Security Consultant (Expert)


Provide architectural consulting expertise across multiple domains and projects
Develop architectural specifications which ensure good security practices and management of cyber risks within the security environment
Present these architectural decisions at relevant forums to gain necessary approvals
Assess the operational security requirements for specific projects
Perform security assessments as requested
Evaluate technology risk, security and compliance standards
Identify and assess information security exposures introduced/impacted with the application or business change
Identify additional controls relevant for the change
Advise if solutions meet Bank's information security standards and reference architectures
Confirm, certify and advise on compliance with cyber security regulations such as APRA-CPS234, GDPR, IRAP, PCI-DSS
Advise on application security vulnerabilities and complete automated security checks
Manage stakeholder relationships across the tribe - be the conduit between security and the business


Bachelor's or Master's degree in Computer Science, Information Security or a related field
At least 7-10 years of experience in cyber security (preferably in the financial sector)
Must-have skills:
Professional certifications such as CISSP, CISM, CEH or the equivalent
In-depth knowledge of security frameworks and standards (e.g., NIST, COBIT)
Proven experience with security technologies such as firewalls, intrusion detection/prevention systems, SIEM and encryption
Experience in developing architectural specifications which ensure good security practices and management of cyber risks within the security environment
Experience in security risk analysis, assessment and mitigation
Experience with Cloud security (we prefer Google Cloud Platform (GCP) but either AWS Cloud or Azure Cloud is fine), DevSecOps and application security
A knowledge of emerging security threats and mitigation strategies
A knowledge of software development lifecycle, CI/CD tools and performing code reviews
Contributions to Vulnerability Management findings, triage and action recommendations
Research and analysis skills to identify new security automation opportunities
Ability to communicate effectively with security and non-security stakeholders to solve everyday problems
Excellent command of English verbal communication
Good mindset when working directly with customer (High adaptability with continuous changes in customer's requirements)
Strong analytical, problem-solving and decision-making skills
Nice-to-have skills:
A background in financial services security and compliance
A knowledge of Google Cloud Platform (GCP) and Kubernetes
Experience in designing controls for SaaS- and PaaS-based services
Experience in the design and architecture of new software systems and integrations
Strong development experience in languages such as Go, Java or the similar


Hybrid working mode (3 working days at office, flexible time)
Salary: Please completely feel free to tell us your expected number!!!
18 paid leaves/year (12 annual leaves and 6 personal leaves)
Insurance plan based on full salary + 13th-month salary + Performance bonus
Meal allowance of 730,000 VND/month
100% full salary and benefits as an official employee from the 1st day of working
Medical benefit for employee and family
Working in a fast-paced, flexible and multinational working environment. Chance to travel onsite(in 49 countries)
Free snacks, refreshment and parking
Internal training (Technical & Functional & English)
Working time: 08: 30 AM - 06: 00 PM from Mondays to Fridays (meal breaks included)


PEGASI – IT Recruitment Consultancy | Email: | Tel: +84 28 3622 8666
We are PEGASI – IT Recruitment Consultancy in Vietnam. If you are looking for new opportunity for your career path, kindly visit our website for your reference. Thank you!

Job Summary

Company Type:

Information Technology & Services

Technical Skills:

Security, System, Cloud


Ho Chi Minh - Viet Nam



Job ID: