1. Implemented an open-source email security gateway, developed a Perl plug-in to integrate blacklist intelligence, and trained a Bayesian classifier model to detect and block over 1,000 malicious emails per month.
2. Implemented a Data Loss Protection (DLP) system in Linux environment, formulated and regularly audited system policies to protect confidential R&D data.
3. Implemented an Intrusion Detection System (IDS) for network traffic detection and protection based on the MITRE ATT&CK framework, developed and regularly audited system policies, and collaborated daily with IT units to investigate high-risk events.
4. Utilized Splunk to collect data and establish a Security Information and Event Management (SIEM) system for auditing abnormal employee behavior, with regular reviews and policy amendments to prevent data leakage.
5. Developed a physical security protection system, established a Python TensorFlow object detection model, trained to identify physical security anomalies, and achieved a 90% detection rate.
6. Developed PowerShell scripts to enable batch transfer of sensitive data in the R&D environment, saving nearly 8 man-days per month.
7. Built an information security e-newsletter publishing system, crawl the content of various news websites through Python Selenium, and publish the content to the enterprise portal through Robotic Process Automation (RPA), saving nearly 1 man-day per month.