Sendo Technology JSC tuyển dụng Senior Cyber Security Specialist (Risk Assessment)

The Opportunity

• In this role, you will be responsible for the Penetration Testing and Secure code review for Sendo and
  enterprise application, and systems; utilizing proven/formal processes and industry standards

Your Key Responsibilities

• Operate a hands-on role involving penetration testing and vulnerability assessment activities of complex applications, operating systems, wired and wireless networks, and mobile applications/devices
• Understand vulnerabilities and develop relevant exploits/payloads for use during test exercises.
• Perform analysis of web and mobile applications, vulnerabilities, frameworks, development solutions, and assessment of risks.
• Develop and maintain security testing plans
• Perform control and vulnerability assessments to identify control weaknesses and assess the effectiveness of existing controls, and recommends remedial action. Research and assess new threats and security alerts and recommend remedial actions.
• Secure code review

• Competitive salary and benefits
• Attractive 13th month salary and performance bonus
• Annual performance review for salary raise and promotion
• Premium private insurance (PTI Insurance) with discount for family members
• Annual health check
• 18 days of annual leave
• Company trips and team buildings
• Gifts on special accession: individual /company birthday, Tet and Holidays
• Internal activities, sport and social clubs
• Opportunity to training both technical and soft skills to develop your career path

• Experience with performing penetration tests and understanding of “attacker” and cyber security methodologies and tactics.
• Knowledge of security protocols. (SSH, HTTPS/SSL, AAA, IPSec) and TCP/IP
• Excellent proficiency in network, application, emissions, and physical security.
• Excellent proficiency with the penetration testing tools-of-the-trade (Kali, Armitage, Linux distros, MacOS, Rapid7, Core Impact, Metasploit, nMap, Qualys, Maltigo, Burp Suite, etc.).
• Experience and understanding of Owasp, Mobile Security Framework, SDLC...
• Strong experience with scripting or programming.
• Experience with Windows, Unix, Cisco, platforms and controls.
• Experience and understanding of Agile Software delivery methodology and toolset.
• 2+ YOE in penetration testing, Application Security Testing or related areas.

Certificates or Licenses:

• BS in Computer Science, Information Management, Information Security, or other comparable
  technical degree from an accredited college/university.
• Security-related certifications (CISSP, CISA, CRISK, ISSAP, GSLC, CEH etc.) are highly desired