Mission: As Cybersecurity Manager, you will be focusing on incident management related topics, primarily responsible for coordinating, investigating and responding to internal and external threats. Create scalable and maintain high standards of cybersecurity operational process in accordance with local regulatory requirements. Furthermore, in this role you will be assisting Taskforces coordination responding to critical cybersecurity events (e.g. external RedTeam/PurpleTeam) in China for Siemens Healthineers.

Responsibilities:

· Conduct cybersecurity investigations and lead cybersecurity incident response affecting customers in a cross-functional environment and drive incident resolution

· Assisting customer service to perform the on-demand compromise assessments.

· Ensure forensic practices are followed in the collection and preservation of data related to customer cybersecurity incidents and other investigations

· Support customer facing team in answering cybersecurity related questions

· Lead the cross-functional taskforce and facilitate cyber emergency response

· Use lessons learned to improve overall cybersecurity posture in China

· Develop China specific cyber resilience initiatives that improve our overall ability to effectively respond and remediate security incidents

· Ensure a constant state of incident readiness that adapts to the changing threat landscape by maintaining playbooks and processes used by the cross-functional team

· Enable and coach the digital portfolios to implement the cybersecurity operation standards.

· Conduct periodic cybersecurity threats landscape analysis

· Report cybersecurity incidents and vulnerabilities to local authority

Experience:

• Over 3 years' experience and track-record in cybersecurity incident response
• In-depth subject-matter knowledge in technical and process regarding cyberecurity operations and incident response
• Knowledge of operating systems, file systems, and memory structures on Windows, macOS and Linux
• Hands on experience in Detecting, Triaging and analyzing indicator of compromise and root cause of the cyber incident.
• At least 1 years of experience working with security protocols and standards, vulnerability assessment tools, packet analyzers, and scripting languages, penetration testing tools and countermeasures and mitigation techniques applied to web applications.
• Experience in coordinating/leading cybersecurity incident involving cross-functional team.
• Familiar with cloud security benchmark and experience assessing cloud security misconfigurations.

Education: Bachelor or above