Senior Manager IT Security Engineer

JOB DESCRIPTION

PURPOSE

Drive the Company's IT Security Engineering function as a SME for the Company and all Business Units (10 Business Units) in Asia Pacific.

Define and partner with stakeholders in a multi-disciplined team structure, designing and implementing cloud security solutions to provide coverage across a variety of projects

Lead stakeholders' and vendors engagements and providing subject matter expertise to Business Units and engagement teams

Develop deep working relationships with senior executives across engagement teams.

Responsible and execute large-scale project deliveries

Manage teams and mentor junior resources

Oversee infrastructure and microservices security architecture (inclusive of: container security architecture, data security architecture, network security architecture and operational security architecture).

Review the infrastructure and microservices design against different security regulatory, industry and internal standards such as PCI DSSand CSA Containers' security guidelines and identifying the necessary security architecture requirements for the same.

Review the infrastructure and microservices network and data architecture and identifying the necessary security architecture requirements for the same.

Ensure that final design addresses identified threats and countermeasures during threat modelling.

Build knowledge capital through research and development and leveraging industry insights to deliver best of breed expertise to stakeholders.

Lead the growth of cloud security practice across business units, project team and other stakeholders.

Drive IT Security Engineering Initiatives and Projects definition and implementation, selection of solutions and architecture, as well as define operations framework and its continuous improvement.

KEY ACCOUNTABILITIES

Support the Head of IT Security Engineering in define and maintainthe IT Security Engineering framework for the Company.

Drive awareness and support to Group IT Security, Group IT and Business Units IT, to understand the IT Security Solutions and Processes, as well as their implications across the organization.

Drive IT Security Engineering Initiatives and Projects definition and implementation, selection of solutions and architecture, as well as define operations framework and its continuous improvement.

Partner with the Head of IT Security Engineering and Group CISO, through tracking and reporting function, to ensure regular updates to management on the IT Security Engineering Program and risks.

KEY PERFORMANCE INDICATORS

On Time on Budget delivery ofkey IT Security Engineering Program uplifts or deployments, aligned with Group IT Security roadmap.

Support the Head of IT Security Engineering in continuous uplift of the IT Security Engineering program.

Ensure IT Security Engineering Program across Business Units is carried out in alignment with the Company's business objectives and defined IT Security Plan timelines.

Group IT Security Engineering Security Framework implementation and controls are delivered in a cost-effective way using processes and resources (including people andtechnologies) aligned with the Company's business goals.

Group IT Security Engineering support and governance are provided for all Business Units.

IT Security Engineering Program awareness is conducted when necessary.

Doing things right, creating synergies for the overall the Company's goals and objectives, along with a people first approach.

EXTERNAL & INTERNALCONTACTS

Head of IT Security Engineering

Group CISO

Business Units IT SecurityTeams

Group and Business Units Chief of Technology and Operations

Group and Business Units IT & Operations

Group and Business UnitsInternal Audit

External Auditors

Vendors and/or Service Providers

JOB REQUIREMENT

QUALIFICATIONS / EXPERIENCE

Minimum 8 years working experience in IT Security Management role, preferably in Financial Services.

Regional experience in IT Security Technical or Engineering roles.

Degree from Information Technology or equivalent discipline.

Technical experience in Identify, Protect, Detect, Response or Recover areas.

KNOWLEDGE & TECHNICALSKILLS

Cloud security-related certifications such as Certified Information Systems Security Professional (CISSP), Certified Cloud SecurityProfessional (CCSP), or any cloud provider-specific security certifications.

A robust grasp of cloud security best practices, principles, and patterns. This should include knowledge of the Shared Responsibility Model and an understanding of how it impacts security posture.

In-depth knowledge of at least one major cloud service provider (e.g., AWS, Azure, GCP) with a comprehensive understanding of their service offerings, architecture, and security controls.

Experience with scripting and automation tools to streamline security operations.

Knowledge of vulnerability scanning tools and techniques, as well as experience with there mediation of identified vulnerabilities.

Knowledge of cloud networking constructs, security groups, network ACLs, and other network security methodologies.

Excellent interpersonal and influential skills to enable the implementation and enforcement of the IT Security Engineering program.

Good communication and presentation skills.

WHAT'S ON OFFER

13th salary

Bonus paid in April next year if joining before Oct 2024

Paid leave up to 22 days per year (prorated for partially joining)

Work remote 1 day per week

Health insurance for employees and direct dependents

CONTACT

PEGASI – IT Recruitment Consultancy | Email: recruit@pegasi.com.vn | Tel: +84 28 3622 8666

We are PEGASI – IT Recruitment Consultancy in Vietnam. If you are looking for new opportunity for your career path, kindly visit our website www.pegasi.com.vn for your reference. Thank you!

Job Summary

Company Type:

Product

Technical Skills:

Security

Location:

Ho Chi Minh - Viet Nam

Working Policy:

Job ID:

J01572

Status:

Related Job:

Delivery Manager

Ha Noi - Viet Nam

Outsource

Project Management

The company is seeking talented candidates for the Delivery Manager position with experience in system integration, cloud native, software development services, and DevSecOps deployment services to perform the following tasks: Responsible for the delivery of all projects Monitoring the status of all ongoing projects Ensuring delivery meets deadlines, scope, and quality standards Participating in resolving risks in projects Directly managing key/strategic projects (approximately 50% of the time) Managing and allocating Delivery resources to projects effectively Managing stakeholders and escalation in projects Handling issues Large customer escalation Manage key customer stakeholders Proactively escalate major risks Establish and ensure standards and principles in delivery such as: project plan leap, periodic reporting, risk management, etc. Organize weekly delivery review meetings, ensuring timely provision of project portfolio information such as: status, risks, dependencies, etc. Train and support the development of PM team capabilities

Negotiation

View details

Senior SAP SD Consultant (SAP O2C S4 HANA)

Ho Chi Minh - Viet Nam

Outsource

#Main responsibilities Lead end-to-end SAP O2C S4 HANA module implementations & Roll Out Projects. Responsible to gain competency in process template Gather and document business requirements from users. Analyse business processes and propose improvements. #Rollouts: Identify the gaps compared to the template by assessing the system & connecting with the Business Users. Conduct workshops and training sessions for Business-users on SAP O2C functionalities and Bosch practices Integrate SAP O2C with other modules such as MM, FI, and WM/EWM to ensure data consistency and process efficiency. Coordinate with Design and build and BD teams to implement the requirement. Identify the scope for the rollout for the respective plant . Responsible to explain the plant how to adopt the template process and deploy the custom requirements. Collaborate with plant and design build team to finalize the migration requirement ( Define field mapping and transformation rule etc ) for each plant . Verify sample & mass upload of migrated data such as Sales Order, Pricing Condition, Invoices along with the Master Data like Business partner & Material Master Understand template test cases and localize where necessary for each plant . Support Business Users in executing test cases during test cycles like Integration testing & UAT Create/Support in creating test defects and follow until defect resolution Understand the existing cutover list and task execute as per cutover schedule and provide inputs if any. Support during hyper care Train Key-users, setup training data, prepare demo and create/publish supporting documents for project reusable repository. Develop user manuals, training materials, and process documentation as per Bosch quality standards.#Process improvement activities (PIA): Understand business request & Support the PIA Lead to implement improvement activities ( Validate/finalize the scope /coordinate with technical team to complete unit testing and implementation Collaborate with stakeholders to understand business processes and requirements and translate them into functional specifications in support with Lead Consultant. Mentor Junior & Senior Functional consultants to develop competency required for project deliverables Responsible for the assigned Business Requirement (BR)

Negotiation

View details

Head of Engineer - Tech Fraud & Scams VN

Ho Chi Minh

Product

Management
Backend
Data Engineering

Develop an integrated roadmap for the strategic execution of Customer Onboarding and Mastery, Financial Crime, and Fraud's strategic ambitions. Lead engineering teams across these domains to drive outcomes, necessitating domain knowledge in these areas. Collaborate with business teams and product owners to validate requirements and monitor post-delivery performance. Oversee the runtime of applications in production and provide active operational support. Lead efforts for cyber security updates and ensure software currency versions remain up to date. Manage investment delivery across CET to maintain alignment between domains and ensure effective spending while providing insights on prioritization of spend and its effectiveness.

Negotiation

View details