- Chi tiết công việc
- Giới thiệu công ty
Mức lương: Tới 80 triệu
Loại hình: Toàn thời gian
Chức vụ: Nhân viên
Kinh nghiệm: 3 năm
Mô tả công việc
Provide security techniques and expertise to ensure the infrastructure and software services meet specific customer security requirements/certifications
Collaborate with members of the team and product owners to solve operational issues and develop enhancements such as automation.
Ensure applications stay compliant by integrating application and DevSecOps processes and CI/CD pipelines from early stages of the lifecycle.
Collaborate with team members on continuous improvement to both the Security DevOps pipelines and processes, and to the Information Security tools, services, and processes.
Understand technical and business requirements to develop tactical and strategic roadmaps to address and implement Secure SDLC controls (Data Privacy, SAST, DAST, etc).
Collaborate with members of the team and product owners to solve operational issues and develop enhancements such as automation.
Ensure applications stay compliant by integrating application and DevSecOps processes and CI/CD pipelines from early stages of the lifecycle.
Collaborate with team members on continuous improvement to both the Security DevOps pipelines and processes, and to the Information Security tools, services, and processes.
Understand technical and business requirements to develop tactical and strategic roadmaps to address and implement Secure SDLC controls (Data Privacy, SAST, DAST, etc).
Yêu cầu công việc
Bachelor Degree in information security, computer science.
Experience working in an Agile, DevOps/SecDevOps environment.
3+ years of experience working in software engineering role.
2+ years of experience working in a Security role handling on premise and cloud infrastructures.
Experience with security testing at scale by building and implementing static and dynamic analysis tools, integrating security into CI/CD workflows for everyday deployments.
Minimum 3 years' experience with Authentication and Authorization solutions.
Experience with static code analysis for software or infrastructure as code, including SonarQube,Terraform.
Experience with vulnerability scanners, including Tenable Nessus, Qualys, ...
Understanding of secure software development practices - AppSec - Security and/or regulatory experience desired, OWASP 10 and Web Application Security, Mobile Application Security, API Security.
Good knowledge of threat modeling, risk assessment techniques, code reviews, and with the latest security best practices
Require good knowledge of CI/CD tools - Knowledge of GitLab CI/CD, Seleneoid, Jmeter, SoapUI, Junit
Require good knowledge in automatic configuration management tool - Knowledge of Ansible, Terraform
Require good knowledge of automated security tools - SAST, SCA, DAST, IAST
Good knowledge of containers and orchestration platforms. Need to know how to create, build, deploy and manage containers in development and production environments - Docker, Kubernetes.
Patterns/ Principles - Blue/Green Deployment - Canary Release, Feature Flipping
IDE: Eclipse, Visual Studio
Public Cloud services knowledge: AWS, Digital Ocean.
Knowledge of Logging & Monitoring tools: ELK, Grafana, DataDog, Prometheus.
Experience in developing integration APIs and WebServices (REST/SOAP), API Development
Experience, Knowledge of API Security
Experience working in an Agile, DevOps/SecDevOps environment.
3+ years of experience working in software engineering role.
2+ years of experience working in a Security role handling on premise and cloud infrastructures.
Experience with security testing at scale by building and implementing static and dynamic analysis tools, integrating security into CI/CD workflows for everyday deployments.
Minimum 3 years' experience with Authentication and Authorization solutions.
Experience with static code analysis for software or infrastructure as code, including SonarQube,Terraform.
Experience with vulnerability scanners, including Tenable Nessus, Qualys, ...
Understanding of secure software development practices - AppSec - Security and/or regulatory experience desired, OWASP 10 and Web Application Security, Mobile Application Security, API Security.
Good knowledge of threat modeling, risk assessment techniques, code reviews, and with the latest security best practices
Require good knowledge of CI/CD tools - Knowledge of GitLab CI/CD, Seleneoid, Jmeter, SoapUI, Junit
Require good knowledge in automatic configuration management tool - Knowledge of Ansible, Terraform
Require good knowledge of automated security tools - SAST, SCA, DAST, IAST
Good knowledge of containers and orchestration platforms. Need to know how to create, build, deploy and manage containers in development and production environments - Docker, Kubernetes.
Patterns/ Principles - Blue/Green Deployment - Canary Release, Feature Flipping
IDE: Eclipse, Visual Studio
Public Cloud services knowledge: AWS, Digital Ocean.
Knowledge of Logging & Monitoring tools: ELK, Grafana, DataDog, Prometheus.
Experience in developing integration APIs and WebServices (REST/SOAP), API Development
Experience, Knowledge of API Security
Quyền lợi được hưởng
• 13th month salary, bonus project, gifts (New Year, birthday, 8/3, 1/6, 20/10..)
• Lunch allowance and parking free
• Team building, company trip
• Insurance after 2 months of probation, PVI insurance for some levels
• Training in work and fast-track your career path
• Working in a friendly and professional environment
• Lunch allowance and parking free
• Team building, company trip
• Insurance after 2 months of probation, PVI insurance for some levels
• Training in work and fast-track your career path
• Working in a friendly and professional environment
Thông tin khác
Cấp bậc
Nhân viên
Kinh nghiệm
5 năm
Số lượng tuyển
1 người
Hình thức làm việc
Toàn thời gian
Giới tính
Không yêu cầu
Nhân viên
Kinh nghiệm
5 năm
Số lượng tuyển
1 người
Hình thức làm việc
Toàn thời gian
Giới tính
Không yêu cầu
Thông tin chung
- Mức lương: 80 triệu
Cách thức ứng tuyển
Ứng viên nộp hồ sơ trực tuyến bằng cách bấm nút Ứng tuyển bên dưới:
Hạn nộp: 05/10/2024
Giới thiệu công ty
Xem trang công ty
Finviet là công ty Fintech theo mô hình kinh doanh B2B2C với trọng tâm là các điểm bán lẻ trải dài trên khắp cả nước. Finviet tự hào là đơn vị được ngân hàng nhà được cấp giấy phép trung gian thanh toán (Ví điện tử, Cổng thanh toán, Thu hộ chi hộ). Chúng tôi xây dựng hệ sinh thái công nghệ giúp kết nối giữa các nhà cung cấp dịch vụ/ hàng hoá, ngân hàng/ các đơn vị tài chính với các điểm bán lẻ, từ đó có thể cung cấp hàng hoá dịch vụ đến tận tay người dùng cuối ở khắp mọi nơi một cách nhanh chóng và tiện lợi nhất.
Quy mô công ty
Từ 101 - 500 nhân viên
Việc làm tương tự
Công ty TNHH QC - TV - TCBD Cát Tiên Sa
Thỏa thuận
13/10/2024
Hồ Chí Minh
Công Ty TNHH Công Nghệ Và Giải Trí Bitdance
Thỏa thuận
12/10/2024
Hồ Chí Minh
CÔNG TY TNHH ESUHAI
Thỏa thuận
01/10/2024
Hồ Chí Minh, Bà Rịa - Vũng Tàu, Bến Tre, Bình Dương, Đồng Nai, Sóc Trăng, Thừa Thiên Huế, Tiền Giang, Trà Vinh, Vĩnh Long
Công Ty TNHH Money Forward Việt Nam
Thỏa thuận
23/09/2024
Hồ Chí Minh
CÔNG TY TNHH GIẢI PHÁP PHẦN MỀM TƯỜNG MINH - TMA SOLUTIONS
Thoả thuận
31/10/2024
Hồ Chí Minh
Công Ty Cổ Phần Công Nghệ MIDEAS (Công Nghệ MIDEAS)
7 - 15 triệu VNĐ
24/09/2024
Hồ Chí Minh
hỗ trợ doanh nghiệp
Giải thưởng
của chúng tôi
Top 3
Nền tảng số tiêu biểu của Bộ
TT&TT 2022.
Top 15
Startup Việt xuất sắc 2019 do VNExpress tổ chức.
Top 10
Doanh nghiệp khởi nghiệp sáng tạo Việt Nam - Hội đồng tư vấn kinh doanh ASEAN bình chọn.
Giải Đồng
Sản phẩm công nghệ số Make In Viet Nam 2023.