Senior Manager IT Security Engineer

JOB DESCRIPTION

PURPOSE

Drive the Company's IT Security Engineering function as a SME for the Company and all Business Units (10 Business Units) in Asia Pacific.

Define and partner with stakeholders in a multi-disciplined team structure, designing and implementing cloud security solutions to provide coverage across a variety of projects

Lead stakeholders' and vendors engagements and providing subject matter expertise to Business Units and engagement teams

Develop deep working relationships with senior executives across engagement teams.

Responsible and execute large-scale project deliveries

Manage teams and mentor junior resources

Oversee infrastructure and microservices security architecture (inclusive of: container security architecture, data security architecture, network security architecture and operational security architecture).

Review the infrastructure and microservices design against different security regulatory, industry and internal standards such as PCI DSSand CSA Containers' security guidelines and identifying the necessary security architecture requirements for the same.

Review the infrastructure and microservices network and data architecture and identifying the necessary security architecture requirements for the same.

Ensure that final design addresses identified threats and countermeasures during threat modelling.

Build knowledge capital through research and development and leveraging industry insights to deliver best of breed expertise to stakeholders.

Lead the growth of cloud security practice across business units, project team and other stakeholders.

Drive IT Security Engineering Initiatives and Projects definition and implementation, selection of solutions and architecture, as well as define operations framework and its continuous improvement.

KEY ACCOUNTABILITIES

Support the Head of IT Security Engineering in define and maintainthe IT Security Engineering framework for the Company.

Drive awareness and support to Group IT Security, Group IT and Business Units IT, to understand the IT Security Solutions and Processes, as well as their implications across the organization.

Drive IT Security Engineering Initiatives and Projects definition and implementation, selection of solutions and architecture, as well as define operations framework and its continuous improvement.

Partner with the Head of IT Security Engineering and Group CISO, through tracking and reporting function, to ensure regular updates to management on the IT Security Engineering Program and risks.

KEY PERFORMANCE INDICATORS

On Time on Budget delivery ofkey IT Security Engineering Program uplifts or deployments, aligned with Group IT Security roadmap.

Support the Head of IT Security Engineering in continuous uplift of the IT Security Engineering program.

Ensure IT Security Engineering Program across Business Units is carried out in alignment with the Company's business objectives and defined IT Security Plan timelines.

Group IT Security Engineering Security Framework implementation and controls are delivered in a cost-effective way using processes and resources (including people andtechnologies) aligned with the Company's business goals.

Group IT Security Engineering support and governance are provided for all Business Units.

IT Security Engineering Program awareness is conducted when necessary.

Doing things right, creating synergies for the overall the Company's goals and objectives, along with a people first approach.

EXTERNAL & INTERNALCONTACTS

Head of IT Security Engineering

Group CISO

Business Units IT SecurityTeams

Group and Business Units Chief of Technology and Operations

Group and Business Units IT & Operations

Group and Business UnitsInternal Audit

External Auditors

Vendors and/or Service Providers

JOB REQUIREMENT

QUALIFICATIONS / EXPERIENCE

Minimum 8 years working experience in IT Security Management role, preferably in Financial Services.

Regional experience in IT Security Technical or Engineering roles.

Degree from Information Technology or equivalent discipline.

Technical experience in Identify, Protect, Detect, Response or Recover areas.

KNOWLEDGE & TECHNICALSKILLS

Cloud security-related certifications such as Certified Information Systems Security Professional (CISSP), Certified Cloud SecurityProfessional (CCSP), or any cloud provider-specific security certifications.

A robust grasp of cloud security best practices, principles, and patterns. This should include knowledge of the Shared Responsibility Model and an understanding of how it impacts security posture.

In-depth knowledge of at least one major cloud service provider (e.g., AWS, Azure, GCP) with a comprehensive understanding of their service offerings, architecture, and security controls.

Experience with scripting and automation tools to streamline security operations.

Knowledge of vulnerability scanning tools and techniques, as well as experience with there mediation of identified vulnerabilities.

Knowledge of cloud networking constructs, security groups, network ACLs, and other network security methodologies.

Excellent interpersonal and influential skills to enable the implementation and enforcement of the IT Security Engineering program.

Good communication and presentation skills.

WHAT'S ON OFFER

13th salary

Bonus paid in April next year if joining before Oct 2024

Paid leave up to 22 days per year (prorated for partially joining)

Work remote 1 day per week

Health insurance for employees and direct dependents

CONTACT

PEGASI – IT Recruitment Consultancy | Email: recruit@pegasi.com.vn | Tel: +84 28 3622 8666

We are PEGASI – IT Recruitment Consultancy in Vietnam. If you are looking for new opportunity for your career path, kindly visit our website www.pegasi.com.vn for your reference. Thank you!

Job Summary

Company Type:

insurance, Hongkong company

Technical Skills:

Security

Location:

Ho Chi Minh - Viet Nam

Working Policy:

Salary:

Negotiation

Job ID:

J01572

Status:

Related Job:

Senior Data Scientist

Ho Chi Minh - Viet Nam

Information Technology & Services

Data Science

We're seeking a seasoned Senior Data Scientist who can tackle complex business challenges and transform them into innovative technical solutions. In this role, you'll dive deep into statistical analysis, data mining, and cutting-edge Large Language Model (LLM) technologies to shape the future of AI-driven products. You'll engage hands-on with emerging technologies, pushing the boundaries of what's possible in AI from early ideation and research through to final delivery. Join us to take the helm in developing data-driven product features, mentor up-and-coming talent, and help define the next frontier of AI-powered innovation! You will closely collaborate with not only the data team but also product managers and engineers to ensure successful analytics or AI feature execution. Human-Centered Analysis: Manipulate human behavior, sentiment, and language data to uncover hidden patterns and support data-driven decision-making. AI/ML Model Development: Craft effective prompts to interact with AI models, optimizing output quality and relevance, performing fine-tuning, data feeding, validation, and engineering for continuous improvement. Deliver Pragmatic Solutions: Consistently make pragmatic technical decisions that prioritize business value and speed of delivery, aligning with our early-stage startup environment. Cross-functional Collaboration: Work with other product and engineering teams to understand data needs and ensure smooth data solution delivery

Negotiation

View details

Senior DevOps Engineer

Ha Noi - Viet Nam

Financial services, Crypto

Devops
AWS

#About the Role We are looking for a highly skilled Senior DevOps Engineer to join our team. You will play a key role in designing, implementing, and maintaining infrastructure solutions that ensure the stability, reliability, and scalability of our systems. The role requires a balance of strong technical expertise, problem-solving skills, and a passion for automation. You will collaborate with cross-functional teams to drive process improvements, enhance engineering productivity, and support business-critical applications. As a Senior DevOps Engineer, you will also be responsible for ensuring system security, leading operational automation efforts, and participating in a 24/7 on-call rotation to maintain uptime and business continuity. In line with our philosophy that development and operations are inseparable, you will leverage your coding expertise to intervene in application modules, develop new automation tools, and ensure seamless integration between code and infrastructure.#Key Responsibilities Develop, maintain, and manage tools to automate operational activities and improve engineering efficiency, including writing custom modules in Node.js or Golang for task management and system orchestration. Troubleshoot, diagnose, and resolve complex software and infrastructure issues, including debugging and modifying application code in Node.js and Golang environments. Update, track, and resolve technical issues in a timely manner. Recommend architectural enhancements and propose process improvements for scalability and reliability. Contribute to application development by intervening in existing modules or creating new ones to enhance system manageability, scalability, and performance Evaluate and implement new technologies, frameworks, and vendor products to support business goals. Apply best-in-class security practices to safeguard critical systems and data. Ensure stability, reliability, and performance of production and non-production environments. Collaborate with engineering, QA, and product teams to align infrastructure with development needs. Participate in a 24/7 on-call rotation to support high-availability systems.

Negotiation

View details

DevOps Engineer

Ho Chi Minh - Viet Nam

Product, Offshore

Devops
Java
Kubernetes

As a Mid-level DevOps Engineer, you will play a key role in building, maintaining, and automating the environments, CI/CD pipelines, and infrastructure that power the mission-critical solutions for our internal teams and external clients. Maintain and ensure the availability of development, staging, and production environments Manage access, runtime stability, and environment upgrades Design, build, and improve CI/CD pipelines using tools like Jenkins, Automate build, testing, and deployment processes Troubleshoot and resolve pipeline issues Develop and maintain automation scripts using Ansible Standardize infrastructure configurations and automate environment provisioning Configure and maintain monitoring, logging, and alerting systems (Grafana, Prometheus, Splunk) Enhance observability with proactive alerting and dashboards Respond to alerts and incidents within agreed SLAs Triage and resolve infrastructure and pipeline issues Document incidents and implement preventative measures Apply system hardening, vulnerability remediation, and patching Support audits and compliance checks Monitor system performance and resource usage Conduct tuning (e.g., JVM, database, message broker) and provide optimization recommendations

Negotiation

View details