Software Security Architect

Software Security Architect

Lenovo India Private Limited
Not Specified
Not Specified

Job Description

Description and Requirements
工作责: 1. 负责想移动端APPPC端和云务产的安全架构设计 2. 负责想模库和消库的建设 3. 负责想产建模工作 4. 负责公产的代审计渗测试(黑盒与白盒)洞挖掘应急应事件处等工作,并供解决方案和加固建议; 5.研究智能硬件平的架构议安全,负责梳并评估公产业务风险,研究产业务风险控制手段; 6.负责公PC产的软件和硬件安全,指导PC产的安全审核; 7.对现有产SDL标准和程进行优化,指导点业务产的安全设计和开; 8.对智能硬件平产进行渗测试洞挖掘,针对的智能设备供定制化的安全解决方案; 9.对智能设备对应云端系统的安全防御体系形解决方案,续跟踪沿的安全攻防技术,制定相关IOT产安全加固策略; 10.针对产安全和数安全供安全解决方案。 岗求: 18年以上的安全从业验;有身份认密钥管数库安全物网安全设备,云务等系统的安全性设计验者优先; 2精通渗测试和代审计的步骤程和方法,具有独立渗测试实战验以手工洞挖掘验; 3精通WebAPPIOT产的安全测试原并具备实战验,熟悉洞分应急应安全加固验,在以下领域中有过攻防渗洞挖掘的验: 主机(Windows, Linux) 移动(Android, iOS) IOT(无线网络,议分) 嵌入系统( 系统逆分) 有逆工程验,熟练使用IDAOllyDbg等逆工具,有硬件验,比如ArduinoRaspberry Pi等; 4熟悉SDL具备数安全业务安全建设等安全相关工作验; 5至少掌一门编程语言Python/C/C++/Perl/PHP/Java等,具备安全工具开验; 6熟悉STRIDE分方法;掌洞分建模等基础论;有SDLDevSecOps建模有实践验者加分。 7具备优秀的逻辑维能力,出色的沟通调能力整规划抗压能力,具备有较强的责任心和事业心。 8熟练掌WEB安全和二进制安全洞的原方法利用手段解决方案。 加分项: 1)精通一编程语言,精通安全者加分; 2)加过大型CTF并得优秀排或在CVE/CNVD/CNNVD交过高洞者优先; 3)有CISSP者优先; 4)具有良好的沟通能力调能力解能力,并拥有强烈的责任心和团队管能力,能承一定强度的工作压力者优先。 5)英文语交能力强
We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any federal, state, or local protected class.

Why Work at Lenovo Here at Lenovo, we believe in smarter technology for all, so we spend our time building a society that's brighter and more inclusive. And we go big. No, not big-huge. We're not just a Fortune 500 company, we're one of Fortune's Most Admired. We're in 180 countries, working with 63,000 brilliant colleagues and counting. And we're known for the world's most complete portfolio of smart technology, from devices to software to infrastructure. With our ingenuity, we help millions-not just the select few-experience our version of a smarter future. The one thing that's missing Well… you...

Similar Jobs

People Also Considered

Career Advice to Find Better

Simple body text this will replace with orginal content