- Work with IT security team to design, implement, manage and report on, the effectiveness of security controls.
- As contact person for IT infrastructure related internal and external audit.
- Undertake other tasks assigned by direct supervisor.
Qualification and skills:
- Bachelor's degree in Computer Science, Information Technology, Engineering, or a related field. A Master's degree is preferred.
- Deep knowledge of state of the art security architecture like Zero Trust Architecture, security best practices in infrastructure technologies like firewalls and integration with diverse security tools like SIEM.
- Familiar with cloud security platforms (e.g., AWS Security Hub, MS Defender for cloud) and container technologies and its security configurations (e.g., Kubernetes).
- Strong understanding of risk assessment methodologies and frameworks (e.g., NIST, ISO 27005).