Senior IT Security Officer (mảng Architecture)

Security Operations: Operate and maintain critical security systems such as WAF, IPS/IDS, Vulnerability Management...
Documentation & Reporting: Maintain detailed documentation of security architecture, policies, and procedures; prepare reports for management and stakeholders.
Security Implementation: Implement security systems, server systems (Windows, Linux), databases, network infrastructure, and cloud environments; Review and optimize security configurations on servers, network devices, security appliances, storage systems...
Research, propose, and implement new security technologies to improve security assessment and protection of IT systems.
Continuous Improvement: Stay updated on cybersecurity trends, threats, and best practices to proactively strengthen security frameworks.
Incident Response: Support: Provide architectural guidance during security incidents and assist in root cause analysis and remediation planning.
Technology Evaluation: Assess emerging technologies and security tools to enhance the organization’s security posture and recommend adoption where appropriate.
Risk Assessment & Mitigation: Conduct security risk assessments for new and existing systems, identify vulnerabilities, and recommend mitigation strategies.
Provide training and enhance cybersecurity awareness within the organization.
Compliance & Governance: Ensure adherence to regulatory requirements, industry standards (ISO 27001, PCI DSS, GDPR etc.), and internal security policies.
Data Protection & Privacy: Design and implement controls to safeguard Personally Identifiable Information (PII), sensitive data, and ensure compliance with data protection laws (e.g., GDPR, local regulations).
Perform other tasks as assigned by manager.
Collaboration & Advisory: Work closely with IT teams, project managers, and business units to integrate security controls into solution designs and development lifecycles.

Education: Bachelor&039;s degree in Information Security, Cybersecurity, Cryptography, IT, Telecommunications, Computer Science, or related fields.
Technical Knowledge:
- Proficiency in at least one programming language (PHP, Python, C/C++, Java) and understanding of Software- Development Life Cycle (SDLC).
- Strong knowledge of network security, cloud security, encryption, identity management, and secure software development practices.
Skills:
- Documentation and report writing skills.
- Effective communication and presentation skills.
- Analytical and problem- solving abilities.
- Risk management skills.
Experience:
- Reviewing security requirements in BRD and business processes before system development.
- Identifying and assessing vulnerabilities in IT systems.
- Security standards such as PCI DSS, OWASP, and cybersecurity attack techniques.
- Minimum of 3 years of experience in IT security, including security architecture or related cybersecurity roles.
Preferred Qualifications: Security certifications such as CEH, CISSP, CISM, SABSA... preferred..

Chế độ bảo hiểm, Phụ cấp, Đồng phục, Chế độ thưởng, Chăm sóc sức khỏe, Đào tạo, Tăng lương, Phụ cấp thâm niên, Nghỉ phép năm

Cập nhật gần nhất lúc: 2026-01-14 18:40:03