Cybersecurity Engineer (Security/API/Networking)

Security Monitoring & Operations

Coordinate with IT teams to ensure system security and stability.
Manage, configure, and upgrade security and network devices, including firewalls, VPN, switches, and anti- virus systems.
Monitor and operate security systems using tools such as Firewall (NGFW), IDS/IPS, WAF, SIEM, DLP/DDP, VPN.
Detect, analyze, and handle security incidents such as malware, brute force attacks, DDoS, phishing, web attacks, and other abnormal activities.

Risk Assessment & Control

Coordinate with external vendors to conduct penetration testing and vulnerability assessments.
Support remediation and tracking of identified security issues.
Assess security risks for new systems and IT projects.

Regulatory Compliance & Documentation

Develop, review, and update Information Security (IS) procedures, including:+ Access management+ Risk management+ Incident response+ Backup and Disaster Recovery (DR)
Support internal audits and compliance activities as required.

Incident Response

Prepare incident reports and report to the IT Director.
Execute the incident response process according to defined procedures.
Conduct root cause analysis (RCA) for security incidents.

Security certifications such as Security+, CEH, CySA+, or equivalent are a plus.
Understanding of Web Application Security (OWASP Top 10) and API security.
Experience in financial services or regulated environments is an advantage.
Knowledge of database security (Oracle, MS SQL, PostgreSQL).
Strong analytical thinking, problem- solving skills, and ability to respond quickly to security incidents.
Good understanding of networking concepts such as TCP/IP, NAT, routing, VLAN, and load balancing.
Experience working with Linux and Windows Server environments.
Solid knowledge of cybersecurity fundamentals and hands- on experience with security technologies, including Firewall, IDS/IPS, WAF, SIEM, DLP/DDP, and VPN.
Minimum 3 years of experience in Cybersecurity, Information Security, or Security Operations roles.
Good communication skills; able to work effectively with cross- functional teams.
Good English skills.
Bachelor’s degree from a University in Information Technology, Information Security, Cybersecurity, or related majors.

Lunch allowance, parking allowance, phone allowance, and other types of allowances, depending on job position.
KPI bonus based on work results.
Salary review 1–2 times per year.
Competitive salary based on capabilities.
Participation in sports, entertainment, and travel activities such as team connection events, birthday celebrations, team- building, holiday gifts, etc., to promote health and strengthen employee engagement.
Opportunities to participate in professional and career skill training programs organized by the company.
Leave policy:12 days/year for staff- level positions.15 days/year for managerial positions.
Annual health check- ups, 24/24 accident insurance (health insurance), and social insurance with 100% of the salary package. Private health insurance is provided by PJICO.
Financial support for attending external training programs.

Cập nhật gần nhất lúc: 2026-01-12 12:40:03