1. Develop and optimize office device security strategies, including network access control (NAC), encryption mechanisms (BitLocker/FileVault), and mobile device management (MDM), ensuring compliance of laptops, smartphones, tablets, and other devices.

2. Design protection schemes for the office environment, monitor remote work traffic, and implement security enhancements for VPN/Zero Trust Network Access (ZTNA) and collaboration tools (WeChat Work/Teams).

3. Evaluate risks in office scenarios (e.g., BYOD devices, cloud drive sharing leaks) and devise solutions (e.g., sandbox isolation, application whitelisting).

4. Conduct regular vulnerability scans, penetration tests, and risk assessments on office endpoints using tools such as Nessus, EDR (CrowdStrike/SentinelOne), and Burp Suite.

5. Track CVEs and threat intelligence for office software, analyze potential impacts on office systems, and drive patch management and remediation.

6. Build an office security monitoring platform (SIEM integrated with endpoint logs) to enable real-time alerting and threat hunting (e.g., spear-phishing, USB device misuse).

7. Provide 24/7 on-call support for high-risk incidents such as office ransomware or Remote Desktop Protocol (RDP) attacks.

1. Bachelor’s degree or above in Computer Science, Network Security, Information Security, or a related field.

2. 3–6 years of experience in office/endpoint security, with at least 1 year leading office environment security projects.

3. Proficient in office security technologies (EDR, MDM, DLP, Zero Trust) and tools (CrowdStrike, Microsoft Defender, Zscaler).

4. Familiar with Windows, macOS, and Linux endpoint security, network protocols (TCP/IP), and hardening of office middleware (Office 365, Zoom).

5. Skilled in at least one scripting language (Python or PowerShell) for automation; familiar with cloud-based office security (Azure AD, Google Workspace).

6. Experience in office security incident response (e.g., remote work data breach projects) is preferred.