SH-蓝队工程师 SA2

Job Req ID: 36669

Date: 1 Nov 2024

Country/Region: CN

City: Chengdu SDC

Job Profile Summary

SH-蓝队工程师

Job Description

1. Be familiar with the use of various security products, such as IDS / IPS, WAF, EDR, traffic analysis and situational awareness, and be able to independently process and analyze security alarm information.
1. 熟悉国内外各类安全产品IDS/IPS、WAF、EDR、流量分析、态势感知等的使用，能够独立处理安全告警信息并加以分析。
2. Be familiar with the utilization principle and attack mode of various vulnerabilities, such as OWASP TOP 10, and the principle and repair method of common vulnerabilities.
2. 熟悉各类漏洞如OWASP TOP 10的利用原理及攻击方式，熟悉常见漏洞原理及修复方式。
3. Be familiar with the basic services, protocols and common security problems of the operating system (Windows / Linux), and master the methods of server security reinforcement and emergency response.
3. 熟悉操作系统（Windows/Linux）基础服务、协议，及常见的安全问题，掌握服务器安全加固、应急响应方法。
4. Be familiar with at least one computer programming language (C, Java, python, go, PHP, etc.).
4. 至少熟悉一种计算机编程语言（C、JAVA、Python、Go、PHP等）。
5. Be familiar with the use methods of various security tools, and be familiar with the network traffic characteristics and detection methods of network attacking.
5. 熟知安全测试各类工具使用方法和网络攻击的流量特征、检测方式。
6. Experience in HW blue team, emergency response and penetration test (extra points).
6. 拥有HW蓝队、应急响应、渗透测试经验（加分项）。
7. CET-4 or above, with strong English reading and writing skills (computer security direction), and can adapt to the English office environment.
7. 英语四级以上，有较强的英语阅读、写作能力（计算机安全方向），可适应英文办公环境。