IT Cyber Security/ Chuyên Viên An Ninh Mạng

SUMMARY

Managing and building, proposing security policies, procedures and access control activities to control access to data systems.

Conducting information security assessments and consulting to ensure the security design of systems and applications.

Researching, developing Information Security Solutions and Designing to ensure the construction of an information security system according to standards, and to State bodies's regulations (MoF, MIC, SSC, VNX, HNX, HOSE, VSD)

PRIMARY RESPONSIBILITIES

1. Manage, operate, monitor, and troubleshoot problems at an in-depth level on the security system of all infrastructure systems, applications, cyber security, data security, networks and end-user support systems to ensure high levels of functionality, reliability performance, and business alignment

2. Oversee, handle, coordinate, and monitor all cyber security of company.

3. Implement access policy configuration; Deploy approved security regulations and policies on security devices.

4. Participate in planning, architectural design, and implementation of security systems; Prevent viruses, malware, and ensure safety and security for the system.

5. Building Information Security solutions for access identity management (PAM, IAM...); Information Security solutions for networks (Firewall, NAC, APT, NetIPS, DDOS...); Information Security solutions for endpoint devices (AD GPO, HIPS/HFW, Appcontrol, Web/mail filtering, DB security...); Information Security solutions for data (DLP, FAM...)

6. Regularly research and update new security solutions, technologies, and newsletters. Analyze and propose timely prevention, containment, or warning.

7. Scan for vulnerabilities, identify, evaluate and patch vulnerabilities in security systems.

8. Report system status, security incidents, and manifestations of security vulnerabilities to propose immediate remedial measures to leaders.

9. Perform maintenance, software copyright extension, warranty, etc. for security devices.

10. Compile technical documents, operations, processes, and regulations related to security systems. Manage assigned documents.

11. Update work logs, incident logs, and technical records of the security system daily.

1. Three or more years of work experience in similar role in financial industry and/ or in securities industry

2. Strong knowledge in cyber security, OWASP

3. Working knowledge of Security practices and regulations.

4. Knowledge and experience managing cyber security polices, and solutions.

5. Ability to handle pressure and deadline-oriented project demands, as well as manage multiple initiatives

6. Working knowledge of Security practices and regulations.

7. Critical thinker with strong problem-solving skills

1. Bachelors in a technology-related field, or equivalent work or education-related experience

2. One of CCNA, CEH, CompTIA security +, OSCP, CISSP, Linux, ISO 27001 and other equivalent IT security related-certificate implemented best practices in cyber security.