3 IT Security Engineer (Architect/SecOps/Governance)

*According to Decree No.13/2023/ND- CP on protecting personal data (“PDP”), Home Credit Vietnam would apply "Personal Data Processing Agreement" with all candidates to ensure compliance with the decree.By submitting this application to Home Credit Vietnam Finance Company Limited through ITViec, you agree to allow Home Credit to proceed your provided information in accordance with Personal Data Processing Agreement that you have read, fully understood and agreed to the entire content at link:
We are open 3 vacancies in IT Security Team:
Architect Position

Identify the IT risk at the beginning of the project and required security controls or corrective measures.
Ensure IT Security solutions architecture and portfolio is aligned with approved IT Security Strategy and IT Security policy.
Participate the assessments and remediation of identified findings of IT Security.
Ensuring security solution meets the business requirements, security and performance goal.
Provide stakeholders with the explanation of security risks, controls, and measures in business language.
Reduce workload to security team by adding automation in daily/weekly/quarterly task
Follows the new/current security trends and technology trends and identifies systems with risk for the functioning company and implements minimum security level required; provides a security solution business processes.
Evaluate and document existing security technology solutions (databases, application, network, governance or monitoring security tools and technologies, and so on).
Ensure projects are compliant with the security architecture framework and secure development standards.

SecOps Position

Reviews violations of security procedures; provides corrective measures to ensure violations do not recur.
Participate in projects to ensure standard processes and procedures are implemented when rolling out new provisioning role management points.
Collaborate with Functional Teams for designing and implementing Security requirements on- premise/ cloud environment.
Collaborate in the design, implementation, and support of the IAM technologies.
Responding to security incidents and write reports/ write- ups.
Cover area of user account life cycle management, including creating, provisioning, securing, and inactivation of access.
Establish and ensure Security Controls.
Participate in projects and production support operations focused on implementing Identity and Access Management (IAM) integrations and Roles Based Access Control (RBAC) strategies and integrations.
Performs other related duties as assigned.

Governance Position

Define IT security requirements and controls in line with the security classification, and internal and external regulations.
Initiate, facilitate, and promote activities to foster information security awareness within the organization, create set of trainings for different groups of users to accommodate their needs.
Schedule and facilitate meetings related to projects.
Perform and report regular check the IT security compliance requirements.
Perform the IT Risk assessment, maintain the IT Risk register and an inventory of controls, implement controls to address identified risk exposure, identify risk response options.
Monitor or track project milestones and deliverables.
Prepare project status reports by collecting, analyzing, and summarizing information and trends.
Contribute to team effort by accomplishing related results as needed.
Direct or coordinate activities of project personnel.
Develop and enforce security policies, standards and guidelines to ensure compliance of Information Security with regulations.
Manage project execution to ensure adherence to schedule, scope.
Identifies and consolidates information assets, maintains Information asset register.

Yêu cầu công việc

Architect Position

Experience in the area of IT Security, knowledge of IT security technologies (SIEM, IDM, MDM, PAM, Vulnerabilities Management, etc.).
Experience with automation
Good skills in external communication (cross- functional teams).
Graduation from university with a degree in Computer Science, Computer Networking.
Experience in the area of designing, deploying, configuring, supporting, troubleshooting, debugging and administering Information Security Products (e.g. Firewalls, Proxy, IDS/IPS, Load balancers, Antivirus solutions, DLP, WAF, SIEM, ... etc.).
Knowledge of Unix based systems and Windows systems, network infrastructure and network security.
Experience with cloud environment
Ability to manage deadlines and work effectively under pressure.
Experience in one or more of: Python, PowerShell, scripting experience in Shell

SecOps Position

Experience in one or more of : Python, PowerShell, scripting experience in Shell
Experience in the other areas of IT Security, knowledge of IT security technologies (IDM, MDM, PAM, Vulnerabilities Management, etc.).
Be able to perform multi- tasks with different priorities and take important notice for assigned tasks and finish urgent matters in required time.
English working proficiency (written and spoken).
Understanding of complex enterprise environments and current technology areas like cloud and mobility
Ability to manage deadlines and work effectively under pressure.
Demonstrated success using Active Directory or Identity and Access management tools
Demonstrated success administrating Identity Management and Access
Good skills in external communication (cross- functional teams).
Knowledge of Unix based systems and Windows systems, network infrastructure and network security.
Demonstrated success with the development of workflows and documentation related to identity and access management.

Governance Position

Experience in the area of IT Security, basic knowledge of IT security technologies (SIEM, IDM, MDM, PAM, Vulnerabilities Management, etc.).
Ability to manage deadlines and work effectively under pressure.
At least 03- year experience in IT security areas.
Good skills in external communication (cross- functional teams).
Knowledge of ISMS/ ISO 27000 and other security best practices (COBIT, NIST, CIS, ...).
Knowledge of local regulation related to IT and financial business (mainly Circular 09)
Knowledge in Project Management and Documentation.

Understanding candidates&039; expectations of the ideal workplace, we always put the people element at the top of our priorities. ​
Compensation programs and employees&039; development opportunities for employees are always significantly invested in, bringing you:​
Primary benefits:

15+ Annual Leaves​
Learning workshops: Udemy E- learning, English courses, Senior management development training programs​
Full Social Insurance, 24/7 Accidental Insurance, Annual Medical Check- up​
Team Building and CSR activities: Year- end Party, New- year Party, Company trip, Charity activities, Blood donation​
13th- month Salary and performance- based KPI Bonus ​

Our culture fosters your career development through: ​
Strategy ​

Thinking Big: We focus on creating meaningful and sustainable opportunities for the company. ​
Customer Obsession: We try to understand future customer needs, trends, and the impact of digital transformation. ​

Implementation ​

Entrepreneurship: We communicate the company&039;s strategy and purpose to others, inspire and lead them effectively. ​
Operational Excellence: We stay focused on the goal, disciplined in tightening tasks to the end. ​
Risk in mind: We consider risks and their possible effects before making decisions. ​
Digital Savviness: We seek to understand the technological aspects of the business to enhance efficiency and customer experience. ​

Building the organization ​

Integrity: We always stay focused on the goal you need to achieve, refrain from getting into personal conflicts.
People Centricity: We sustain focus on the development of team members through meaningful development plans and learning opportunities. ​

Cập nhật gần nhất lúc: 2023-12-25 01:40:39