Manager Threat Intelligence

JOB DESCRIPTION

PURPOSE
Manager for IT Security Monitoring and Incident Response team, within the Company Group and all Business Units (10 Business Units) in Asia Pacific.
Lead, drive and support Initiatives and Projects to enhance or build new capabilities in the Company, related to Threat Intel function.
Define, Test, Build and continuous enhancement of IT Security Threat Intel Platform, as well as commercial sources and services.
Define Operational requirements and SOPs related to Threat Intel.
Define and implement enhancement detection and protection capabilities, leveraging IOCs propagation in IT Security solutions.
Support Incident Response in automation of contextualization of Cyber Alerts, leveraging the Threat Intel Platform.
Identify and coordinate with IT Security Engineering threats that require configuration uplifts in the Company's Protect or Detect solutions.
Identify and coordinate with Cyber Incident Response team threats that require Threat Hunting activities.
Provide expertise to Business Units when needed, in building local IT Security solutions.
KEY ACCOUNTABILITIES
Support the Head of IT Security Monitoring and Incident Response in define and maintain the Threat Intel framework for the Company Group.
Manage the Threat Intel services and solutions to maximize value of Threat Intel function in the Company.
Drive Threat Intel Projects definition and implementation, selection of solutions and architecture, as well as define operations framework and its continuous improvement.
Work closely with the Head of IT Security Monitoring and Incident Response, and Security Engineering to ensure regular updates to management on the Threat Intel Program status and risks.
KEY PERFORMANCE INDICATORS
On Time on budget delivery of key Threat Intel Program uplifts or deployments, aligned with Group IT Security roadmap.
Support the Head of IT Security Monitoring and Incident Response in continuous uplift of the Program.
Ensure Threat Intel program across Business Units is carried out in alignment with the Company business objectives and defined IT Security Plan timelines.
Group Threat Intel Framework implementation and controls are delivered in a cost-effective way using processes and resources (including people and technologies) aligned with the Company's business goals.
Threat Intel Program awareness is conducted when necessary.
Doing things right, creating synergies for the overall goals and objectives, along with a people first approach.
EXTERNAL & INTERNAL CONTACTS
Head of IT Security Monitoring and Incident Response
Group IT Security Monitoring and Incident Response team
Group IT Security Engineering
Group CISO
Business Units IT Security Teams
Group and Business Units Chief of Technology and Operations
Group and Business Units IT & Operations
Group and Business Units Internal Audit
External Auditors
Vendors and/or Service Providers

JOB REQUIREMENT

QUALIFICATIONS / EXPERIENCE
Minimum 5 years working experience in a hands-on technical role in Cyber Security Threat Hunting, APT/Crimeware analysis, Malware analysis, Monitoring and Incident Response.
Experience in an operational capacity as part of security incident response function.
Experience with a programming/scripting language.
Experienced in multi-cultural virtual team management and coordination.
Degree from Information Technology or equivalent discipline.
KNOWLEDGE & TECHNICAL SKILLS
Excellent knowledge of Advanced Persistent Threats, attack tools, techniques, and methods used by adversaries.
Strong decision-making capability on remediation actions to respond to security incidents.
Ability to define, prioritize and execute process in a structured manner.
Excellent interpersonal and influential skills to enable the implementation and enforcement of the IT Security Engineering program.
Good communication and presentation skills.
Desirable: GIAC Cyber Threat Intelligence (GCTI) certification, CREST Certified Threat Intelligence Manager, ECCouncil Computer Hacking Forensics Investigator (CHFI), GIAC Certified Incident Handler (GCIH), GIAC Reverse Engineering Malware (GREM), GIAC Certified Forensic Analyst (GCFA).

WHAT'S ON OFFER

13th salary
Bonus paid in April next year if joining before Oct 2024
Paid leave up to 22 days per year (prorated for partially joining)
Work remote 1 day per week
Health insurance for employees and direct dependents

CONTACT

PEGASI – IT Recruitment Consultancy | Email: recruit@pegasi.com.vn | Tel: +84 28 3622 8666
We are PEGASI – IT Recruitment Consultancy in Vietnam. If you are looking for new opportunity for your career path, kindly visit our website www.pegasi.com.vn for your reference. Thank you!

Job Summary

Company Type:

Product

Technical Skills:

Security

Location:

Ho Chi Minh - Viet Nam

Working Policy:

Job ID:

J01576

Status:

Close

Related Job:

Lead Penetration Tester

Ho Chi Minh, Ha Noi - Viet Nam


Outsource

  • Security

#Hands-on Penetration Testing Perform authorized penetration testing for web applications, mobile applications, APIs, infrastructure, cloud environments, and digital platforms. Identify, validate, exploit where appropriate, and document security vulnerabilities, including authentication, authorization, session management, input validation, encryption, access control, and business logic issues. Conduct security assessments based on industry standards such as OWASP Top 10, OWASP API Security Top 10, OWASP Mobile Security Testing Guide, and relevant security practices. Analyze application flows, user journeys, transaction processes, access controls, and data handling mechanisms to identify potential security risks. Perform vulnerability assessment and manual verification to reduce false positives and confirm actual exploitability in authorized environments. Conduct retesting activities to validate remediation effectiveness and ensure vulnerabilities are properly resolved. Support security testing activities within the SDLC, including security requirement review, threat analysis, test planning, and release security validation. Stay updated with emerging cyber threats, attack techniques, security risks, and security testing best practices.#Technical Leadership & Delivery Support Lead the planning, scoping, and execution of penetration testing activities across assigned projects or workstreams. Define penetration testing approach, test strategy, testing scope, priorities, timelines, and required evidence based on project and client requirements. Guide and mentor penetration testers or security engineers in testing methodology, vulnerability validation, reporting quality, and remediation discussions. Review vulnerability findings, risk ratings, evidence, and remediation recommendations to ensure accuracy, consistency, and practical value. Act as the main technical point of contact for penetration testing activities, working with client stakeholders, security teams, development teams, DevOps, infrastructure teams, and compliance teams. Facilitate vulnerability walkthroughs, risk clarification sessions, remediation discussions, and retesting alignment with relevant stakeholders. Support estimation, planning, status tracking, issue escalation, and delivery reporting for security testing activities. Contribute to improving security testing processes, reporting templates, testing checklists, knowledge sharing, and reusable testing practices. Support regulatory, audit, and compliance requirements by providing security testing evidence, reports, remediation status, and technical clarification when needed.

Negotiation

View details

(JTL) Delivery Manager

Ho Chi Minh - Viet Nam


Outsource

  • Project Management

Lead, mentor, and grow two engineering teams (AI BI and AI-Powered Service Desk), including hiring, performance management, and career development Own delivery for both teams: planning, prioritization, sprint execution, and shipping high-quality releases Partner with Product, Data Science/ML, and Design to define roadmaps and translate business requirements into technical execution Provide technical guidance and architectural oversight across BI dashboards, analytics pipelines, and AI-powered service/support tooling Drive engineering best practices: code quality, testing, CI/CD, observability, and documentation Balance priorities across two teams, unblock engineers, and manage cross-squad dependencies Collaborate with backend, frontend, and ML engineers to ensure cohesive architecture across teams Report on team health, delivery progress, and risks to senior leadership Foster a culture of ownership, collaboration, and continuous improvement Stay hands-on where needed - code reviews, architecture discussions, technical decision-making

Negotiation

View details

Team Manager

Ha Noi - Viet Nam


Outsource

Own the overall performance and operations of the pre-sales function, managing multiple language-based teams (currently English- and Mandarin-speaking) through their Team Leaders. Coach and develop Team Leaders, ensuring consistent people management, performance standards, and team engagement across markets and languages. Act as the primary operational point of contact for the client stakeholder, aligning pre-sales execution with client expectations, product updates, and commercial goals. Drive pre-sales strategy, process optimization, and service quality to deliver strong customer experience and sales conversion for client products. Collaborate cross-functionally with internal Technical teams and other departments to ensure effective operations and smooth inquiry-to-sale conversion. Lead performance management through data analysis, reporting, and continuous improvement initiatives, sharing insights regularly with internal leadership and the client. Build and sustain a high-performance, resilient team culture in a fast-paced, scaling environment.

Negotiation

View details