1. 12 years + information security work experience, with external compliance application and testing experience such as MPLS, ISO27001, UPDSS, PCI-DSS, etc., having experience in data security remodeling; familiar with common attack methods and protective measures, having experience in security incident and response.
2. Be familiar with burpsuite, nessus, sqlmap and other security tools, with WAF, SOC, data leakage prevention product solution capabilities; more experience in network architecture about multiple data centers, security architecture overall design, familiar with network monitoring, python scripting and security reinforcement.
3. Responsible for enterprise information security planning, construction and security team building from 0 to 1. For example, Enterprise information security planning, annual budget control, team management, establishment of a security and reliable business network environment, establishment of a security operation center, including monitoring and automatic response.
4. Be familiar with security devices, such as fortinet,cisco,huawei,h3c,ditech,,threatbook,nsfcous,netscout,and so on.
RCPT, CISSP, Personal Information Protection Engineer (PIPP), ITIL V3 Foundation, information security attack and defense, H3CTE
tips: i don't know your website environment , or just be compromised. If it's a new website and mail server(exchange or other mail server), it maybe cheap. But if it had been compromised, i think it would be expensive.
If you choose me, i think we should make a talk, and then i will give you a plan and cost.