Cyber Security Engineer (Appsec)

  • Ha Noi
  • Executive
  • Full-time
  • Designs, develops, tests, and evaluates information system security throughout the systems development life cycle.
  • Translate security requirements into application design elements including documenting the elements of the software attack surfaces, conducting threat modeling, and defining any specific security criteria
  • Analyzes the security of new or existing computer applications, software, or specialized utility programs and provides actionable results.
  • Performs assessments of systems and networks within the network environment or enclave and identifies where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. Measures effectiveness of defense-in-depth architecture against known vulnerabilities.
  • Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.
  • Prior experience in Software security testing, Penetration testing, Vulnerability, review code, information assurance.
  • Certifications in software security testing, penetration testing, secure coding
  • Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
  • Skill in evaluating the adequacy of security designs.
  • Skill in performing impact/risk assessments.
  • Skill in secure test plan design (e. g. unit, integration, system, acceptance).
  • Skill in recognizing vulnerabilities in security systems. (e.g., vulnerability and compliance scanning).
  • Skill in conducting application vulnerability assessments.
  • Skill in the use of penetration testing tools and techniques.
  • Skill in using code analysis tools.
  • Skill in integrating black box security testing tools into quality assurance process of software releases.
  • Skill in designing countermeasures to identified security risks.
  • Skill in developing and deploying attack signatures.
  • Attractive compensation package (you’ll love it)
  • 13th salary and target incentive (up to 1,5 month salary), rewards for achievements, initiatives and good deeds
  • Performance review 2 times/ year
  • Annual leave: 15 – 20 working days/year and Other leaves/public holidays in accordance with the Labor Law of Vietnam
  • Periodic medical checkup, Health/Social Insurances & Bao Viet Insurance
  • Benefits for employees using services at VinID, Vinmec, Vinpearl,Golf, Safari, Vinmart and Vinschool…
  • Agile working environment, no dresscode (it’s your choice to be confident and comfortable)
  • Training courses: The Company will provide customized training courses according to business needs, Udemy, Coursera, Linkedin Learning are available upon your request
  • Team building, staff retreats and summer camp for excellent employees’ children
  • Gym area, football club, running club,..
  • And many more…