Security Engineer

Shanghai - China

Monthly Salary: Not Disclosed

Posted on: 30+ days ago

Vacancies: 1 Vacancy

Job Summary

Job purpose
Working as part of the Security Operations Team the Security Engineer helps build maintain and optimize security tools develop detection capabilities and drive automation to improve response efficiency. The position plays a key role in strengthening BorgWarners overall security posture in a continuously evolving threat landscape.
The Security Engineer supports BorgWarners global cybersecurity operations by detecting analyzing and responding to security threats across the enterprise. This role ensures the integrity and protection of systems and data through multilayered security tooling continuous monitoring and incident response.

Key responsibilities

On a day-to-day basis respond to remediate and coordinate incident response actions with other stakeholders both internal and external
Monitor security alerts and logs from SIEM and other securing alerting tools
Engage with external managed security services where necessary
Creates searches and necessary reports to prevent disruption or unavailability of information assets and assess the impact
Analyses security attacks and decides and or advises ways to solve them by configurating existing and new security tools
Develop and maintain technical runbooks and process documents
Conduct in-depth analysis of suspicious activities and attempted attacks during and post incident through and not limited to the analysis of malware packets alerts and logs for signs of malicious activity
Stay current with digital forensic and incident response technology methodology and legal requirements
Develop scripts and automation to streamline security operations tasks
Perform computer forensic & incident investigations when required
Ensure that all investigations are performed in-line with regulatory requirements and internal corporate policies standards and procedures
Provide metrics for management and periodic intelligence reports and lessons learned on various threat actors and IOCs
Build upon existing capabilities through continuous improvement of relevant intelligence sources and methods recommending new tools and procedures to detect threats and protect intellectual property and assets
Maintain and optimize security tools such as endpoint protection EDR DLP and Email Security
Assist in support of formal investigations and/or inquiries to resolve insider threat related matters acceptable use policy violations
Identifies areas for improvement in internal processes along with possible solutions
Work with the Security Operations Lead to define and document standard operating procedures for security incident handling malware analysis vulnerability management etc
Maintains the confidentiality related to the professional secret and the security of the documents manipulated and administrated by him / her

What were looking for

Bachelors degree in Computer Science Cybersecurity Information Technology or related field

2 years of experience in IT Security with a focus on Incident Response and security engineering
Strong understanding of security principles threat landscapes and incident response
Experience with SIEM EDR DLP VM Email Security and Threat Intelligence platforms
Relevant certifications (e.g. Sec GSEC GCIA CEH CISSP) are preferred
Foreign languages: Fluent in English written and verbal

Key Job Skills and or competencies

Deep understanding of security systems firewalls authentication systems log management content filtering network security and networking technologies
Has worked with and managed at least one of the following technologies: SIEM EDR DLP VM Email Security
Proven knowledge in the following security disciplines : advanced threats information security incident detection and response forensic investigative practices
Experience in developing collecting and analysing threat intelligence
Experience in AI and LLM models
Experience in cyber intelligence analytic methodologies such as Kill Chain threat modelling threat hunting
Relevant experience in an international environment
Identifying problems; recognizing significant threats and risks; making connections between data;
Tracing possible causes of problems; investigating relevant data
Upholding generally accepted social and ethical standards in job-related activities
Strong written oral and presentation skills

Internal Use Only: Salary

Global Terms of Use and Privacy Statement

Carefully read the BorgWarner Privacy Policy before using this website. Your ability to access and use this website and apply for a job at BorgWarner are conditioned on your acceptance and compliance with these terms.

Please access the linked document by clicking here select the geographical area where you are applying for employment and review. Before submitting your application you will be asked to confirm your agreement with the terms.

Career Scam Disclaimer: BorgWarner makes no representations or guarantees regarding employment opportunities listed on any third-party website. To protect against career scams job applicants should take the necessary precautions when interviewing for and accepting employment positions allegedly offered by BorgWarner. Applicants should never provide their national ID numbers birth dates credit card numbers bank account information or other private information when communicating with prospective employers or responding to employment opportunities online. Job applicants are invited to contact BorgWarner through BorgWarners website to verify the authenticity of any employment opportunities.

Key responsibilities

On a day-to-day basis respond to remediate and coordinate incident response actions with other stakeholders both internal and external
Monitor security alerts and logs from SIEM and other securing alerting tools
Engage with external managed security services where necessary
Creates searches and necessary reports to prevent disruption or unavailability of information assets and assess the impact
Analyses security attacks and decides and or advises ways to solve them by configurating existing and new security tools
Develop and maintain technical runbooks and process documents
Conduct in-depth analysis of suspicious activities and attempted attacks during and post incident through and not limited to the analysis of malware packets alerts and logs for signs of malicious activity
Stay current with digital forensic and incident response technology methodology and legal requirements
Develop scripts and automation to streamline security operations tasks
Perform computer forensic & incident investigations when required
Ensure that all investigations are performed in-line with regulatory requirements and internal corporate policies standards and procedures
Provide metrics for management and periodic intelligence reports and lessons learned on various threat actors and IOCs
Build upon existing capabilities through continuous improvement of relevant intelligence sources and methods recommending new tools and procedures to detect threats and protect intellectual property and assets
Maintain and optimize security tools such as endpoint protection EDR DLP and Email Security
Assist in support of formal investigations and/or inquiries to resolve insider threat related matters acceptable use policy violations
Identifies areas for improvement in internal processes along with possible solutions
Work with the Security Operations Lead to define and document standard operating procedures for security incident handling malware analysis vulnerability management etc
Maintains the confidentiality related to the professional secret and the security of the documents manipulated and administrated by him / her

What were looking for

Bachelors degree in Computer Science Cybersecurity Information Technology or related field

2 years of experience in IT Security with a focus on Incident Response and security engineering
Strong understanding of security principles threat landscapes and incident response
Experience with SIEM EDR DLP VM Email Security and Threat Intelligence platforms
Relevant certifications (e.g. Sec GSEC GCIA CEH CISSP) are preferred
Foreign languages: Fluent in English written and verbal

Key Job Skills and or competencies

Deep understanding of security systems firewalls authentication systems log management content filtering network security and networking technologies
Has worked with and managed at least one of the following technologies: SIEM EDR DLP VM Email Security
Proven knowledge in the following security disciplines : advanced threats information security incident detection and response forensic investigative practices
Experience in developing collecting and analysing threat intelligence
Experience in AI and LLM models
Experience in cyber intelligence analytic methodologies such as Kill Chain threat modelling threat hunting
Relevant experience in an international environment
Identifying problems; recognizing significant threats and risks; making connections between data;
Tracing possible causes of problems; investigating relevant data
Upholding generally accepted social and ethical standards in job-related activities
Strong written oral and presentation skills

Internal Use Only: Salary

Global Terms of Use and Privacy Statement

Key Skills

Splunk
IDS
Network security
Computer Networking
Identity & Access Management
PKI
PCI
NIST Standards
Security System Experience
Information Security
Encryption
Siem

Apply Now

About Company

BorgWarner

BorgWarner is a global product leader in delivering innovative and sustainable mobility solutions for the vehicle market. We are a company of innovators and independent thinkers that brings together talented employees, meaningful work, and amazing technology in a unique environment. A ... View more

View Profile View Profile

AI AutoApply

Apply to 100+ jobs with one click