Why choose Logicalis?          

As Architects of Change, Logicalis' focus is to design, support and execute clients' digital transformation by uniting their vision with their technology expertise and industry insights. The company, through its deep understanding of key IT industry drivers such as security, cloud, data management and IoT, can address customer priorities such as revenue growth and business, operational efficiency, innovation, risk and compliance, data governance and sustainability. 
 

We strengthen our purpose: to design, support, and execute our customers' digital transformation by converging their vision with our technological expertise and knowledge of the industry. The brand refresh underpins both the evolution of Logicalis’ positioning as well as our strategic vision for growth. 

Job Description：

对各类设备产生的日志/流量/元数据进行关联分析，主动发现和挖掘各类安全事件，输出安全威胁分析经验和报告 负责客户安全事件分析与调查取证，协助客户解决各类安全问题，根据客户需求提供安全解决方案 基于客户安全环境定制安全威胁关联用例，输出POC报告 能对产品提出优化改进建议 负责安全事件突破和交付 负责一线技能培训

Job requirements:

熟悉常见的Web攻击、漏洞利用、病毒木马等的原理及防御方法  有实际攻防渗透、安全事件分析或者应急响应经验，可独立工作  至少掌握一门开发语言（PowerShell，Python，Shell，Go等），代码水平要求能够独立编写工作中需要用到的工具  有日志治理与分析（包括但不限于IPS、WAF、APT、蜜罐、Windows、Linux、数据库审计等日志）经验者优先 熟悉ATT&CK框架，有过安全运营经验者优先  了解 Qradar splunk，elasticsearch等工具优先 具备相关信息安全资质认证优先（如CEH/OSCP/CISP-PTE/RHCE等） 有SRC漏洞或护网得分经验优先