System Security Engineer

- Works with global partners to improve security for products.
- Participating in management, monitoring and operation of security systems (Endpoint Security, firewall, WAF, IPS, SIEM...) to ensure availability for applications and compliance with standards/policy book in operating the system.
- Deploying activities to optimize security infrastructure: control access to servers, internet, data, applications.
- Participate in the review and evaluation (application, system) to come up with the optimal security solution.
- Building and administering security monitoring and analysis systems;
- Researching technologies, techniques and applications serving security for the Company's system;
Develop and implement policies, procedures, regulations and documents on information security;
- Develop and update operating documents for security systems, configuration standards, operating instructions.
- Develop scenarios to perform vulnerability scanning, penetration testing (vulnerability assessment & Penetration testing) and proactively assess potential security threats in the system (Active Threat Assetment) according to the plan.
- Apply PCI-DSS/ISO 27001/SOC 2 process to harden overall system security.
* Security monitoring and troubleshooting
- Monitor assigned security systems and handle incidents in accordance with regulations and procedures.
- Monitor network traffic, analyze logs to detect security events and handle them according to operational procedures.
- Receive and process requests for malicious code handling, tracking and other security events.
- Support teams to identify and resolve security related bugs