Job Description:
– Participate in the implementation of penetration testing (pentest) services for clients: receive and define the requirements, scope, and assurance conditions of assigned pentest projects
– Break down tasks according to the pentest process and assign them to team members involved in the project execution
– Guide pentesters in performing cybersecurity assessments for applications
– Control service quality, adhere to processes, resources, and implementation timelines for assigned projects
– Serve as the technical point of contact, working with internal departments (Account Management, Customer Service, Project Management) & Clients to coordinate the resolution of issues within the scope of service provision
– Research and improve processes, checklists, and new techniques to enhance service quality, labor productivity, and reduce error rates. Ensure Service Level Agreements (SLAs) according to signed contracts with Clients
Educational Background:
– Bachelor’s degree in: Information Security; Information Technology, Computer Science, Mathematics-Informatics…
– English proficiency equivalent to TOEIC 650 or higher
Requirements/Competencies:
– Thorough understanding of application vulnerabilities and their exploitation techniques
– Thorough understanding of Secure Coding Guidelines, proficient and secure programming skills in one or more programming frameworks
– Knowledge of protection and prevention mechanisms, and knowledge of analyzing and building 1-day payloads
– Thorough understanding of the application pentest process and application security assessment methodologies (Blackbox, Greybox, Whitebox)
– Thorough understanding of Web and Mobile application security assessment checklists based on the international OWASP standard
– At least 2 years of experience in an application security assessment role
– Information security certifications are an advantage: OSCP, OSWE, CPENT, Security+…
Competitive annual total income package
Opportunity to work with diverse domestic and international clients
Annual salary review in March
MIC health and personal accident insurance (coverage up to 600 million VND/year)
Annual health check-up
Awards recognizing performance and timely outstanding contributions
100% sponsorship for in-depth international professional certification based on position, special bonuses for employees achieving international professional certifications
Continuous investment in the latest and most up-to-date learning materials in the field of Information Security from leading global vendors and institutes
100% of employees are provided with an Udemy eLearning account – learn anytime, anywhere
Free participation in professional knowledge sharing programs and seminars from leading domestic and international speakers
Working in a Grade A office – Landmark 72 building with a green space complex and a private area for gym and entertainment (billiards, PES, café, reading, Pingpong)
30-minute relaxation daily with Happy hours (4:00 PM – 4:30 PM)
Sports activities: Football, Billiards, Poker, PES clubs, etc
12 days of annual leave according to Labor Law and 3 days of company vacation, traditional holiday on 22/12
Personal birthday celebrations: Gifts and birthday cake from the Company
Participation in company events: Quarterly team building activities, monthly birthday celebrations, Year End Party, vacations, International Women’s Day (March 8th), Vietnamese Women’s Day (October 20th) (female employees recieve ½ day off), Viettel Group birthday on June 1st, etc
