Sr. Cybersecurity Engineer - Incidence Response, Technology Risk
- Employer
- Goldman Sachs
- Location
- Beijing, China
- Salary
- Competitive
- Closing date
- Feb 21, 2023
View more
- Job Function
- Other
- Industry Sector
- Finance - General
- Employment Type
- Full Time
- Education
- Bachelors
You need to sign in or create an account to save a job.
WHO WE ARE
Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts, measuring cybersecurity risk, and designing and driving implementation of cybersecurity controls. The team has global presence across the Americas, APAC, India and EMEA.
Within Technology Risk, the Global Cyber Defense & Intelligence (GCDI) identifies malicious activity, manage the lifecycle of vulnerabilities within GS technologies, and investigates and manages threats across the firm. We are a team of security, software, and product engineers that allow the firm to respond appropriately to firm risks through the use of detection models, security architecture, and cutting-edge cyber threat analysis to manage internal and external threats against the firm.
Goldman Sachs has one of the most progressive Technology Risk teams in the industry and is continuing to push the development of risk in preference to security within technology and the business. Year on year success has led the team to work deeper into the organization and gain valuable insights into how technology needs to function, what its risk really is and how this impacts the business.
YOUR IMPACT
In this role, you will join an advanced threat detection and response team based within China and drive the full lifecycle of incident response and operations within the region. The role will also drive proactive identification of threats within the region, provide rapid response, and develop detections. Other areas of responsibility will include collection and support of security related events and data feeds that support threat detection and response operations. As a security engineer you will be required to focus on managing the maintenance and support of the overall health, performance of the security sensors, systems and the underlining infrastructure. HOW YOU WILL FULFILL YOUR POTENTIAL
The ideal candidate should be someone with cyber security experience, hands-on technical skills on Windows, Linux and Network security, along with experience in utilizing security information for detection engineering, live intrusions and triage security events in real-time
Responsibilities include:
BASIC QUALIFICATIONS
PREFERRED QUALIFICATIONS
ABOUT GOLDMAN SACHS
At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world.
We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at GS.com/careers .
We're committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: https:// www.goldmansachs.com/careers/footer/disability-statement.html
© The Goldman Sachs Group, Inc., 2021. All rights reserved.
Goldman Sachs is an equal employment/affirmative action employer Female/Minority/Disability/Veteran/Sexual Orientation/Gender Identity
Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts, measuring cybersecurity risk, and designing and driving implementation of cybersecurity controls. The team has global presence across the Americas, APAC, India and EMEA.
Within Technology Risk, the Global Cyber Defense & Intelligence (GCDI) identifies malicious activity, manage the lifecycle of vulnerabilities within GS technologies, and investigates and manages threats across the firm. We are a team of security, software, and product engineers that allow the firm to respond appropriately to firm risks through the use of detection models, security architecture, and cutting-edge cyber threat analysis to manage internal and external threats against the firm.
Goldman Sachs has one of the most progressive Technology Risk teams in the industry and is continuing to push the development of risk in preference to security within technology and the business. Year on year success has led the team to work deeper into the organization and gain valuable insights into how technology needs to function, what its risk really is and how this impacts the business.
YOUR IMPACT
In this role, you will join an advanced threat detection and response team based within China and drive the full lifecycle of incident response and operations within the region. The role will also drive proactive identification of threats within the region, provide rapid response, and develop detections. Other areas of responsibility will include collection and support of security related events and data feeds that support threat detection and response operations. As a security engineer you will be required to focus on managing the maintenance and support of the overall health, performance of the security sensors, systems and the underlining infrastructure. HOW YOU WILL FULFILL YOUR POTENTIAL
The ideal candidate should be someone with cyber security experience, hands-on technical skills on Windows, Linux and Network security, along with experience in utilizing security information for detection engineering, live intrusions and triage security events in real-time
Responsibilities include:
- Analyze potential infrastructure security incidents to determine if incident qualifies as a legitimate security breach
- Perform host-based and network forensic investigations, determining the cause of the security incident
- Participate in a local coverage model within China to prevent and remediate security threats against Goldman Sachs' China-based data and business networks
- Effectively Collaborate with various teams within the organization to investigate security event, determine impact and initiate rapid response actions to mitigate risk
- Improve the security sensors by looking for opportunities to tune the security controls in response to an evolving security threat landscape
- Build anomaly detections by applying statistical principles such as standard deviation, stack counting, simple match and regular expression
- Administer/maintain systems and data feeds needed to protect the firm's China-based resources from Cyber Threats
BASIC QUALIFICATIONS
- Strong English verbal and written communication skills
- Native proficiency in Chinese (Mandarin) language including the ability to exhibit professional writing skills
- Ability to multitask and prioritize work effectively
- Highly motivated self-starter
- Responsive to challenging tasking
- Attention to detail
- Strong sense of ownership and driven to manage tasks to completion
- Familiar with common scripting languages such as Python and/or PowerShell
PREFERRED QUALIFICATIONS
- At least 5 years' or above experience with expertise in triaging, analyzing & responding to different security events and conducting digital forensics on Windows, MacOs or Linux operating systems
- Experience in managing security products such as Microsoft Defender for Endpoint, or Application whitelisting controls such as Carbon Black
ABOUT GOLDMAN SACHS
At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world.
We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at GS.com/careers .
We're committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: https:// www.goldmansachs.com/careers/footer/disability-statement.html
© The Goldman Sachs Group, Inc., 2021. All rights reserved.
Goldman Sachs is an equal employment/affirmative action employer Female/Minority/Disability/Veteran/Sexual Orientation/Gender Identity
You need to sign in or create an account to save a job.
Sign in to create job alerts
Sign in or create an account to start creating job alerts and receive personalised job recommendations straight to your inbox.
Create alert