Identify and mitigate security vulnerabilities and threats within the organization's IT systems which involve continuous monitoring, threat intelligence analysis, vulnerability assessments, and the development of strategies and approaches to minimize security risks, include:
Able to identify, perform depth analysis and conduct pen-testing in complex vulnerability and solid understand of vulnerability assessment, vulnerability management life cycle and risk calculation
Conduct and perform vulnerability assessments, penetration testing to identify weaknesses in the organization's IT infrastructure
Perform advanced Penetration test including Application, Mobile and Network by using open source tools combine with commercial tools.
Supervise team in monitoring and analyzing threat and vulnerability intelligence sources to stay informed about emerging cyber threats and attack techniques
Supervise and assess the severity and impact of identified vulnerabilities
Recommend and perform threat modeling to identify, classify, prioritize, and rate threats based on thorough analysis of the bank's top risks and critical assets
Supervise and provide appropriate business units on technical configuration and process changes, remediation, and best practices to adapt to changing threat, vulnerabilities, and new attack methods
Supervise and maintain a vulnerability management program to prioritize and remediate vulnerabilities
Collaborate with IT and security teams to implement security patches and measures to address vulnerabilities
Supervise report development and provide recommendations for mitigating vulnerabilities and improving security
Participate in security incident response activities by providing threat intelligence insights
Stay up to date with the latest threat intelligence, vulnerabilities, and best practices in cybersecurity
Job Requirement
A bachelor’s degree in cybersecurity, computer science, information technology, or a related field.
At least 4 year of experience.
Offensive Security certificates is plus (OSCP, OSED, OSEP, OSWE, OSEE)
Ability to identify and exploit mobile vulnerabilities (API issues, insecure storage, memory corruption, deep links, etc.)
Network penetration testing experience
Protocol analysis
CTF experience
Secure coding practices
Cryptography
Physical security or red team experience
WHAT WE OFFER
Mirae Asset Finance Company Vietnam aims to build a "Professional - Friendly - Effective" working environment. Our strategic objective is to provide a working place with attractive package, growth opportunity, and sustainable development.
Attractive packages with 13th salary year-end bonus and a week trip to Korea in order to recognize all your good performance and effort at MAFC.
15 days annual leave.
Annual health check, company events.
Annual healthcare insurance package from senior level and above.
Young and proactive environment; no barriers, no limitation for new idea.