SHEIN Global Security and Risk Management (GSRM) oversees security infrastructure, risk management, data privacy, business fraud, governance, and regulatory compliance across SHEIN's global operations. Comprised of security professionals, innovators, and thought leaders with decades of experience, including leadership roles in Fortune 500 companies, GSRM is not just about protecting the company but also empowering it through innovative and scalable solutions. Collaborative teams across the company strive to embody our shared values and vision.
Position Summary:
This position requires in-depth technical understanding and rich practical experience in data security, risk mitigation technology, and R&D engineering. Through the R&D, integration, and implementation of data security engineering, we will implement a data security operation platform for supporting data security operations, privacy and compliance teams to identify, assess, and mitigate risks. The candidate should be familiar with software engineering industry standards and best practices, and be able to effectively collaborate with multiple parties, including Big data team, technology R&D, and other security departments.
Responsibilities:
- Facilitate risk analysis, data security requirements, and technology roadmaps with Tech & security teams, ensuring compliance with industry and regulatory standards (e.g. CCPA, PDPA).
- Collaborate with security teams across regions to develop strategies and execute projects based on compliance and data protection needs to safeguard customer and enterprise data.
- Responsible for the data security engineering and solutions end-to-end, from technical design, R&D development, implementation, and commercial system integration.
- Implement data security operation platforms including data discovery, classification, de-sanitization, compliance control, and leakage prevention.
- Integrate commercial data security tools such as endpoint DLP, cloud DLP, CASB, data discovery and classification, and privacy DSR platform, ensuring alignment with EU data protection regulations.
- Ensure that data security measures integrate seamlessly with company-wide security strategies and contribute to the overall security posture.
Skills and Qualifications:
- Data Security Proficiency: Practical working knowledge of data security solutions including data discovery, classification, de-identification, and leakage prevention using tools such as endpoint DLP, cloud DLP, CASB, and Privacy DSR tooling.
- Software Development Experience: At least 5 years of solid experience in software development, with a preference for expertise in Java.
- Database and Applications: Familiarity with relational databases like MySQL and applications such as Redis, MQ, and Elasticsearch.
- Big Data Technologies: Knowledge of big data related technologies like Flink, Storm, Kafka, etc., is preferred.
- Education Level: Bachelor's Degree
- Field of Study: Computer Engineering, Computer Science, Information Technology, Cybersecurity, or related fields.
- Certifications: Relevant cybersecurity certifications such as CISSP, CISM, CISA, or PMP are highly desired.
