Sr.3 IT Security Specialist (Governance/InfraSec)

3 Lý do để gia nhập công ty

• Tech savvy working environment
• Attractive benefits
• Training and developing opportunities

Mô tả công việc

IT Governance:

• Assist the team leader in establishment, review, development, awareness and observation of policies, procedures, practices in relations to governance and planning functions for whole IT
• Execute governance frameworks, International/Internal standards/practices and monitor closely to ensure its effective implementation which help enhance IT functions.
• Work closely with the cross-functional IT departments to develop and coordinate a compliance schedule tailored to the applicable regulations and standards.
• Conduct analysis and improvement of IT policies, procedures, practices
• Communicate the governance activities/policies within IT Division and keep them informed that these activities/policies will affect IT services/deliverables

Infrastructure Sec: 

Cybersecurity risk and compliance framework and management:

• Identify, highlight and remediate information security risk in the Bank

Policy, Standards and Processes:

• Comply with the Bank’s Information Security Policy, Regulations, Standards, and Process
• Provide feedback to enhance the current policies, regulations, standards and processes where necessary
• Communicate and ensure all staff understands and comply with the Information Security Policy, Regulations, Standards and Processses

Operations, Reporting and Administration

• Ensure that the Information Security Strategy and Plans are implemented as planned.
• Ensure that Information Security process are followed diligently. This may include Risks Management, Operating Security Services/Tools to support the Information Security Program of the Bank.
• Control approve the request/changes related to security, control activities of IT security: implementing, operating, vulnerabilities management
• Contribute to the IT Security Dash Board for Management
• Work with both internal/external audit during audit programs
• Training IT security awareness
• Collect, analyze and produce report for IT Security every month

Yêu cầu công việc

IT Governance:

• University degree holder, preferably in IT areas
• 03 years’ experience in IT Governance related domains, preferable in banking or financial business
• Familiar with current industry IT framework: ISMS, ITSM…
• Experience of process design and documentation 
• Knowledge of project methodologies and tools
• Negotiation & Communication skills
• Strongly required good writing skills in English and Vietnamese

Infrastructure Sec: 

• Bachelor's or Technical Degree Required (IT, Cryptography, computer science, information systems, business administration or other industry-related curriculum)
• 3-4 years or more of working experience in IT security banking, good knowledge international IT security standards (ISO 270001, PCI-DSS,…), ITIL
• Have good knowledge about: network security, system security, application security and virus/malwares, secure coding
• Expert with architect, security technology, integration
• Have good knowledge with pen test with OWSAP Standard and ability discovery & exploit vulnerabilities, cyber attack
• Good using some tools for hacking:  VA, APPScan, Metaexploit, kalilinux
• Experienced in implementing ISO27000/PCI-DSS is preferred
• Have good knowledge with secure coding with some languages: Python, Shell, PHP and have good knowledge with encryption, cryptography techniques (is a plus)
• Stakeholder expectation management
• People Management
• Risk Management
• Budget Management

Tại sao bạn sẽ yêu thích làm việc tại đây

See yourselves in a new light

In essence of joining our company, you will be given the scope to seize every opportunity and helped to acquire specific competencies you’ll need to succeed either you wish to go wide or go deep. Our company prides ourselves on our underpinned principle of nurturing people in not only HR policies but also in our culture. We value innovations and we need people to work on initiatives and carry on our business vision of operating excellence and market leadership.

Alongside with these, we believe our staff members deserve a good working condition, so that in addition to social health insurance you will be accessible to health and accident insurance and will be eligible to join in team building every year. We also value your efforts; for this reason, we give you both financial and non-financial rewards such as: KPI bonus, Best Initiatives, Best performer or Best manager of the year, etc.

Company's Benefits

• Financial support:
  • Probation with full salary
  • Lunch allowance
  • Wedding support
  • Family funeral support
  • 13th month salary + KPIs bonus
  • Performance rewards and awards
• Healthcare Insurance
• Events and activities:
  • Christmas
  • Year End party
  • Team Building
  • Family Day
  • Sport Day