• Implement and guide information security and cybersecurity practices across the
organization
• Ensure integrity and safety of our SaaS platform while maintaining compliance with
international standards
• Implement secure software development practices based on OWASP best
practices
• Coordinate annual secure coding training for development team
• Conduct integrity checks for new employees
• Guide development teams on secure coding techniques
• Ensure security aspects are addressed during code reviews
• Conduct regular security assessments of our software
• Advise DevOps team on security best practices and integrate security into CI/CD
pipeline
• Prepare product for SOC 2 Type 2, ISO 27001, and GDPR certifications
• Coordinate and prepare for penetration testing
• Implement security measures for technological and physical work environments
• Guide IT personnel on continuous monitoring and updating using Microsoft
Defender
• Establish access control protocols for physical and digital environments
• Implement security protocols for remote work scenarios
• Conduct regular audits of physical and digital access rights
• Establish incident response protocols for digital and physical scenarios
• Develop and implement company-wide information security policies and
procedures
• Conduct regular risk assessments and vulnerability scans
• Assist in developing incident response and disaster recovery plans
• Serve as key point of contact for all security-related matters
• Provide regular reports on security status, incidents, and improvements to
management

• 5+ years of experience in information security, focusing on implementation and
guidance
• English fluent
• Deep understanding of software security principles and OWASP best practices
• Strong knowledge of SOC 2 Type 2, GDPR, and ISO 27001 standards and
implementation processes
• Experience with cloud security, particularly in SaaS environments
• Strong background in secure software development lifecycles
• Familiarity with DevOps practices and security integration in CI/CD pipelines
• Experience with Microsoft Defender and other security monitoring tools
• Knowledge of physical security measures and access control systems
• Excellent communication skills, ability to explain complex security concepts
• Ability to work collaboratively with various teams and guide them on security
Preferred Qualifications:
• Relevant certifications such as CISSP, CISM, or CEH
• Experience in the WiFi or networking industry
• Background in privacy law and data protection
• Experience with penetration testing and ethical hacking

Trong tuần: Từ thứ 2 - thứ 6

Trong ngày: Từ 08:30 giờ - 18:00 giờ

- No need to try a job, get an official job with 100% salary
- Opportunities onsite and working with big customers, advanced technology, self-development...
- The opportunity to work in groups with many leading experts in the field of domestic and international IT.
- Opportunity to implement ambitious projects in many countries, exposure to the latest technologies and learn from good colleagues.
- Working in a young, vibrant, modern and multicultural environment; Communication activities and events on holidays take place regularly.
- Opportunity for advancement based on ability with corresponding increase in rank and salary increase.
- Have the right to participate in soft skills training courses (logical thinking, creative thinking, communication skills, project management skills, negotiation skills…) and Japanese language classes.
- And many other attractive benefits...

Remote