Job description
1. Develop and optimize office equipment security policies, including endpoint access control (NAC), encryption mechanisms (BitLocker/FileVault), and mobile device management (MDM), ensuring compliance of laptops, mobile phones, tablets, and other devices.
2. Design protective solutions for the office environment, monitor remote work traffic, and implement VPN/Zero Trust access (ZTNA) and security enhancements for collaboration tools (Enterprise WeChat/Teams).
3. Assess risks in office scenarios (such as BYOD devices, cloud drive sharing leaks) and develop solutions (such as sandbox isolation, application whitelisting).
4. Regularly conduct vulnerability scans, penetration tests, and risk assessments on office endpoints using tools like Nessus, EDR (CrowdStrike/SentinelOne), and Burp Suite.
5. Track CVE vulnerabilities and threat intelligence for office software, analyze potential impacts on office systems, and promote patch management and remediation.
6. Build an office security monitoring platform (SIEM integrated with endpoint logs) to achieve real-time alerts and threat hunting (such as spear phishing, USB device abuse).
7. Provide 24/7 on-call response support for high-risk incidents such as office ransomware or Remote Desktop Protocol (RDP) attacks.
1. Bachelor's degree or above in Computer/Network Security/Information Security or related fields.
2. 3-6 years of experience in office/endpoint security, with over 1 year of leading office environment security projects.
3. Proficient in office security technologies (EDR, MDM, DLP, Zero Trust) and tools (CrowdStrike, Microsoft Defender, Zscaler).
4. Familiar with Windows/macOS/Linux endpoint security, network protocols (TCP/IP), and hardening of office middleware (Office 365, Zoom).
5. Proficient in at least one scripting language (Python/PowerShell) for script development; familiar with cloud office security (Azure AD, Google Workspace).
6. Experience in office security incident response (such as remote work data leak projects) is preferred.