Job Description
About Company
Principal duties:
Design, Implement & Governance the Information Security System including technical solution & security frameworks.
Your role & responsibilities
- Ensured information security posture of Swiss Post Solutions Viet Nam is aligning with Swiss Post group
- Design, implement, maintain IT security framework based on ISMS/ISO 27001
- Identify, analyze IT security risks (technical, people, legal…) and provide resolution to eliminate or reduce the risk
- Review the compliance of IT security with company policy & ISMS/ISO 27001
- Design, implement the security systems to protect network system against security threats (virus, Trojans, malware, spyware, malicious code, attacker/hacker…)
- Responsible for design, implement the SIEM (security information event monitoring) system including (centralized log, IDS, IPS ….)
- Member of Change Advisor Board to give recommendation for other teams when applying the importance change on core switches, firewall, cloud, etc.
- Deliver the security information & report (including vulnerability & exploitation news, security patches, fixes) and support operational team to implement the fixes/patches
- Deliver the information security system scanning, application penetration testing (OWASP standard) and support operational team to implement the fixes/patches
- Ensure BoM (Board of Management) is kept fully aware of the risks identified and progress of rectification, can report directly to CEO in emergency case
- Maintains professional and technical knowledge by attending educational workshops; reviewing professional publications; benchmarking state-of-the-art practices;
- Train and support staffs on IT security matters
- Co-ordinate with other teams (Infrastructure, Software, IT operation) and customer to ensure the SLA of Monitoring services as a Service Owner
- Security report to SPS CISO
- Other duties as assigned by IT Manager & Direct Manager
Your skills & qualifications
Education: University Degree in Computer Science or IT equivalent training
Technology skills and experience:
- Wide knowledge in different area (network, server hardware, system, database, software …)
- Deep knowledge in TCP/IP, security & system analysis / hacking
- Linux, Windows Server, Virtualization, Cloud Management
- ISMS/ISO 27001 knowledge is required, PCI DSS is an advantage
Soft-skills:
- English communication
- Strong troubleshooting & analyzing
- Customer oriented
- Problem solving
- Negotiation
Benefits for you
- Tet Bonus & Performance bonus.
- Meal allowance, free parking.
- Accidental and health-care insurance, annual heath check up, flu vaccination.
- We provide opportunities to learn and grow through different types of training, Talent Development, Succession planning as well as promotions or transfers.
- Company trip.
- Happy Hour. Team building. Sport activities: Football, Badminton.
- Year-end party. Mid-autumn festival. Annual sports tournament.
- 5 working days per week (off Saturday & Sunday).
- Extra info: In case of emergency (COVID-19), our company will flexible support candidates for online interview also WFH