Mô Tả Công Việc
- Your top priority is to secure the business by any means, starting from technical things.
- Let your hand dirty on all security operations, including but not limited to SOC function, Vulnerability Management, MFA Service, IDS/IPS, DDOS Protection, WAF, Cloud Security, VPN Management and Endpoint Protection.
- You are the supporter of Product & IT Operation & IT Development teams to identify cyber-attack risks in the system and define practical mitigation plans.
- You will have a chance to build security lifecycle architecture and technical assessments, from design requirements, operations, reports and improvements.
- Need to know on how to build a standardized set of security requirements and documentation for internal systems and product offerings.
- Follow the deadline by your heart with SLAs for new vulnerabilities, monitor existing vulnerabilities, work on false positives, and detect logic changes.
- Find a way to show your work result (KPI, dashboard, metric …) and give management an easy mind to understand that.
- Find your way from through the work to comply with laws, regulations, industry standards, and ethical privacy and information security requirements. Some of the names are SBV Circular 09, 35, 47, and PCI DSS Level 1.
- When the incident happens, and you need to resolve it appropriately.
- Cloud is trending everywhere, and yes, we do have cloud environment. Show us how you could secure it from basic to advanced.
- Another trend is the container for better scale, and we want to secure it as well.
Yêu Cầu Công Việc
- Minimum 3 years of working experience.
- Experience in similar positions in banks/ financial service companies.
- You know about Governance, Risk, Compliance. It’s a plus.
- If you don’t know, be eager to learn as quickly as possible.
- You have working experience in Financial Services or Banking. It’s good.
- Your hands have been dirty in security stuff and you want more. We want it too.
- Watch anything from on-premises to cloud, from virtualization to container, from monolith to serverless in a secure way.
- Don’t forget to know the basic security principles.
- Don’t be blurred by trending words such as Zero Trust, SIEM, SOAR, ASM, CNAPP, or XDR …
- Willing to apply MITRE ATT&CK, NIST CSF, and CIS Critical Control frameworks.
- Any related certificate in security is OK.
- Know the rule and enhance it (or break it if you wish)
Hình thức
Quyền Lợi
WHY YOU JOIN US:
- Working in the fast-moving international Fin-Tech environment.
- Competitive salary with high-tech supports.
- Bonus salary and company activities for each quarter.
- Personal Health Care Package from BaoViet Insurance.
- Working in new building E- Town Tower, 11 Doan Van Bo, Dist.4, HCMC.
As a member of Software Development team, you will be one of our talent crews, be side by side with others more than 25 professional Software Engineers, Automation Testers and Data Scientist having strong experience in financial solutions, online payment to transform and achieve unexpected achievements in the endless innovation of this Industry 4.0 nowadays. You are good at Java, interested in Magento platform and creating Automation Testing tools, or just excellent in data mining/analyzing - don't hesitate to find more opportunities at SmartPay since NOW.