Job description

Requirements

  • Entry level
  • No Education
  • Salary to negotiate
  • Beijing

Description

Objectives of the Position
•Providing a secure and trustworthy customer journey is one of our most important objectives. In order to expand our cybersecurity capabilities, Daimler Greater China (DGRC) is seeking a Security Architect.
He/she is responsible to consistently execute the global architecture and security strategy.
•The main objective for the Security Architect is to deploy and operate application security capabilities, solutions and requirements. This includes ensuring the execution of code reviews and application focused attack as well as penetrating testing. The Specialist will also support the identification and remediation of application-level vulnerabilities to meet DGRC and other Daimler China entities’ needs and business requirements.
•Application Security: (45%)
- Support IT projects to fulfill their requirements for enhanced protection. This includes the whole development lifecycle from requirements phase through development and testing phase in waterfall and agile driven IT projects.
- Through the whole software development life-cycle (SDLC) security requirements have to be monitored and developed on request.
- Security incident and event management, vulnerebility mgmt., risk analysis, security finding’s mitigation, penetration testing, security architectural support.
- Deploy, integrate and operate application security capabilities, solutions and requirements consistently.
- Leverage and support given initiatives from Daimler Global CyberSecurity.
- Identify and document application level vulnerabilities and ensure inadequate information risks are being addressed.
- Review design specifications and identify system use scenarios with potential security implications.
- Ensure that technical, architectural or design decisions will not lead to violations of security policies.
- Assess the system architecture to identify potential security threats and vulnerabilities and determine their impact.
- Coordinate with involved parties and monitor remediation activities.
- Provide guidance and recommendations for remediating application vulnerabilities.
- Recommend and facilitate targeted application security training, including developing and implementing a secure code training program to highlight software vulnerabilities and defense measures.
- Establishment of relevant processes and methods in order to create transparency in information security.
- Conduct application security testing quality assurance (QA) throughout the SDLC lifecycle to validate testing processes.
- Support the secure recovery of applications in alignment with IT Service Continuity Management
(ITSCM) standards.
- Support for cloud risk assessment
•Consulting & Innovation Support: (45%)
- Serve as a member during application build processes.
- Provide consulting and on-demand support to innovation initiatives to drive speed to value.
- Provide security support and consultant within project rollout and lead some execution of IT
security projects.
- Responsible for implementation of IT Security related technologies, interface with IT Operational
Security.
•Proactive Guidance: (10%)
- Actively communicate and keep abreast of the latest trends in application security.
- Stay current on industry leading practices.
- Monitor application security threats and incorporate leading practices.
- Proactively identify opportunities for improvements in application security. Facilitate meetings with business members and participate in discussions relating to changes in application security standards.
Task description
•Application Security:
- Support IT projects to fulfill their requirements for enhanced protection. This includes the whole development lifecycle from requirements phase through development and testing phase in waterfall and agile driven IT projects.
- Through the whole software development life-cycle (SDLC) security requirements have to be monitored and developed on request.
- Security incident and event management, vulnerebility mgmt., risk analysis, security finding’s mitigation, penetration testing, security architectural support.
- Deploy, integrate and operate application security capabilities, solutions and requirements consistently.
- Leverage and support given initiatives from Daimler Global CyberSecurity.
- Identify and document application level vulnerabilities and ensure inadequate information risks are being addressed.
- Review design specifications and identify system use scenarios with potential security

About the company

Daimler AG is one of the world’s most successful automotive companies. With its divisions Mercedes-Benz Cars, Daimler Trucks, Mercedes-Benz Vans, Daimler Buses and Daimler Financial Services, the Daimler Group is one of the biggest producers of premium cars and the world’s biggest manufacturer of commercial vehicles with a global reach. Daimler Financial Services provides financing, leasing, fleet management, insurance, financial investments, credit cards, and innovative mobility services.

The company’s founders, Gottlieb Daimler and Carl Benz, made history with the invention of the automobile in the year 1886. As a pioneer of automotive engineering, Daimler continues to shape the future of mobility today: The Group’s focus is on innovative and green technologies as well as on safe and superior automobiles that appeal to and fascinate. Daimler consequently invests in the development of alternative drive trains with the long-term goal of emission-free driving: from hybrid vehicles to electric vehicles powered by battery or fuel cell. Furthermore, the company follows a consistent path towards accident-free driving and intelligent connectivity all the way to autonomous driving. This is just one example of how Daimler willingly accepts the challenge of meeting its responsibility towards society and the environment.

The brand portfolio of Daimler comprises Mercedes-Benz, Mercedes-AMG, Mercedes-Maybach, Mercedes me, smart, EQ, Freightliner, Western Star, BharatBenz, Fuso, Setra, Thomas Built Buses as well as Mercedes-Benz Bank, Mercedes-Benz Financial Services, Daimler Truck Financial, moovel, car2go and mytaxi.

Companies in this sector

Hives where you can find this job offer