Senior Manager IT Security Engineer

JOB DESCRIPTION

PURPOSE
Drive the Company's IT Security Engineering function as a SME for the Company and all Business Units (10 Business Units) in Asia Pacific.
Define and partner with stakeholders in a multi-disciplined team structure, designing and implementing cloud security solutions to provide coverage across a variety of projects
Lead stakeholders' and vendors engagements and providing subject matter expertise to Business Units and engagement teams
Develop deep working relationships with senior executives across engagement teams.
Responsible and execute large-scale project deliveries
Manage teams and mentor junior resources
Oversee infrastructure and microservices security architecture (inclusive of: container security architecture, data security architecture, network security architecture and operational security architecture).
Review the infrastructure and microservices design against different security regulatory, industry and internal standards such as PCI DSSand CSA Containers' security guidelines and identifying the necessary security architecture requirements for the same.
Review the infrastructure and microservices network and data architecture and identifying the necessary security architecture requirements for the same.
Ensure that final design addresses identified threats and countermeasures during threat modelling.
Build knowledge capital through research and development and leveraging industry insights to deliver best of breed expertise to stakeholders.
Lead the growth of cloud security practice across business units, project team and other stakeholders.
Drive IT Security Engineering Initiatives and Projects definition and implementation, selection of solutions and architecture, as well as define operations framework and its continuous improvement.
KEY ACCOUNTABILITIES
Support the Head of IT Security Engineering in define and maintainthe IT Security Engineering framework for the Company.
Drive awareness and support to Group IT Security, Group IT and Business Units IT, to understand the IT Security Solutions and Processes, as well as their implications across the organization.
Drive IT Security Engineering Initiatives and Projects definition and implementation, selection of solutions and architecture, as well as define operations framework and its continuous improvement.
Partner with the Head of IT Security Engineering and Group CISO, through tracking and reporting function, to ensure regular updates to management on the IT Security Engineering Program and risks.
KEY PERFORMANCE INDICATORS
On Time on Budget delivery ofkey IT Security Engineering Program uplifts or deployments, aligned with Group IT Security roadmap.
Support the Head of IT Security Engineering in continuous uplift of the IT Security Engineering program.
Ensure IT Security Engineering Program across Business Units is carried out in alignment with the Company's business objectives and defined IT Security Plan timelines.
Group IT Security Engineering Security Framework implementation and controls are delivered in a cost-effective way using processes and resources (including people andtechnologies) aligned with the Company's business goals.
Group IT Security Engineering support and governance are provided for all Business Units.
IT Security Engineering Program awareness is conducted when necessary.
Doing things right, creating synergies for the overall the Company's goals and objectives, along with a people first approach.
EXTERNAL & INTERNALCONTACTS
Head of IT Security Engineering
Group CISO
Business Units IT SecurityTeams
Group and Business Units Chief of Technology and Operations
Group and Business Units IT & Operations
Group and Business UnitsInternal Audit
External Auditors
Vendors and/or Service Providers

JOB REQUIREMENT

QUALIFICATIONS / EXPERIENCE
Minimum 8 years working experience in IT Security Management role, preferably in Financial Services.
Regional experience in IT Security Technical or Engineering roles.
Degree from Information Technology or equivalent discipline.
Technical experience in Identify, Protect, Detect, Response or Recover areas.
KNOWLEDGE & TECHNICALSKILLS
Cloud security-related certifications such as Certified Information Systems Security Professional (CISSP), Certified Cloud SecurityProfessional (CCSP), or any cloud provider-specific security certifications.
A robust grasp of cloud security best practices, principles, and patterns. This should include knowledge of the Shared Responsibility Model and an understanding of how it impacts security posture.
In-depth knowledge of at least one major cloud service provider (e.g., AWS, Azure, GCP) with a comprehensive understanding of their service offerings, architecture, and security controls.
Experience with scripting and automation tools to streamline security operations.
Knowledge of vulnerability scanning tools and techniques, as well as experience with there mediation of identified vulnerabilities.
Knowledge of cloud networking constructs, security groups, network ACLs, and other network security methodologies.
Excellent interpersonal and influential skills to enable the implementation and enforcement of the IT Security Engineering program.
Good communication and presentation skills.

WHAT'S ON OFFER

13th salary
Bonus paid in April next year if joining before Oct 2024
Paid leave up to 22 days per year (prorated for partially joining)
Work remote 1 day per week
Health insurance for employees and direct dependents

CONTACT

PEGASI – IT Recruitment Consultancy | Email: recruit@pegasi.com.vn | Tel: +84 28 3622 8666
We are PEGASI – IT Recruitment Consultancy in Vietnam. If you are looking for new opportunity for your career path, kindly visit our website www.pegasi.com.vn for your reference. Thank you!

Job Summary

Company Type:

Product

Technical Skills:

Security

Location:

Ho Chi Minh - Viet Nam

Working Policy:

Job ID:

J01572

Status:

Close

Related Job:

Senior Backend Engineer (Shop 6.0)

Ho Chi Minh - Viet Nam


Outsource

  • NodeJS
  • Azure

Design and develop the backend services for the core areas of Shop 6.0 (catalog, orders, payments, ERP Cloud integration) Define API boundaries and ensure consistent, scalable communication between services Own reliable data synchronization between the ERP Cloud and the platform, including error handling and recovery mechanisms Optimize systems for performance and scalability (caching, asynchronous processing, read/write optimization) Establish observability standards (logging, monitoring, alerting) across all backend services Conduct code reviews, promote best practices, and support less experienced team members

Negotiation

View details

Senior Tech Lead (Shop 6.0)

Ho Chi Minh - Viet Nam


Outsource

  • Backend
  • Frontend
  • Azure

Take on overall technical and organizational responsibility for delivering Shop 6.0 across frontend, backend, and infrastructure Plan delivery scope, milestones, and releases, and coordinate the work of parallel workstreams (frontend, backend, DevOps, QA) Make and facilitate key architectural decisions together with the senior engineers, particularly around microservices, APIs, and cloud-native implementation on Azure Identify and manage risks related to integration (especially the ERP Cloud connection), scalability, and technical dependencies Serve as the central point of contact for stakeholders on scope, prioritization, and timelines Ensure code quality through reviews, mentoring, and clear standards, including a pull request process with mandatory checks and senior/lead review Ensure transparency on progress, risks, and decisions towards the team and management

Negotiation

View details

Product Engineer (Flutter)

Ho Chi Minh - Viet Nam


Product

  • Flutter

Own products and features from beginning to end - originate ideas, understand the strategy and goals behind them, ship to production with real users, iterate on feedback, and stay responsible for their ongoing success. Scope features and projects, including writing handover / technical design documents (as built) - the person who built a feature is the best person to document it. Improve application performance - ship technical improvements that make the product faster, more stable, and ready to scale. Sweat the UI and interaction details - crafting a clean, pleasant experience is a daily habit, not an afterthought. Improve how we work, not just what we build: refine development processes, drive improvements in code quality and engineering best practices - and hold a zero-bug standard: bugs get fixed promptly, not stockpiled in a backlog. Work closely with designers to craft thoughtful UX/UI - ship and own the basic experience using the design system, deciding when to bring in design to polish - and collaborate with the Customer Success team to learn how the product is actually being used. Bring a tester's mindset - testing is part of building, not someone else's job. You own the quality of what you ship and stand behind it.

Negotiation

View details