Mô tả công việc
MAIN PURPOSE
• Ensuring effective threat detection, incident response, and compliance across the enterprise, while maintaining strong governance and operational alignment with external security service providers.
• Oversee the organization's cybersecurity posture and manage the performance of the Global Security Operations Centre (GSOC) vendor.
KEY RESPONSIBILITIES
Security Operations Oversight
• Lead and coordinate daily security operations in partnership with the GSOC vendor.
• Monitor and validate threat intelligence, alerts, and incident reports generated by the GSOC.
• Ensure timely escalation, investigation, and resolution of security incidents.
GSOC Vendor Management
• Serve as the primary point of contact for GSOC vendor relationship and performance.
• Define and enforce SLAs, KPIs, and incident response protocols.
• Conduct regular service reviews, performance audits, and continuous improvement initiatives.
• Ensure GSOC services align with organizational security policies and business requirements.
Threat Detection & Response
• Oversee the configuration and tuning of SIEM platforms (e.g., Microsoft Sentinel, Splunk).
• Validate use cases, correlation rules, and threat hunting activities.
• Coordinate incident response efforts, including containment, eradication, and recovery.
Security Governance & Compliance
• Develop and maintain security policies, standards, and procedures.
• Ensure compliance with regulatory frameworks such as Shiseido Security Framework, ISO 27001, NIST, GDPR, and PDPA.
• Support internal and external audits and manage remediation of findings.
Vulnerability & Risk Management
• Oversee vulnerability scanning, patch management, and risk assessments.
• Collaborate with IT and application teams to remediate identified risks.
• Maintain a risk register and report on risk posture to senior leadership.
Security Awareness & Training
• Promote a culture of security awareness through training programs and phishing simulations.
• Provide guidance to business units on secure practices and data protection.
Reporting & Documentation
• Prepare regular reports on security metrics, incident trends, and GSOC performance.
• Maintain documentation for incident response plans, playbooks, and escalation procedures.
Security Innovation & Trends
• Monitor emerging threats and technologies.
• Recommend strategic investments in security innovation.
Ad hoc Support
• Additional information security-related tasks given by the supervisor or management team.
Yêu cầu
• Bachelor's degree in Information Security, Computer Science, or related field.
• 5+ years of experience in cybersecurity operations, with at least 2 years in vendor management.
• Strong understanding of SOC operations, SIEM platforms, and threat intelligence.
• Experience with Microsoft security stack (Defender, Sentinel, Purview) is a plus.
• English: excellent communication
• Certifications such as CISSP, CISM, GIAC, or ISO 27001 Lead Implementer preferred.
• Ability to travel within the APAC region as needed.
Quyền lợi
Chăm sóc sức khoẻ
Health insurance during probation period
Máy tính xách tay
provided by the company
Hoạt động nhóm
YEP, Company Trip, Sports Day, Yoga, Group Workout...
Xem thêm
Thông tin khác
NGÀY ĐĂNG
25/11/2025
CẤP BẬC
Nhân viên
NGÀNH NGHỀ
Công Nghệ Thông Tin/Viễn Thông > Bảo Mật Công Nghệ Thông Tin
KỸ NĂNG
Cybersecurity, Security Awareness, Threat Intelligence, Vendor Management
LĨNH VỰC
Bán lẻ/Bán sỉ
NGÔN NGỮ TRÌNH BÀY HỒ SƠ
Bất kỳ
SỐ NĂM KINH NGHIỆM TỐI THIỂU
5
QUỐC TỊCH
Người Việt Nam
Xem thêm
Thông tin chung
Nơi làm việc
- Vietcombank Tower, Công trường Mê Linh, Bến Nghé, Quận 1, Thành phố Hồ Chí Minh, Việt Nam