Senior Security Engineer

ABOUT CLIENT

Our client is a global technology company that specializes in providing innovative IT solutions for the financial services industry

JOB DESCRIPTION

Create IT security architecture, minimum controls, and countermeasures for both new and existing IT systems.

Offer guidance on integrating security principles into technical solutions and establishing reusable security architecture patterns.

Carry out risk assessments and evaluations to facilitate informed decision-making on IT security posture for stakeholders.

Establish cybersecurity standards for Azure cloud services.

Provide technical advice to IT teams to ensure adherence to best security practices.

Assist IT teams in implementing security requirements and embracing security best practices.

Contribute to proof-of-concepts on cybersecurity solutions for improved cyber resilience.

Research emerging security threats, including those concerning Azure cloud, and recommend solutions or workarounds to mitigate risks.

JOB REQUIREMENT

Bachelor's degree in Computer Science, Information Security, or a related field.

CIA triad (Confidentiality, Integrity, Availability).

Security principles: Separation of duties, least privilege, need-to-know, defense-in-depth, open design.

Authentication (AuthN) & Authorization (AuthZ) mechanisms.

Data security for both storage and transmission.

Azure cloud architecture and fundamental security concepts.

Authentication protocols (OAuth, SAML, Basic Auth) and API security best practices.

Risk Management & Security Architecture.

Identity & Access Management (IAM).

Security Assessment & Testing.

Communications & Network Security.

SIEM/SOAR, DLP, IAM, EDR/XDR, PAM.

Hands-on experience with any of these is a plus.

Cryptography fundamentals and key management best practices.

Ability to handle multiple priorities efficiently under pressure.

Strong written and verbal communication skills (B2+ level).

Practical experience with Azure security solutions and cloud security tools.

Familiarity with Infrastructure as Code (IaC) tools like Terraform for security automation.

Experience with container security and Azure Kubernetes Service (AKS) security best practices.

Knowledge of threat modeling and penetration testing methodologies.

Expertise in security compliance frameworks (ISO 27001, NIST, CIS Benchmarks).

Certifications (CISSP, CISM, CCSP, or AZ-500 - Microsoft Azure Security Engineer).

WHAT'S ON OFFER

Attractive salary

Guaranteed 13th-month salary

Additional performance-based bonuses

Access to professional English course

Comprehensive health insurance

Generous annual leave

Competitive compensation

Comprehensive benefits package including medical, dental, and vision coverage

Emphasis on Company Culture and Core Values

Professional Development Training with personalized career growth plans

Exposure to global environment and diverse, international teams

Opportunity to work with leaders in technology within the financial services industry

Work with prominent clients in capital markets, banking, and other sectors

CONTACT

PEGASI – IT Recruitment Consultancy | Email: recruit@pegasi.com.vn | Tel: +84 28 3622 8666

We are PEGASI – IT Recruitment Consultancy in Vietnam. If you are looking for new opportunity for your career path, kindly visit our website www.pegasi.com.vn for your reference. Thank you!

Job Summary

Company Type:

Outsource

Technical Skills:

Security, Python, AWS, Terraform

Location:

Ho Chi Minh, Ha Noi - Viet Nam

Working Policy:

Hybrid

Job ID:

J01732

Status:

Active

Related Job:

Software Engineer (Node.js) - Database

Ho Chi Minh - Viet Nam

Product

NodeJS

Design system architectures, establish coding standards, and construct cohesive, cloud-native solutions. Develop high-quality Node.js code, optimize system performance, and tackle complex software integration challenges. Oversee the testing, deployment, and comprehensive documentation of integrated systems. Mentor less-experienced engineers, engage in cross-functional teamwork, and ensure solutions meet business requirements and international standards. Participate actively in all Agile software development phases, including creating user stories and executing sprint planning Engage with multinational companies, demonstrating flexibility to occasionally adapt to US and EU time zones.

Negotiation

View details

Software Engineer (Node.js) - Platform Security

Ho Chi Minh - Viet Nam

Product

NodeJS

Design system architectures, establish coding standards, and construct cohesive, cloud-native solutions. Develop high-quality Node.js code, strengthen system security and reliability, and tackle complex software integration challenges. Design and implement platform security controls across web applications, APIs, and cloud services, including authentication, authorization, session management, secrets management, encryption, and audit logging. Identify and remediate security risks through threat modeling, secure code reviews, automated security testing, dependency scanning, and investigation of security-related issues. Oversee the testing, deployment, and comprehensive documentation of integrated systems. Mentor less-experienced engineers, engage in cross-functional teamwork, and ensure solutions meet business requirements and international standards. Participate actively in all Agile software development phases, including creating user stories and executing sprint planning Engage with multinational companies, demonstrating flexibility to occasionally adapt to US and EU time zones.

Negotiation

View details

Senior System Engineer

Ha Noi - Viet Nam

Outsource

System

Triển khai & Tích hợp: Cài đặt, cấu hình và tích hợp hệ thống máy chủ (Server), tủ đĩa (Storage), giải pháp sao lưu (Backup) và hệ thống giám sát (Monitoring) theo yêu cầu dự án. Thiết kế giải pháp: Đề xuất cấu hình kỹ thuật phù hợp với nhu cầu khách hàng, đảm bảo hiệu quả và khả năng mở rộng. Giải pháp DC/DR & Ảo hóa: Triển khai các giải pháp trung tâm dữ liệu (DC/DR), ảo hóa, clustering và replication. Phối hợp liên phòng ban: Làm việc chặt chẽ với các nhóm Network, Security, Application để đảm bảo tích hợp và tương thích hệ thống. Đào tạo & Chuyển giao: Thực hiện đào tạo và chuyển giao công nghệ cho khách hàng. Quản trị & Tối ưu hóa: Xử lý sự cố, tư vấn nâng cấp và tối ưu hóa hệ thống. Nghiên cứu & Cập nhật công nghệ: Liên tục cập nhật, nghiên cứu công nghệ mới và tham gia đánh giá các giải pháp mới cho công ty.

Negotiation

View details