Vietnam Silicon

We are looking for an experienced and passionate IT Security Engineer to join our IT team. You will play a critical role in ensuring system security, protecting data, and maintaining compliance with international security standards such as ISO 27001 and GDPR.

How You Will Make An Impact In This Role

1. Implement and maintain security solutions to safeguard IT systems, data, and users.
2. Detect, analyze, and respond to cybersecurity threats, ensuring stable and secure system operations.
3. Develop, enforce, and improve security policies, monitoring processes, and access controls.
4. Contribute to key security projects such as SIEM, Zero Trust Security, Data Loss Prevention (DLP), and Endpoint Protection

Responsibilities

1. System & Network Security

1. Manage and deploy security solutions such as firewalls, IPS/IDS, VPN, NAC.
2. Monitor and respond to security events using SIEM (Splunk, Microsoft Sentinel, Gray log).
3. Manage Access Control, MFA, PAM, IAM, SSO, ensuring secure system access.
4. Develop and implement Zero Trust Security, network segmentation to protect data.

2. Data & Cloud Security

1. Deploy and monitor DLP solutions
2. Manage security for Microsoft 365, Azure, AWS.
3. Ensure compliance with ISO 27001, GDPR.
4. Conduct Vulnerability Assessment & Penetration Testing (VAPT).

3. Incident Response & Security Monitoring

1. Develop Incident Response Plans (IRP) and Forensic Analysis.
2. Deploy and monitor Zabbix, PRTG, ELK Stack.
3. Collaborate with IT teams to improve infrastructure and application security.

4. Training & Compliance

1. Develop security documentation and train employees on security awareness, social engineering, and phishing attacks.
2. Support internal and external security audits.
3. Update and improve IT Security Policies, Security Frameworks, and Compliance Audits.

Requirements Must have

1. 3+ years of experience in Cybersecurity, IT Security, or Network Security.
2. Strong expertise in firewalls, IDS/IPS, endpoint protection, SIEM management.
3. Hands-on experience with ISO 27001, GDPR, IAM, MFA, DLP.
4. Knowledge of Vulnerability Assessment, Penetration Testing, and Risk Management.
5. Good English communication skills
6. Excellent problem-solving and communication skills.
7. Ability to work collaboratively with cross-functional teams. Prefer
8. Familiarity with cloud computing and virtualization technologies.
9. Experience in SIEM, Threat Intelligence, and Incident Response.
10. Knowledge of Zero Trust Security, DevSecOps, and Cloud Security Posture Management (CSPM).
11. Security Certifications:

  o Security: CISSP, CISM

  o Network: CCNA Security

  o Cloud: Microsoft Certified: Security, Compliance, and Identity (SC-200, SC-300), AWS Security Specialty

1. Hands-on experience with Microsoft Defender.
2. Ability to train employees on cybersecurity best practices.