What We Can Offer
Salary and bonus in accordance with the company policy Insurance in accordance with the company policy Paid leave in accordance with the company policy
To support IT security team lead / OCD head in the following :
i)To develop, formalize and specify systems, processes, and methodologies to ensure effective monitoring, control, and support of service delivery functions for Branch (working with the regional HO infra security team on deep technical and IT Risk knowledge for Security Software )
ii)Keeping up to date with developments in IT security standards and threats.
2.IT Security (Cyber Security, System Security, Network security) :
i)Identifying vulnerabilities in-branch IT infrastructure
ii)Liaising with IT Department on Patch & Vulnerability remediation
iii)Cyber security thread management (Incident response, thread intelligence, Vulnerability identification and remediation supervising, security monitoring to detect Backdoor, D-Dos, Spoofing, Phishing, Clickjacking
iv)Performing penetration tests to find any flaws
v)Monitoring network usage to ensure compliance with security policies.
3.Technology Risk Management
i)Collaborating with the regional department and the local IT department to improve security / risk and control.
ii)Review branch IT Risk Acceptance (maker level)
iii) Support Audit matters for administrative jobs
4.Access Management :
i)Evaluate access identification, access revocation and access modification for end-users, management of privileged user access into IT components including intranet system, application, and internet connection
ii)Oversight privileged access by CyberArk system (maker level)
iii)Review changes to production systems (maker level)
i)Conduct training annually at branch level and PDAPD
ii)Media Custodian (Token, CD, HDD, Tape)
iii) Email control (reminds user, train user, advise the user on suspicious email)
iv)Raise awareness on IT risk and control to functional business unit
Coordinate with other departments to follow up an action plan of the HCMC branch, if any.
Back up for other OCD team members.
Other jobs assigned by OCD head
1)Have knowledge of Audit standards, principles of internal controls, processes, assessment, and design of compliance testing is creditable
2)Having good knowledge and experience in information security : FW, IPS, VPN, Endpoint Security, App & DB security, Proxy ...
3)Professional information security certification (CISSP, CISA, CEH is credit )
22-36 Nguyen Hue, Bến Nghé, District 1, Ho Chi Minh City, Vietnam