一、岗位职责：

1、安全体系规划与管理：

· 制定和完善大学的网络安全管理制度和流程，推动网络安全体系的落地执行。

· 负责网络安全项目的规划、实施和优化，确保网络环境的安全性和稳定性。

2、安全监控与应急响应：

· 监控网络安全状态，及时发现并处理安全事件，进行应急响应和调查取证。

· 制定安全应急预案，定期组织演练，提升应对突发事件的能力。

3、风险评估与加固：

· 定期开展网络安全风险评估，发现潜在漏洞并进行加固。

· 对网络设备、服务器、应用系统等进行安全配置和优化。

4、技术支持与培训：

· 为师生提供网络安全技术支持，解决日常遇到的问题。

· 组织网络安全培训，提升师生的安全意识和技能。

5、安全设备管理：

· 负责网络安全设备（如防火墙、入侵检测系统、漏洞扫描工具等）的安装、调试、维护和升级。

6、合规与审计：

· 确保大学的网络安全工作符合相关法律法规和标准要求。

· 协助完成网络安全相关的审计工作。

7、其他工作：

· 完成上级领导交办的其他临时性工作任务。

1. Security System Planning and Management:

· Develop and refine the university's cybersecurity management systems and processes to ensure effective implementation.

· Oversee the planning, execution, and optimization of cybersecurity projects to maintain the security and stability of the network environment.

2. Security Monitoring and Emergency Response:

· Monitor the cybersecurity status, promptly detect and handle security incidents, and conduct emergency response and forensic investigations.

· Develop emergency response plans for security incidents and organize regular drills to enhance the ability to respond to unexpected events.

3. Risk Assessment and Hardening:

· Conduct regular cybersecurity risk assessments to identify potential vulnerabilities and implement hardening measures.

· Perform security configuration and optimization of network devices, servers, and application systems.

4. Technical Support and Training:

· Provide cybersecurity technical support to faculty and students, addressing daily issues.

· Organize cybersecurity training programs to enhance the security awareness and skills of faculty and students.

5. Security Device Management:

· Be responsible for the installation, debugging, maintenance, and upgrade of cybersecurity devices (such as firewalls, intrusion detection systems, vulnerability scanning tools, etc.).

6. Compliance and Auditing:

· Ensure that the university's cybersecurity operations comply with relevant laws, regulations, and standards.

· Assist in completing cybersecurity-related audit tasks.

7. Other Duties:

· Complete other temporary tasks assigned by the leadership.

二、任职要求：

最低学历要求：大学本科及以上

专业要求：计算机、网络、通信、信息安全等相关专业

语言要求：具备良好的英语听说读写能力。

其他：

1、至少8年以上高校网络安全相关工作经验，具备网络安全项目实施、管理经验；

2、熟悉网络安全技术，包括防火墙、入侵检测、漏洞扫描、Web应用防护等

3、熟悉主流操作系统（如Linux、Windows）和网络安全设备的配置与管理

4、掌握网络安全攻防技术，了解常见的攻击手段（如SQL注入、XSS、DDoS攻击）及防范方法

5、熟悉信息安全管理体系（如ISO27001）和网络安全法规

6、具有较强的问题分析和解决能力，能够应对突发安全事件

7、具备良好的沟通能力、团队合作精神和责任心

8、持有相关专业认证（如CISP、CISSP）者优先

此岗位需要英文面试+笔试。

Educational background: Bachelor and above

Major: Computer Science, Network Engineering, Telecommunications, Information Security, or related fields

Language preference: Possess strong English listening, speaking, reading, and writing skills.

Others:

1. At least 8 years of relevant work experience in university network security, with experience in the implementation and management of network security projects.

2. Familiar with network security technologies, including firewalls, intrusion detection, vulnerability scanning, and Web application protection.

3. Proficient in the configuration and management of mainstream operating systems (such as Linux, Windows) and network security devices.

4. Knowledgeable in network security attack and defense techniques, and familiar with common attack methods (such as SQL injection, XSS, DDoS attacks) and their prevention methods.

5. Familiar with information security management systems (such as ISO27001) and cybersecurity regulations.

6. Strong problem analysis and resolution skills, with the ability to handle sudden security incidents.

7. Good communication skills, teamwork spirit, and a strong sense of responsibility.

8. Preference will be given to candidates holding relevant professional certifications (such as CISP, CISSP).

This position requires an English interview and a written test.