Cisco Cybersecurity Incident Analyst 

China, Shanghai 

837972913

Who We Are:

:

Key Responsibilities:

1. Incident Response Leadership
• Lead all phases of incident response, including detection, analysis, containment, eradication, recovery and communication.
• Act as the primary decision-maker during cybersecurity incidents, coordinating efforts across technical and business teams.
• Ensure adherence to the organization's incident response framework and regulatory requirements.

1. Strategic Communication
• Serve as the main point of contact for incident updates to executive leadership and stakeholders.
• Provide detailed, actionable reports during and after incidents, including root cause analysis and mitigation strategies.

1. Collaboration and Coordination
• Collaborate with Corporate CSIRT, Incident Command, Cyber legal, IT, risk management, Data Protection and other departments to ensure a unified response.
• Engage with third-party vendors, Managed Security Service Providers (MSSPs), and law enforcement when necessary.

1. Preparation and Readiness
• Develop, maintain, and test incident response plans, playbooks, and escalation procedures.
• Conduct regular tabletop exercises and simulations to train and prepare teams.

1. Post-Incident Activities
• Oversee the generation of post-incident reports and ensure lessons learned are incorporated into future planning.
• Recommend security enhancements to prevent recurrence of incidents.

1. Compliance and Reporting
• Ensure compliance with industry regulations and organizational policies during incident response.
• Stay updated on emerging threats and trends in cybersecurity to improve response capabilities.

Minimum Qualifications:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• 4+ years of experience in cybersecurity
• Demonstrated experience managing large-scale cybersecurity incidents.
• Strong understanding of regulatory requirements and industry standards (e.g., CSL, DSL, PIPL, GDPR, HIPAA, PCI-DSS).
• Excellent written and verbal communication abilities in English and Chinese.

Preferred Qualifications:

• Certifications such as CISSP, CISM, GIAC Certified Incident Handler (GCIH), or Certified Information Systems Auditor (CISA) preferred.
• 3+ years in an incident response role.
• Exceptional leadership and decision-making under pressure.

• Strong analytical and problem-solving skills.
• Collaborative mindset with an ability to manage cross-functional teams.
• Ability to coordinate 24 x 7 cross geographic incidents.

Work Environment:

• Hybrid work environment with on-site presence required as needed.
• On-call availability to respond to critical incidents.

But “Digital Transformation” is an empty buzz phrase without a culture that allows for innovation, creativity, and yes, even failure (if you learn from it.)