Cyber Security Engineer

LOTTE DATA COMMUNICATION VIETNAM Tầng 31 Tòa Tây, Lotte Center 54 Liễu Giai, Ba Đình, Hà Nội
Hết hạn Xóa tin

Chi tiết tuyển dụng

Mức lương: Thỏa thuận
Khu vực: Hà Nội
Chức vụ: Nhân viên
Hình thức làm việc: Toàn thời gian
Lĩnh vực: Khác

Mô tả công việc

I. Compliance:
Advise management on potential risks and recommend solutions to ensure compliance and enhance the efficiency and effectiveness of Lotte Innovate’s operation
Co-ordinate with other teams (BP, HR) to develop internal compliance procedures, framework, aligned to LOTTE GROUP’s requirements and provide training to internal stakeholders.
Conduct regular internal audits to ensure compliance with regulations and internal policies
Conduct non-compliant incidents inspection or collaborate with other stakeholders to conduct the inspection
Ensure that the Awareness program is implemented effectively.
Ensure that third party risks are managed
Review and update the Awareness program to ensure relevancy to the current cybersecurity threats.
II. Operation
:
Control approves the request/changes related to security, control activities of IT security: implementing, operating, vulnerabilities management
Involve with a team to establish policy on a security solution that applies to LIVNC
Produce cybersecurity requirements for all systems to protect and reduce the cybersecurity risk
Ensure all Cybersecurity Risk are recorded, tracked and addressed in the agreed timeline
Conducting penetration tests to identify vulnerabilities in security protocols
Providing regular reports on security measures and any breaches or vulnerabilities to management
Analyzing potential threats to existing applications and infrastructure, including malicious code such as viruses or worms, unauthorized access attempts, and denial of service attacks
Collect, analyze and produce report for IT Security every month
Work with both internal/external audit during regular annual security checking for LOTTE
III. Consultant
:
Researching, Implementing, Operating, Upgrading and Management security measures as: SIEM, Antivirus, EDR/XDR, IPS/IDS, Vulnerability assessment, PIM/PAM, WAF, DDOS, encryption technologies, and password protection mechanisms... for the protection of customers's data, systems, and networks (include LIVNC’s IDC)
Collaborate with Sales team in order to make proposal to enhance security performance of Lotte subsidiaries
Writting proposals for selected products, technical solutions, demo, PoC
Participate in the incident response process in case of customers require
Training and transferring technology to customers.
Report to Manager issues related to projects, contracts, work of team and the company.

Quyền lợi được hưởng

Compensation:
Award
13th month salary.
Annual salary review
Opportunity to attend training courses in Korea when enough seniority year.
Provide Travel Expense for work
Telephone allowance.
Dedicated budget for staff training: technical, soft skills, English, Korean classes.
We pay health and social insurance.
We pay PIT
We care all your events:
Marriage Gift
Holiday and Tet Gift
Birthday gift
Baby born Gift
Funeral support
Paid leave:
12 days of annual leave + 1 days of Establishment Ceremony Date + 2 days of Refresh Leave for 1 year joined
Healthcare
We provide yearly health check-up with International Hospital.
Team Building activities:
Annual outdoor Team building
Monthly birthday Party
Devices for work:
Provide Laptop & Monitor

Yêu cầu kỹ năng

Experience in using tools to find vulnerabilities such as Kali Linux, Metasploit, Remux, CSI Linux...
More than 5 year experience in equivalent positions, as Security engineer, in Network Security, Security Operations, or Penetration Testing
Experience:
Experience in doing tasks such as Compliance for the organization
Strong analytical and problem-solving skills.
Good ability in listen, speak, read and write English documents
Language:
Skill:
Ability to solve problems in stressful situations
Hands on experience in security systems, including Next Gen Firewall: Palo Alto, Checkpoint, Fortinet, WAF, Database Firewall, Email Security, APT, EDR, SIEM/SOAR, NAC, PAM....
Good communication and teamwork skills.
Hard-working and willing to learn, self-study ability
Acknowledgments:
Ability to explain technical concepts to sale, inexperienced users
Time management skills
University degree in IT, Telecommunications, or equivalent
Knowledge about standards on security ISO 27001, PCI-DSS
Having certificates proffesional in Security (CISSP, CISA, CISM, CCSE, Cyber Ark, IBM Qradar/SIEM, IBM Guardium, PCNSE or NSE4),... is an advantage
Great Awareness of Cybersecurity trends and Hacking techniques