Security Information Consultant

5 days ago

Hanoi, Vietnam Talentnet Full time

$1,800 - $1,800
- Hi-Tech & IT

**RESPONSIBILITIES**:
**Typical Responsibilities**
- Extensive Information/Cyber Security consultancy experience facing security delivery expertise
- A deep knowledge in at least two of the following: PCI-DSS, ISO27001 (Information Security), Information Assurance, Security Policy, GRC, NIST, GDPR or Data Privacy.

**Preliminary Analysis**
- Identifying all the stakeholders (e.g., IT Project Manager, System admins and Management) of the client to define the pre-requisite and methodology.
- Work with key stakeholders to translate regulatory requirements and standards into policies, processes, and controls.

**Gap Analysis and Scoping**
- Assess changes to regulatory requirements and standards and determine the impact on internal policies, controls, and processes. Make recommendations for associated changes to policies, controls, and processes, and simplify implementation.
- Review of all locations and flows of cardholder data, as well as asset inventories.
- Conducting PCI standards interviews to have a complete map of information/data workflows, processes, and procedures, payment card data flow, information security controls.
- Conducting technical interviews to understand eventual data security problems from the in-depth technical point of view.
- Identify and evaluate technology risks, internal controls to mitigate risks, and related opportunities for continuous control improvement. Facilitate and document risk assessments and communicate key findings
- Producing Scoping and Gap Analysis Documentation.

**Remediation**
- Providing the customer with a remediation plan/gap report.
- Evaluate the implementation of new technologies/processes and agreements with third-party service providers to ensure continual compliance with regulatory requirements.
- Drive audit readiness and provide support for Payment Card Industry Data Security Standard (PCI DSS) assessments, Customer Security and Privacy audits.
- Guiding and supporting all the remediation processes ensuring that the gaps are mitigated correctly.
- Should have experience working with security and technology teams for the annual PCI DSS assessment and monitor the progress. Few follow-up activities are mentioned below.
- VA/PT Testing (Network and Application level both)
- Anti-virus and Malware
- Configuration Management
- File Integrity Monitoring
- Multi-Factor Authentication
- Encryption and Key Management

**Formal Assessment**
- Conducting technical interviews to understand eventual data security problems from the in-depth technical point of view.
- Analysis of network diagrams, asset lists to understand the infrastructure used by the customers.
- Analysis of system configuration, Encryption, Key management.
- Customer Contract reviews and negotiations regarding data protection clauses, related regulations, and compliance commitments.

**Documentation**
- Preparation, validation, of ROC (Reports on Compliance) and AOC (attestation of compliance).
- Preparation of GAP assessment, health check assessment report.

**REQUI**REMENTS**:
**Experience & Education**
- Undergraduate degree in Information Management, Computer Science, Engineering, or emphasis in technology or related field.
- 3+ years of information security experience and/or IT audit / IT security or IT security infrastructure experience.
- Previous experience working as a PCI QSA is mandatory.
- Experience interpreting industry and regulatory requirements and authoring supporting controls.
- Experience with information security-related frameworks (ISO 27001, COSO, Cloud Security Alliance).

**Skills**
- Certifications like CEH, CISA, CISM, CISSP, ISO 27001 LA/LI (any of these).
- Experience in technical skills like Virtualization, Cloud technologies, Cryptography principles, Authentication methods and techniques, Integrity controls, Networking (routing, switching, firewall network filtering), Operating Systems (Linux/Unix, Windows).
- Ability to work with teams to achieve goals and meet deadlines in a fast-paced environment.
- Works well under pressure and time constraints and can prioritize competing priorities appropriately.
- Demonstrable understanding of how to network and develop working relationships with various key stakeholders.
- Strong analytical, research, writing, and communication skills.
- Communicates effectively with meaningful and articulate verbal discussions. Creates clear and coherent written materials. Synthesizes information into succinct, concise and logical summaries and reports.
- Excellent interpersonal skills.
- Strong business and technical acumen.

**Competencies**
- Problem Solving (analysis, helicopter view, problem setting, decision making)
- Planning and Organization (time management, scheduling, and control)
- Communication (clearness, listening, persuasion)
- Networking (reinforce relationships, use emotional intelligence and personal proximity)

**For more information, please contact**:

- Ms. Nguyen Thi Hoai (84) 24 3936 76

  • Security Information Consultant

    3 weeks ago

    Hanoi, Vietnam Talentnet Full time

    Hi-Tech & IT **RESPONSIBILITIES**: **Typical Responsibilities** - Extensive Information/Cyber Security consultancy experience facing security delivery expertise - A deep knowledge in at least two of the following: PCI-DSS, ISO27001 (Information Security), Information Assurance, Security Policy, GRC, NIST, GDPR or Data Privacy. **Preliminary Analysis** -...

  • Security Information Consultant

    2 weeks ago

    Hanoi, Hanoi, Vietnam Talentnet Full time

    Hi-Tech & ITRESPONSIBILITIES:Typical Responsibilities Extensive Information/Cyber Security consultancy experience facing security delivery expertise A deep knowledge in at least two of the following: PCI-DSS, ISO27001 (Information Security), Information Assurance, Security Policy, GRC, NIST, GDPR or Data Privacy.Preliminary Analysis Identifying all the...

  • Expert, Information Security

    2 weeks ago

    Hanoi, Hanoi, Vietnam Techcombank Full time

    09-Mar-2023Expert, Information Security : Category: Technology Division Job Type:Facility: TechnologyJob Purpose:The job holder perform duties in designing, building, testing and implementing banking information security solutions.Key Accountabilities (1):o Proposing action plans related to security development activities Participate in proposing the annual...

  • Information Security Director

    4 weeks ago

    Hanoi, Vietnam Vinschool Full time

    **Mô tả công việc**: **The Information Security Director **is responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. The DIRECTOR will lead the Information Security function, working closely with other senior executives, IT team members, and...

  • Information Security Director

    1 day ago

    Hanoi, Vietnam Vinschool Full time

    **Mô tả công việc**: **The Information Security Director **is responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. The DIRECTOR will lead the Information Security function, working closely with other senior executives, IT team members, and...

  • Information Security Director

    4 weeks ago

    Hanoi, Vietnam CÔNG TY CỔ PHẦN VINSCHOOL Full time

    **Mô tả công việc**: (Mức lương: Thỏa thuận) The Information Security Director is responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. The DIRECTOR will lead the Information Security function, working closely with other senior...

  • Information Security Director

    1 day ago

    Hanoi, Vietnam CÔNG TY CỔ PHẦN VINSCHOOL Full time

    **Mô tả công việc**: (Mức lương: Thỏa thuận) The Information Security Director is responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. The DIRECTOR will lead the Information Security function, working closely with other senior...

  • Information Security Director

    2 weeks ago

    Hanoi, Hanoi, Vietnam CÔNG TY CỔ PHẦN VINSCHOOL Full time

    Mô tả công việc:(Mức lương: Thỏa thuận)The Information Security Director is responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. The DIRECTOR will lead the Information Security function, working closely with other senior executives, IT...

  • Senior Officer, Information Security

    2 weeks ago

    Hanoi, Hanoi, Vietnam Techcombank Full time

    15-Mar-2023Senior Officer, Information Security : Category: Technology Division Job Type:Facility: TechnologyJob Purpose:The job holder is responsible for building, managing, participating in the development of one of the following areas:aIS Practice:Evaluate deployment, develop security solutions/Design, test information security/Ensure compliance with...

  • Manager, Information Security

    2 weeks ago

    Hanoi, Vietnam Techcombank Full time

    22 Apr 2024**Manager, Information Security (40001092)**: - Category: Technology Division- Job Type: - Facility: Technology**Job Purpose**: Responsible for building, managing, participating in the development of one of the following areas: a. Scope of Information Security Development: Evaluate deployment, develop security solutions/Design, test information...

  • Security Consultant

    2 weeks ago

    Hanoi, Hanoi, Vietnam FPT Software Full time

    FPT Software***- FPT Cau Giay Building, Cau Giay, Ha Noi- F-Town 3, 3 Võ Chí Công, Phường Long Thạnh Mỹ, Thu Duc City, Ho Chi Minh- Tòa nhà FPT Complex, Đường Nam Kỳ Khởi Nghĩa, Phường Hòa Hải, Ngu Hanh Son, Da Nang- At office- Posted 7 hours ago- Skills: CloudAWSAzureTop 3 reasons to join us:Global Exposure Fast Track Career...

  • Information Security Expert/specialist

    4 weeks ago

    Hanoi, Vietnam Talentnet Full time

    **RESPONSIBILITIES**: **Cloud Cybersecurity risk and compliance framework and management**: - Accountable for development of the Cloud Security Design framework for new technology solutions - Responsible for embedding best practice security through evaluation of suppliers - Responsible for establishing security requirements needed to provide services...

  • Information Security Expert/specialist

    4 weeks ago

    Hanoi, Vietnam Talentnet Full time

    **RESPONSIBILITIES**: **Cloud Cybersecurity risk and compliance framework and management**: - Accountable for development of the Cloud Security Design framework for new technology solutions - Responsible for embedding best practice security through evaluation of suppliers - Responsible for establishing security requirements needed to provide services...

  • Information Security Expert/specialist

    3 weeks ago

    Hanoi, Vietnam Adecco Full time

    **Responsibilities**: **Cloud Cybersecurity risk and compliance framework and management** - Accountable for development of the Cloud Security Design framework for new technology solutions - Responsible for embedding best practice security through evaluation of suppliers - Responsible for establishing security requirements needed to provide services...

  • Information Security Expert/specialist

    7 days ago

    Hanoi, Vietnam Talentnet Full time

    Hi-Tech & IT **RESPONSIBILITIES**: - Planning/studying/designing and implementing clould strategy/solution/architect on multi cloud - Analyze/Developing prerequisites for cloud - Practice with modern DevSecOps with automation (nice to have) Ability to automate repetitive tasks (scripting skills in Bash/PowerShell/ Python) - Researching and implementing the...

  • Information Security Expert/specialist

    5 days ago

    Hanoi, Vietnam Talentnet Full time

    $2,100 - $3,500 - Hi-Tech & IT **RESPONSIBILITIES**: - Planning/studying/designing and implementing clould strategy/solution/architect on multi cloud - Analyze/Developing prerequisites for cloud - Practice with modern DevSecOps with automation (nice to have) Ability to automate repetitive tasks (scripting skills in Bash/PowerShell/ Python) - Researching...

  • Security Consultant

    7 days ago

    Hanoi, Vietnam FPT Software Full time

    FPT Software *** - FPT Cau Giay Building, Cau Giay, Ha Noi- F-Town 3, 3 Võ Chí Công, Phường Long Thạnh Mỹ, Thu Duc City, Ho Chi Minh- Tòa nhà FPT Complex, Đường Nam Kỳ Khởi Nghĩa, Phường Hòa Hải, Ngu Hanh Son, Da Nang- At office- Posted 7 hours ago- Skills: - Cloud AWS Azure **Top 3 reasons to join us**: - Global Exposure -...

  • Manager, Information Security

    2 weeks ago

    Hanoi, Hanoi, Vietnam Techcombank Full time

    17 May 2024**Manager, Information Security **:- Category: Technology Division- Job Type:- Facility: Technology**Job Purpose**:Responsible for building, managing, participating in the development of one of the following areas:a. Scope of Information Security Development: Evaluate deployment, develop security solutions/Design, test information security/Ensure...

  • Information Security Expert/specialist

    2 weeks ago

    Hanoi, Hanoi, Vietnam Talentnet Full time

    Hi-Tech & ITRESPONSIBILITIES: Planning/studying/designing and implementing clould strategy/solution/architect on multi cloud Analyze/Developing prerequisites for cloud Practice with modern DevSecOps with automation (nice to have) Ability to automate repetitive tasks (scripting skills in Bash/PowerShell/ Python) Researching and implementing the updated...

  • Information Security Analyst

    4 weeks ago

    Hanoi, Vietnam Discova Full time

    **Job no**: 521386 **Brand**: Discova **Work type**: Full time **Location**: Hanoi, Vietnam **Categories**: Wholesale & Product **Information Security Analyst** **About the opportunity** **Key Responsibilities** - Collaborate with IT teammates to implement optimal solutions for Discova. - Communicate with internal IT and Global ETS to ensure...