Manager Threat Intelligence

JOB DESCRIPTION

PURPOSE

Manager for IT Security Monitoring and Incident Response team, within the Company Group and all Business Units (10 Business Units) in Asia Pacific.

Lead, drive and support Initiatives and Projects to enhance or build new capabilities in the Company, related to Threat Intel function.

Define, Test, Build and continuous enhancement of IT Security Threat Intel Platform, as well as commercial sources and services.

Define Operational requirements and SOPs related to Threat Intel.

Define and implement enhancement detection and protection capabilities, leveraging IOCs propagation in IT Security solutions.

Support Incident Response in automation of contextualization of Cyber Alerts, leveraging the Threat Intel Platform.

Identify and coordinate with IT Security Engineering threats that require configuration uplifts in the Company's Protect or Detect solutions.

Identify and coordinate with Cyber Incident Response team threats that require Threat Hunting activities.

Provide expertise to Business Units when needed, in building local IT Security solutions.

KEY ACCOUNTABILITIES

Support the Head of IT Security Monitoring and Incident Response in define and maintain the Threat Intel framework for the Company Group.

Manage the Threat Intel services and solutions to maximize value of Threat Intel function in the Company.

Drive Threat Intel Projects definition and implementation, selection of solutions and architecture, as well as define operations framework and its continuous improvement.

Work closely with the Head of IT Security Monitoring and Incident Response, and Security Engineering to ensure regular updates to management on the Threat Intel Program status and risks.

KEY PERFORMANCE INDICATORS

On Time on budget delivery of key Threat Intel Program uplifts or deployments, aligned with Group IT Security roadmap.

Support the Head of IT Security Monitoring and Incident Response in continuous uplift of the Program.

Ensure Threat Intel program across Business Units is carried out in alignment with the Company business objectives and defined IT Security Plan timelines.

Group Threat Intel Framework implementation and controls are delivered in a cost-effective way using processes and resources (including people and technologies) aligned with the Company's business goals.

Threat Intel Program awareness is conducted when necessary.

Doing things right, creating synergies for the overall goals and objectives, along with a people first approach.

EXTERNAL & INTERNAL CONTACTS

Head of IT Security Monitoring and Incident Response

Group IT Security Monitoring and Incident Response team

Group IT Security Engineering

Group CISO

Business Units IT Security Teams

Group and Business Units Chief of Technology and Operations

Group and Business Units IT & Operations

Group and Business Units Internal Audit

External Auditors

Vendors and/or Service Providers

JOB REQUIREMENT

QUALIFICATIONS / EXPERIENCE

Minimum 5 years working experience in a hands-on technical role in Cyber Security Threat Hunting, APT/Crimeware analysis, Malware analysis, Monitoring and Incident Response.

Experience in an operational capacity as part of security incident response function.

Experience with a programming/scripting language.

Experienced in multi-cultural virtual team management and coordination.

Degree from Information Technology or equivalent discipline.

KNOWLEDGE & TECHNICAL SKILLS

Excellent knowledge of Advanced Persistent Threats, attack tools, techniques, and methods used by adversaries.

Strong decision-making capability on remediation actions to respond to security incidents.

Ability to define, prioritize and execute process in a structured manner.

Excellent interpersonal and influential skills to enable the implementation and enforcement of the IT Security Engineering program.

Good communication and presentation skills.

Desirable: GIAC Cyber Threat Intelligence (GCTI) certification, CREST Certified Threat Intelligence Manager, ECCouncil Computer Hacking Forensics Investigator (CHFI), GIAC Certified Incident Handler (GCIH), GIAC Reverse Engineering Malware (GREM), GIAC Certified Forensic Analyst (GCFA).

WHAT'S ON OFFER

13th salary

Bonus paid in April next year if joining before Oct 2024

Paid leave up to 22 days per year (prorated for partially joining)

Work remote 1 day per week

Health insurance for employees and direct dependents

CONTACT

PEGASI – IT Recruitment Consultancy | Email: recruit@pegasi.com.vn | Tel: +84 28 3622 8666

We are PEGASI – IT Recruitment Consultancy in Vietnam. If you are looking for new opportunity for your career path, kindly visit our website www.pegasi.com.vn for your reference. Thank you!

Job Summary

Company Type:

Product

Technical Skills:

Security

Location:

Ho Chi Minh - Viet Nam

Working Policy:

Job ID:

J01576

Status:

Related Job:

Technical Program Manager (Japanese Speaking)

Ho Chi Minh - Viet Nam

Product

Project Management
BSE/BrSE

Leading the exploration of the current (As-is) and ideal (To-be) states: Working with engineers to clarify and define current specifications, including unorganized and undocumented legacy materials. Defining the desired behavior at PMI completion and translating it into a step-by-step approach and requirements. Setting deadlines and defining the "Definition of Done" for each action and strictly managing them. Collaborating with the Staff Engineer to assess the trade-offs between technical constraints and business requirements, and define the scope that provides a satisfactory ROI. Operating the project with a "SWAT team" consisting of Senior Software Engineers and Project Managers at its core. Collaborating with Tech Leads and Project Managers to maintain the pace of progress through appropriate task assignments and blocker removal. Ensuring the quality of documentation, including requirements and API specifications, guaranteeing not only the accuracy of Japanese-English translations but also logical consistency. Cross-management of stakeholders across multiple locations and multiple projects. Streamlining human-dependent operations, including AI agents and automation tools. Leading the development of data migration plans, security integration policies, and testing strategies until approval is obtained. Cultivating a "bad news early" culture to promote early risk detection and escalation. Continuously improving and updating the PMI playbook (standard procedures).

Negotiation

View details

Growth Marketing Manager

Ho Chi Minh - Viet Nam

Product

Marketing

Advocate the benefits of AI Agents to solopreneurs through compelling educational content and storytelling. Develop and implement strategies to acquire thousands of users through organic reach, community building, and product-led growth loops. Create educational content (videos, blogs, social) to explain our tech and promote as a productivity tool for solo users. Improve the user journey from "discovery" to "2-minute setup" to "active daily use." Continuously experiment with new channels and messaging to scale our user base.

Negotiation

View details

Senior Information Security Officer (Security Control & Compliance)

Ho Chi Minh - Viet Nam

Product

Security

Implementing and operating application security solutions such as WAF, DDoS protection, and PAM (Privileged Access Management). Monitoring privileged access activities, detecting abnormal behavior, and escalating security risks. Collaborating with development and infrastructure teams to embed security measures across the application lifecycle (SDLC/DevSecOps). Supporting application vulnerability assessment activities and tracking remediation progress. Supporting the development, maintenance, and updates of information security policies and procedures. Ensuring compliance with internal security standards and external regulatory requirements, and preparing documentation and reports for internal and external audits. Monitoring application-related security events and access activities, analyzing and reporting security risks, vulnerabilities, and incidents to management. Tracking the remediation status of identified security issues and ensuring timely resolution. Supporting the execution of information security awareness programs for employees and assisting in developing related training materials and communication. Participating in the research, testing, and deployment of new application security solutions, and supporting security-related initiatives in digital transformation and system upgrade projects. Contributing to security requirement definition in IT and business projects.

Negotiation

View details