We are currently seeking an APAC Cybersecurity Incident & Tech Engineer to join the group CISO team and reporting to the Cybersecurity Program manager APAC

Your opportunity
In the context of a job creation which is aligned with the overall strategy to reinforce Cybersecurity posture, we look for an experienced Cybersecurity engineer who had the opportunity handle roles in SOC teams or CSIRT or as Security Auditor or Architect with Cybersecurity technical background on IT technologies including ideally cloud security knowledge.

How you will contribute
61 Manage cybersecurity incident response across APAC region, collaborating as a core member of the Global Kering-CERT team to coordinate cybersecurity incident resolution (covering CSIRT and SOC analyst functions) and contribute to the technical design & development of cloud and on-premises security architectures.
61 Provide advisory for technical security requirements for business units and projects.
61 Manage or support security technologies, from projects to implementation, including providers interactions.
61 Contribute in APAC to maintain assets secured by supporting vulnerability scan and remediation in liaison with infrastructure and application teams.
61 Be the APAC referent on technical Cybersecurity topics.
61 Leverage Cybersecurity APAC knowledge from local cybersecurity communities and authorities.

Who you are
61 Bachelor's degree or higher in computer science, cybersecurity or a related area
61 Fluent in English and Mandarin
61 4+ years’ experience in global, Fortune 500 organization or similar high scale, multinational environment
61 3 years of experience as consultant auditor, incident handler, security engineer, architecture or similar technical role
61 Experience in security technical audit (VA / PT) or hands-on experience on several security solutions
61 Professional certification like GIAC, CEH, ITIL, CISSP, CISA will be a plus
61 Publication of CVEs or technical blog posts will be a plus
61 Knowledge of security tools like SIEM (Splunk, Azure Analytics, etc.) or EDRs (Palo Alto, CrowdStrike, Microsoft Defender) and security Ticketing systems.