Senior IT Security Engineer

China - Suzhou - RHQ (2823)

Information Technology

Posted on 15-08-2025

 About Umicore 

Powering the cars of today and tomorrow. Reducing harmful emissions. Giving unique properties to high-end applications. Giving new life to used metals. As a global advanced materials and recycling group, we develop, produce, and recycle materials for a better life.  

About Support Functions

A global organisation. It’s not just those in our industrial sites and technical centres that are vital to Umicore’s growth. Across our support functions we ensure that we continue to grow and evolve – whether it’s by making sure our decisions are commercially viable, enhancing our reputation, building new customer relationships or finding the right people who can build on what we’ve already achieved. The variety of our work means we cannot stand still. We need to find new ways to do things, discover new solutions and develop new ideas. Which is where you come in.

What you will be doing

• IS security operation in APAC (40%)

• Act as regional information security representative, to ensure good awareness of global technical roadmaps, technical projects and standards, ensure regional requirements and voices be taken by corporate technical and architecture team. 
• Liaise with global partner, monitor security services availability and performance, and follow up the incident to close.  
• Follow up incident handling process, response and resolution on incident.
• Liaise with IS security team, managing and optimizing Fortinet firewall configurations. regularly reviews rulesets, implements threat prevention mechanisms, and performs updates to counter evolving threats.
• Zscaler Administration. Manage configurations, policy updates, and troubleshooting on  both Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) platforms, to ensure a secure access to cloud and internal applications.
• To ensure a good awareness of information security standards, policies and solutions with IS regional team, and key business contacts.
• Maintaining up-to-date documentation for security configurations, procedures, and policies for operational consistency, knowledge transfer, and audit readiness.

• IS security project APAC implementation (20%)

• Liaise with global security team, to plan and support technical projects region effective implementation.
• Provide technical support to ensure an effective FortiNet FW equipment life cycle management.
• Coordinate with local onsite support team and knowledge readiness, to ensure a smooth local coordination and smart hands support.

• Business projects and change requests support (10%)

• Collect with IS PM and related stakeholders to clearly identify information security requirements, and define clear objective and timeline to fulfil business needs.
• Liaise with IS architecture, global security team, to ensure IS recommend solutions agreed successfully implemented with agreed with business stakeholders.

• Security Operation Center in APAC (20%)

• Part of global SOC, monitors security events, analyzes alerts, and coordinates response activities when incidents are detected. Rapid triage and containment help minimize the impact of threats.
• Proactive monitoring for vulnerabilities and emerging threats forms a critical part of the SOC’s responsibilities. This includes gathering threat intelligence, correlating global events with local risks, and recommending countermeasures.
• Conducting vulnerability scans and penetration tests on a regular basis helps identify and address weaknesses before they can be exploited.

• IS network project in APAC (10%)

• Works as backup resource, to provide technical support on network innovation projects region implementation.
• Technical support network equipment life cycle management effective region sites implementation.
• Daily pro-active monitoring activities

Who we are looking for

• Education:

• Bachelor’s degree in Computer Science, Information Technology, Information security or related field (Master’s preferred).
• Certification: CCNP Security, CISSP, Fortinet NSE 4+ (preferred), ITIL Foundation.

• Technical skills:

• Strong expertise in Fortinet (FortiGate, FortiManager, FortiAnalyzer).
• Experience with FortiClient VPN, ZTNA, Zscaler (ZIA/ZPA), SIEM, vulnerability scanners, endpoint protection.
• Familiarity with AWS/Azure security controls.
• Proficient in Cisco networking (routers, switches, wireless, VLANs, STP, Layer 2/3).
• Proficient in network authentication protocol
• Experience with IT infrastructure hardware (Cisco, Fortinet, Zscaler).
• Hands-on with firewall/switch installation, patching, decommissioning, and IT room management.
• Knowledge of project management concepts and practices.

• Managerial skills:
• Ability to report on operations performance and formulate improvement proposals
• Effective under pressure and in escalation scenarios.
• Ability to prioritize and meet deadlines.
• Communicates technical topics to non-technical audiences.
• Ability to maintain good and regular communications with all kind of users in China and English/Mandarin.

• Personal skills:

• Result-oriented team player
• Strong time management and initiative.
• Works independently and drives results.
• Maintains confidentiality and handles sensitive information with discretion.

What we offer

We aim to lead the way. Not just for our customers, but for our employees too. That is why we strive to create a collaborative environment in which we can all succeed, and a culture through which we can all share ideas, develop our expertise and advance our careers. We engage in building an inclusive work culture that offers equal opportunities for all employees irrespective of their diverse backgrounds. As you would expect from a world-leading organisation, we will also reward your contribution with a competitive salary and benefits. With all this and more, imagine what you could do?

 If our pioneering approach can make us a leader in sustainability