Clouds & Application Security

Liberty Insurance Limited
Đã hết hạn
+2
45 Ly Tu Trong, District 1, Ho Chi Minh
Tại văn phòng

3 Lý do để gia nhập công ty

  • A professional, international working environment
  • Attractive + KPIs bonus
  • Opportunities for career development

Mô tả công việc

1.JOB SUMMARY:

  • Ensure proper technology risk considerations are addressed at each phase of SDLC and provide proactive solutions to correct exposures or mitigate risk.
  • Interpret security standards, procedures, and guidelines for multiple platforms and diverse environments in designing solutions, recommending enhancements ỏ defining mitigation controls to existing systems.
  • Supporting Internal and External Audit, Total quality assurance program and Incident Response Plan and including operation procedure to prevent any impact to business services.
  • Ability to provide new IT security solution, enhance and implement current IT security with team to ensure security awareness and risk assessment for the new projects.

2.DUTIES & RESPONSIBILITIES:

  • Perform information security risk assessment on new applications and changes to applications
  • Report on security gaps and provide appropriate mitigation actions
  • Co-ordinate with application development team to create corrective action plans for non-compliant issues; implement and monitor on the created plan.
  • Recommend security solutions according to Security Policy and Practices established by Liberty Insurance.
  • Promote awareness of current policies and standards, as well as revision of development process, standard.
  • Closely work with domain architect, product managers and others within the technology development unit.
  • Engage in the initial requirements definition, perform risk assessment (analysis of threats and risks) to comply with company security standards.
  • Conduct threat modeling and architecture risk analysis, including secure SDLC testing requirements throughout the development lifecycle.
  • Provide consulting to projects with regard to application security architecture, risk management and IT security compliance.
  • Plan the resolution of any identified vulnerabilities/issues.
  • Security review of application including responsibility of driving requirements definition and risk analysis.
  • Identify enhancement to information security tools, standards, and processes.
  • Provide SME support to projects and programs.
  • Co-ordinate customer and regulator requests and vendor assessments related to data privacy
  • Co-ordinate to develop and implement IT security training courses and educational awareness courses to application development team.
  • Keep IT Management informed of security and audit issues by reporting application/cloud security metrics, performance metrics.
  • Analyze and response to security events and incidents from SIEM, Firewall (FW), Vulnerabilities Scan, and other data sources.
  • Implement policies, standards and guidelines related to Regulations and Global standard
  • Exercise professional judgment on engagements by providing proactive solutions and recommendations
  • Manage vulnerability assessment, penetration test and security source code review
  • Support activities to raise awareness and security knowledge to peers and team.
  • Encourage effective teamwork through cross-functional and department

Yêu cầu công việc

 3.QUALIFICATIONS:

  • Bachelor’s degree in computer engineering, computer science or related field
  • 3+years of total technology experience, with 1+years of experience in IT Security
  • Good knowledge in vulnerability assessment & penetration testing at infrastructure, application and cloud.
  • Good understanding in IT networking & service, various systems, OS, application and cloud.
  • Good knowledge of software development processes, integration of security assessments in SDLC process, secure coding is desirable.
  • Certification in Information Security is advantage.
  • Application Security risk assessment experience required.
  • Experience with code development, database management, application security, web applications, mobile applications, secure coding, threat modeling, and penetration testing.
  • Knowledge in IT security compliance and standard such as PCI DSS and ISO 27001.
  • Knowledge in OWASP top 10 and AWS cloud security is required.
  • Demonstrable experience with mobile application security, Web Service assessment, Robotics Automation.
  • Ability to work with and influence developers, development managers, product managers, technology peers and business contacts are required.
  • Critical attention to detail, thoroughness and documentation.
  • Customer focus and ability to communicate and engage well with businesses users at all level to understand their need and able to clearly articulate IT solution.
  • Occasionally travel up-country and aboard.
  • Have positive attitude, good relationship and service-minded.
  • Excellent problem solving and analytical skill, Planning and Organizing skill and Customer Oriented
  • Proficiency in English both written and spoken
  • Ability to work well with others, as well as independently. Attention to detail.

Tại sao bạn sẽ yêu thích làm việc tại đây

You will love working at Liberty Vietnam:
  • A professional, dynamic and international working environment
  • Advanced Technology Approach
  • Opportunities for career development
  • Attractive benefits
Company's Benefits
Financial support
  • Probation with full salary
  • Lunch allowance
  • Transport allowance
  • Telephone allowance
  • Wedding support
  • Family funeral support
  • 13th month salary + KPIs bonus
  • Performance rewards and awards
Insurance
  • Accident insurance
  • Health insurance
  • Motor bike insurance
Events and activities
  • Year End party
  • Team Building

Liberty Insurance Limited

Xem công ty

Helping people live safer, more secure lives

Mô hình công ty
Sản phẩm
Quy mô công ty
301-500 nhân viên
Quốc gia
United States
Thời gian làm việc
Thứ 2 - Thứ 6
Làm việc ngoài giờ
Thêm lương OT

Việc làm tương tự dành cho bạn

Nhận các việc làm tương tự qua email