Đã hết hạn
3 Lý do để gia nhập công ty
- A professional, international working environment
- Attractive + KPIs bonus
- Opportunities for career development
Mô tả công việc
1.JOB SUMMARY:
- Ensure proper technology risk considerations are addressed at each phase of SDLC and provide proactive solutions to correct exposures or mitigate risk.
- Interpret security standards, procedures, and guidelines for multiple platforms and diverse environments in designing solutions, recommending enhancements ỏ defining mitigation controls to existing systems.
- Supporting Internal and External Audit, Total quality assurance program and Incident Response Plan and including operation procedure to prevent any impact to business services.
- Ability to provide new IT security solution, enhance and implement current IT security with team to ensure security awareness and risk assessment for the new projects.
2.DUTIES & RESPONSIBILITIES:
- Perform information security risk assessment on new applications and changes to applications
- Report on security gaps and provide appropriate mitigation actions
- Co-ordinate with application development team to create corrective action plans for non-compliant issues; implement and monitor on the created plan.
- Recommend security solutions according to Security Policy and Practices established by Liberty Insurance.
- Promote awareness of current policies and standards, as well as revision of development process, standard.
- Closely work with domain architect, product managers and others within the technology development unit.
- Engage in the initial requirements definition, perform risk assessment (analysis of threats and risks) to comply with company security standards.
- Conduct threat modeling and architecture risk analysis, including secure SDLC testing requirements throughout the development lifecycle.
- Provide consulting to projects with regard to application security architecture, risk management and IT security compliance.
- Plan the resolution of any identified vulnerabilities/issues.
- Security review of application including responsibility of driving requirements definition and risk analysis.
- Identify enhancement to information security tools, standards, and processes.
- Provide SME support to projects and programs.
- Co-ordinate customer and regulator requests and vendor assessments related to data privacy
- Co-ordinate to develop and implement IT security training courses and educational awareness courses to application development team.
- Keep IT Management informed of security and audit issues by reporting application/cloud security metrics, performance metrics.
- Analyze and response to security events and incidents from SIEM, Firewall (FW), Vulnerabilities Scan, and other data sources.
- Implement policies, standards and guidelines related to Regulations and Global standard
- Exercise professional judgment on engagements by providing proactive solutions and recommendations
- Manage vulnerability assessment, penetration test and security source code review
- Support activities to raise awareness and security knowledge to peers and team.
- Encourage effective teamwork through cross-functional and department
Yêu cầu công việc
3.QUALIFICATIONS:
- Bachelor’s degree in computer engineering, computer science or related field
- 3+years of total technology experience, with 1+years of experience in IT Security
- Good knowledge in vulnerability assessment & penetration testing at infrastructure, application and cloud.
- Good understanding in IT networking & service, various systems, OS, application and cloud.
- Good knowledge of software development processes, integration of security assessments in SDLC process, secure coding is desirable.
- Certification in Information Security is advantage.
- Application Security risk assessment experience required.
- Experience with code development, database management, application security, web applications, mobile applications, secure coding, threat modeling, and penetration testing.
- Knowledge in IT security compliance and standard such as PCI DSS and ISO 27001.
- Knowledge in OWASP top 10 and AWS cloud security is required.
- Demonstrable experience with mobile application security, Web Service assessment, Robotics Automation.
- Ability to work with and influence developers, development managers, product managers, technology peers and business contacts are required.
- Critical attention to detail, thoroughness and documentation.
- Customer focus and ability to communicate and engage well with businesses users at all level to understand their need and able to clearly articulate IT solution.
- Occasionally travel up-country and aboard.
- Have positive attitude, good relationship and service-minded.
- Excellent problem solving and analytical skill, Planning and Organizing skill and Customer Oriented
- Proficiency in English both written and spoken
- Ability to work well with others, as well as independently. Attention to detail.
Tại sao bạn sẽ yêu thích làm việc tại đây
You will love working at Liberty Vietnam:- A professional, dynamic and international working environment
- Advanced Technology Approach
- Opportunities for career development
- Attractive benefits
Financial support
- Probation with full salary
- Lunch allowance
- Transport allowance
- Telephone allowance
- Wedding support
- Family funeral support
- 13th month salary + KPIs bonus
- Performance rewards and awards
- Accident insurance
- Health insurance
- Motor bike insurance
- Year End party
- Team Building
Liberty Insurance Limited
Xem công ty
Helping people live safer, more secure lives
Mô hình công ty
Sản phẩm
Quy mô công ty
301-500
nhân viên
Quốc gia
United States
Thời gian làm việc
Thứ 2 - Thứ 6
Làm việc ngoài giờ
Thêm lương OT
Việc làm tương tự dành cho bạn
Nhận các việc làm tương tự qua email
HOT
Đăng
9 ngày trước
Head of Corporate Technology Solution (Manager, Cloud)
Tại văn phòng
Ho Chi Minh