Vulnerability Management: Run vulnerability scans (e.g., Nessus) and analyze results.Track remediation with IT/system owners and verify patching.
Security Tooling Implementation: Research, implement, and maintain security tools (MDM, DLP, SIEM, network monitoring, and analytics platforms). Work with IT teams to ensure integration and efficiency.
Data Leakage Prevention: Managing & configuration of DLP, Threat Intelligence tools; monitoring and working with end-users for resolving violations.
Incident Handling: Proactive investigate suspicious activities within IT systems and networks, identify the infected hosts and prevent them from affecting the rest of the network. Correlate and validate alerts to ensure they represent relevant security incidents.
Cloud Security Assessments: Perform security reviews of cloud infrastructure (AWS, GCP, Azure). Identify misconfigurations, assess risks, and suggest remediations.
Stay up-to-date with the latest security trends, vulnerabilities, and industry best practices.
Support ISMS Team to maintain and improve the current practices by following industrial standards such as: ISO 27001 family, SOC 2, HIPAA.

1. Knowledge and skills

Have 1-2 years experience in cyber security, especially in SOC analyst or security operation.
Proven hands-on experience in vulnerability scanning, incident response, and log analysis.
Ability to script and automate repetitious tasks (using Python, Powershell as a plus)
Exposure to OSINT and recon tools (Shodan, Censys, Spiderfoot) for threat intelligence is a plus.
Familiarity with SIEM platforms (Splunk, Microsoft Sentinel, QRadar) is a plus.
Having knowledge of ISO 27001, SOC2, HIPAA is an advantage.
Demonstrate strong organizational skills, including time management and ability to prioritize and manage a range of tasks pro-actively, good logical thinking and problem-solving.
Good at English in communication skills including oral and written so can communicate with US Clients.

2 Education/Training Preferred:

Bachelor’s degree in Computer Science related field or equivalent work experience.
Security certificate: CompTIA Security+, CEH, CySA+/BTL1, CCSP or other equivalent or higher certificates is an advantage.
English proficiency required: Intermediate (B1) level or higher.

Perks You'll Enjoy

Working in one of the Best Places to Work in Vietnam
Building large-scale & global software products
Working & growing with a Passionate & Talented Team
Diverse careers opportunities with Software Services, Software Product Development, IT Solutions & Consulting
Attractive Salary and Benefits
Annual performance appraisal and performance bonus
Onsite opportunities: short-term and long-term assignments in North America (U.S., Canada), Europe, and Asia.
Flexible working time
Various training on hot-trend technologies, best practices and soft skills
Premium healthcare insurance for you and your loved ones
Company trip, big annual year-end party every year, team building, etc.
Fitness & sport activities: football, tennis, table-tennis, badminton, yoga, swimming…
Joining community development activities: 1% Pledge, charity every quarter, blood donation, public seminars, career orientation talks, …
Free in-house entertainment facilities (foosball, ping pong, gym…), coffee, and snacks (instant noodles, cookies, candies…)

And much more; join us and let yourself explore other fantastic things!

Security Specialist - Analyst

Explore more