Kỹ năng
Mô tả công việc
• Implement and guide information security and cybersecurity practices across the
organization
• Ensure integrity and safety of our SaaS platform while maintaining compliance with
international standards
• Implement secure software development practices based on OWASP best
practices
• Coordinate annual secure coding training for development team
• Conduct integrity checks for new employees
• Guide development teams on secure coding techniques
• Ensure security aspects are addressed during code reviews
• Conduct regular security assessments of our software
• Advise DevOps team on security best practices and integrate security into CI/CD
pipeline
• Prepare product for SOC 2 Type 2, ISO 27001, and GDPR certifications
• Coordinate and prepare for penetration testing
• Implement security measures for technological and physical work environments
• Guide IT personnel on continuous monitoring and updating using Microsoft
Defender
• Establish access control protocols for physical and digital environments
• Implement security protocols for remote work scenarios
• Conduct regular audits of physical and digital access rights
• Establish incident response protocols for digital and physical scenarios
• Develop and implement company-wide information security policies and
procedures
• Conduct regular risk assessments and vulnerability scans
• Assist in developing incident response and disaster recovery plans
• Serve as key point of contact for all security-related matters
• Provide regular reports on security status, incidents, and improvements to
management
organization
• Ensure integrity and safety of our SaaS platform while maintaining compliance with
international standards
• Implement secure software development practices based on OWASP best
practices
• Coordinate annual secure coding training for development team
• Conduct integrity checks for new employees
• Guide development teams on secure coding techniques
• Ensure security aspects are addressed during code reviews
• Conduct regular security assessments of our software
• Advise DevOps team on security best practices and integrate security into CI/CD
pipeline
• Prepare product for SOC 2 Type 2, ISO 27001, and GDPR certifications
• Coordinate and prepare for penetration testing
• Implement security measures for technological and physical work environments
• Guide IT personnel on continuous monitoring and updating using Microsoft
Defender
• Establish access control protocols for physical and digital environments
• Implement security protocols for remote work scenarios
• Conduct regular audits of physical and digital access rights
• Establish incident response protocols for digital and physical scenarios
• Develop and implement company-wide information security policies and
procedures
• Conduct regular risk assessments and vulnerability scans
• Assist in developing incident response and disaster recovery plans
• Serve as key point of contact for all security-related matters
• Provide regular reports on security status, incidents, and improvements to
management
Yêu cầu công việc
• 5+ years of experience in information security, focusing on implementation and
guidance
• English fluent
• Deep understanding of software security principles and OWASP best practices
• Strong knowledge of SOC 2 Type 2, GDPR, and ISO 27001 standards and
implementation processes
• Experience with cloud security, particularly in SaaS environments
• Strong background in secure software development lifecycles
• Familiarity with DevOps practices and security integration in CI/CD pipelines
• Experience with Microsoft Defender and other security monitoring tools
• Knowledge of physical security measures and access control systems
• Excellent communication skills, ability to explain complex security concepts
• Ability to work collaboratively with various teams and guide them on security
Preferred Qualifications:
• Relevant certifications such as CISSP, CISM, or CEH
• Experience in the WiFi or networking industry
• Background in privacy law and data protection
• Experience with penetration testing and ethical hacking
guidance
• English fluent
• Deep understanding of software security principles and OWASP best practices
• Strong knowledge of SOC 2 Type 2, GDPR, and ISO 27001 standards and
implementation processes
• Experience with cloud security, particularly in SaaS environments
• Strong background in secure software development lifecycles
• Familiarity with DevOps practices and security integration in CI/CD pipelines
• Experience with Microsoft Defender and other security monitoring tools
• Knowledge of physical security measures and access control systems
• Excellent communication skills, ability to explain complex security concepts
• Ability to work collaboratively with various teams and guide them on security
Preferred Qualifications:
• Relevant certifications such as CISSP, CISM, or CEH
• Experience in the WiFi or networking industry
• Background in privacy law and data protection
• Experience with penetration testing and ethical hacking
Thời gian làm việc
Trong tuần: Từ thứ 2 - thứ 6
Trong ngày: Từ 08:30 giờ - 18:00 giờ
Quyền lợi ứng viên
- Onsite allowance 100k/working day.
- No need for probation, official job, 100% salary and full insurance according to Vietnamese labor law (social insurance, health insurance, unemployment insurance) after 2 months.
- Performance evaluation once every 6 months, corresponding to the salary review period based on capacity and performance.
- Long service bonus, project bonus, 13th month salary bonus, work efficiency bonus at the end of the year.
- Maternity allowance for female employees.
- Participate in company activities: Monthly, quarterly parties, teambuilding, travel, relaxation and other activities
- Opportunities to onsite and work with big customers, advanced technology, personal development...
- Opportunity to work in groups with many leading experts in the field of domestic and international IT.
- Opportunity to implement ambitious projects in many countries, gain exposure to the latest technologies and learn from talented colleagues.
- Work in a youthful, vibrant, modern and multicultural environment. Communication activities and events on holidays take place regularly.
- Promotion opportunities based on capacity with corresponding rank increases and salary increases.
- Have the right to participate in soft skills training courses (logical thinking, creative thinking, communication skills, project management skills, negotiation skills...) and Japanese language classes.
- And many other attractive benefits...
- No need for probation, official job, 100% salary and full insurance according to Vietnamese labor law (social insurance, health insurance, unemployment insurance) after 2 months.
- Performance evaluation once every 6 months, corresponding to the salary review period based on capacity and performance.
- Long service bonus, project bonus, 13th month salary bonus, work efficiency bonus at the end of the year.
- Maternity allowance for female employees.
- Participate in company activities: Monthly, quarterly parties, teambuilding, travel, relaxation and other activities
- Opportunities to onsite and work with big customers, advanced technology, personal development...
- Opportunity to work in groups with many leading experts in the field of domestic and international IT.
- Opportunity to implement ambitious projects in many countries, gain exposure to the latest technologies and learn from talented colleagues.
- Work in a youthful, vibrant, modern and multicultural environment. Communication activities and events on holidays take place regularly.
- Promotion opportunities based on capacity with corresponding rank increases and salary increases.
- Have the right to participate in soft skills training courses (logical thinking, creative thinking, communication skills, project management skills, negotiation skills...) and Japanese language classes.
- And many other attractive benefits...
Địa chỉ làm việc
Địa điểm onsite: 9 P. Đào Duy Anh, Phương Liên, Đống Đa, Hà Nội
Hỗ trợ ứng tuyển
Hr Admin
Hr
Việc làm cùng kỹ năng
