Job Responsibilities:
Analyzing and investigating the root causes of security incidents by advanced security analytics techniques such as malware analysis and reverse engineering, exploits code, computer forensis, etc.)
Receive escalating incidents from Tier 1 Security Analysts.
Consulting, evaluating and making security requirements for systems
Perform periodic security assessment and penetration testing according to the plan or as per request of SOC manager.
Report records the whole process of analyzing, investigating and tracing security incidents
Planning/ scripting and conducting a penetration testing for systems in the following manner: blackbox, whitebox, graybox.
Propose solutions to remediate and respond to the investigated incidents.
Participating in analyzing and developing remediation plans for security incidents and being a member to participate in handling when incidents occur.
Updating, analyzing new security weaknesses/ vulnerability, assessing the impact on the organization system; Take measures to protect and monitor the implementation.
Actively hunt for new threats based on IOCs, zero-day exploits code.
Regularly update research on information security technologies, hacking techniques and high-tech violation methods.
Job Requirements:
Educational Qualifications
Bacherlor of University major IT.
Relevant Knowledge/ Expertise
Deep knowledge of:
Computer forensics
Threat Hunting
Reverse Engineering
Malware analysis
Have a strong background in programming
Knowledge of techniques, assessment methods, information security testing such as OWASP, NIST, OSSTMM.
Having in-depth knowledge and experience in information security: FW, IPS, VPN, Endpoint Security, App & DB security, Proxy ...
Knowledge of types of security vulnerabilities / vulnerabilities, techniques for finding, analyzing and exploiting weaknesses, hacking techniques, prevention / mitigation measures, fixing errors
S
kills
A good working attitude, having a progressive spirit.
Time management skills, good problem solving.
Ability to work under high pressure.
Good independent working skills, teamwork.
Relevant Experiences
Requires 1-5 years of work experience for companies related to information security analysis, security assessment or penetration testing and preferably with experience working in finance and banking.
Personal Characteristic
Logical thinking, Good problem solving.
Careful, honest, objective in work.
Ability to work under pressure
Sociable, able to work well with the group.
Ability to research, learn to work effectively
Sense of responsibility, ability to work in groups/ organizations, ability to convey and communicate effectively
Respect discipline.