13 Enterprise Security jobs in Vietnam

Our client is seeking a skilled and proactive IT Security Specialist to join their technology team on a fully remote basis. This role is integral to protecting our organization's information systems and data from cyber threats. You will be responsible for implementing and maintaining IT security measures, monitoring network activity for suspicious patterns, and responding effectively to security incidents. The ideal candidate will have a strong understanding of cybersecurity best practices, network infrastructure, and common attack vectors.

Key Responsibilities:

• Implement, manage, and monitor security controls, including firewalls, intrusion detection/prevention systems, antivirus, and VPNs.
• Conduct regular security audits and assessments of IT infrastructure and applications.
• Respond to and investigate security breaches, malware infections, and other cyber incidents.
• Develop and maintain IT security policies, procedures, and guidelines.
• Perform vulnerability scanning and penetration testing to identify and remediate security risks.
• Assist in the development and delivery of security awareness training for employees.
• Monitor system logs and network traffic for security anomalies and potential threats.
• Stay current with emerging cybersecurity threats, technologies, and best practices.
• Collaborate with IT support teams to ensure secure system configurations and patch management.
• Participate in the planning and implementation of security projects.
• Provide technical support for security-related issues.
• Document security procedures and incident reports.
• Ensure compliance with relevant data privacy and security regulations.
• Recommend and implement improvements to the overall security posture.

Qualifications: A Bachelor's degree in Computer Science, Information Technology, or a related field, coupled with at least 3 years of experience in IT security or a similar role. A strong understanding of network protocols, operating systems (Windows, Linux), and cybersecurity frameworks. Experience with security tools such as SIEM, endpoint detection and response (EDR), and vulnerability management platforms is essential. Certifications like CompTIA Security+, CEH, or similar are highly advantageous. Excellent analytical and problem-solving skills, with meticulous attention to detail. Strong communication and interpersonal abilities to collaborate effectively with team members. If you are a security-minded IT professional looking for a challenging and rewarding remote opportunity, we encourage you to apply.

Our client is seeking a proactive and skilled Information Security Specialist to join their expanding team in **Thai Binh, Thai Binh, VN**. This fully remote position is crucial for maintaining and enhancing the organization's security posture across its digital infrastructure. You will be responsible for implementing and managing security controls, monitoring security systems for threats, and responding to security incidents. Key duties include conducting vulnerability assessments, assisting with penetration testing, and ensuring compliance with security policies and industry best practices. You will also be involved in security awareness training, managing security technologies such as firewalls and antivirus solutions, and staying informed about the latest cybersecurity threats and trends. The ideal candidate possesses a strong understanding of cybersecurity principles, network security, and risk management. Excellent analytical and problem-solving skills are essential for identifying and mitigating security risks effectively. Experience with security frameworks and regulatory compliance is highly valued. Strong communication and collaboration skills are necessary for working with IT teams and management in a remote environment. You must be a self-starter, highly organized, and capable of managing your workload independently while contributing to team objectives. Proficiency with security tools and a commitment to protecting sensitive data are vital. We are looking for a dedicated professional who can contribute to strengthening our client's defense against cyber threats. Your efforts will directly impact the security and integrity of the organization's systems and data. This role offers the opportunity to grow your career in cybersecurity within a supportive, remote-first setting.

Key Responsibilities:

• Implement and manage security controls and measures.
• Monitor security systems, analyze alerts, and investigate potential incidents.
• Conduct vulnerability assessments and support penetration testing efforts.
• Assist in developing and enforcing security policies and procedures.
• Provide security awareness training to staff.
• Manage and maintain security software and hardware.
• Respond to security incidents and assist in remediation.
• Ensure compliance with security standards and regulations.
• Stay current with emerging cybersecurity threats and technologies.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 2+ years of experience in information security or cybersecurity roles.
• Solid understanding of cybersecurity principles, network security, and risk assessment.
• Experience with security tools (e.g., firewalls, antivirus, vulnerability scanners).
• Knowledge of security best practices and compliance requirements.
• Strong analytical and problem-solving capabilities.
• Effective communication and collaboration skills for remote work.

Our client, a global leader in SaaS solutions, is looking for a talented Information Security Specialist with expertise in Cloud Security to join their fully remote engineering team. This role is essential for protecting our extensive cloud infrastructure and sensitive data against evolving cyber threats. You will be responsible for designing, implementing, and managing security measures for our cloud environments (AWS, Azure, GCP) and ensuring compliance with industry regulations. The ideal candidate is passionate about cloud security, possesses a strong understanding of cloud-native security tools, and can effectively implement security best practices in complex, distributed systems. This position demands excellent communication, proactive problem-solving, and the ability to work autonomously in a remote setting, collaborating with engineering and operations teams worldwide. Your responsibilities will include:

• Implementing and managing security controls for cloud platforms (AWS, Azure, GCP).
• Conducting cloud security assessments and identifying vulnerabilities.
• Developing and maintaining cloud security policies and procedures.
• Monitoring cloud environments for security threats and responding to incidents.
• Ensuring compliance with relevant data protection regulations (e.g., GDPR, CCPA).
• Working with engineering teams to integrate security into the CI/CD pipeline.
• Automating security tasks and processes using scripting and cloud-native tools.
• Providing expert advice on cloud security best practices to development teams.
• Managing identity and access management (IAM) for cloud resources.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• 3-5 years of experience specifically in cloud security.
• Hands-on experience securing AWS, Azure, or GCP environments.
• Proficiency with cloud security tools and services (e.g., Security Groups, WAF, GuardDuty, Azure Security Center).
• Understanding of container security (Docker, Kubernetes).
• Experience with infrastructure as code (IaC) tools like Terraform or CloudFormation.
• Strong scripting skills (e.g., Python, Bash).
• Excellent analytical and troubleshooting abilities.
• Effective communication and collaboration skills for a remote team.
• Relevant cloud security certifications (e.g., AWS Certified Security - Specialty, Azure Security Engineer Associate) are a strong advantage.

Our client is seeking a highly skilled and experienced Senior Network Security Specialist to join their IT department. This role is crucial for protecting the company's network infrastructure and data from evolving cyber threats. You will be responsible for designing, implementing, and managing advanced security solutions to ensure the integrity, confidentiality, and availability of our network systems. This position requires a deep understanding of network security principles, best practices, and emerging threats. Key responsibilities include conducting vulnerability assessments and penetration testing, configuring and maintaining firewalls, intrusion detection/prevention systems (IDS/IPS), and VPNs. You will also be involved in security incident response, forensic analysis, and developing security policies and procedures. The ideal candidate will have a proven track record of success in network security, preferably within the telecommunications sector. Excellent analytical and problem-solving skills are essential for identifying and mitigating security risks. Strong knowledge of security technologies and protocols is a must. This role is office-based in Nam Dinh, requiring collaboration with IT teams and adherence to strict security protocols. You should be adept at staying current with the latest security threats and technologies to ensure robust protection. A proactive approach to security monitoring and incident prevention is highly valued. The ability to communicate complex security concepts to both technical and non-technical audiences is also important. This is an opportunity to play a vital role in safeguarding the organization's digital assets.

Responsibilities:

• Design, implement, and manage network security solutions.
• Configure and maintain firewalls, IDS/IPS, VPNs, and other security devices.
• Conduct vulnerability assessments, penetration testing, and security audits.
• Monitor network traffic for security breaches and suspicious activity.
• Respond to security incidents, conduct forensic analysis, and implement remediation measures.
• Develop and enforce security policies, standards, and procedures.
• Stay updated on emerging cybersecurity threats and vulnerabilities.
• Collaborate with IT teams to ensure secure network operations.
• Provide security awareness training to employees.

Qualifications:

• Bachelor's degree in Computer Science, Cybersecurity, or a related field.
• Minimum of 5 years of experience in network security or cybersecurity roles.
• Proven experience with firewalls, IDS/IPS, SIEM, and other security technologies.
• Strong understanding of network protocols, security frameworks, and best practices.
• Experience with vulnerability assessment and penetration testing tools.
• Excellent analytical and problem-solving skills related to cybersecurity.
• Proficiency in security incident response and digital forensics.
• Ability to work independently and collaboratively in a team environment.
• Relevant security certifications (e.g., CISSP, Security+) are highly desirable.

**Mô tả công việc**:
(Mức lương: Thỏa thuận)

What you will do

The Data Privacy & Security Specialist is a member of the Information Security team who will review the company's services, products, and offerings to identify issues related to data protection and privacy, help execute, and improve Trusting Social's data protection & privacy program. The position will be responsible for consulting on privacy matters, development, implementation, maintenance and execution of policy and procedural documentation in support of Trusting Social's Data Protection & Privacy Program. This position will also coordinate with multiple business areas including IT Compliance & Audit, SRE, Legal, HR, Business & Sale, Engineering, etc to ensure data protection & privacy requirements are effectively implemented to promote compliance objectives. Specifically, you will:

- Conduct risk assessments, review results and work with stakeholders to mitigate data protection & privacy risks across the organization
- Support the Business Units and their respective stakeholders in creating and maintaining accurate, up-to-date records and processes to ensure compliance with data protection & privacy requirements
- Refine and manage effective data protection and privacy governance activities including: Data Protection & Privacy by Design, Data Mapping, Data Subject Access Requests, Data Classification, Data Threat Modeling and Data Protection Impact Assessments
- Inform and advise the company, service providers, and employees who carry out processing of personal data of their obligations with regards to data protection
- Creating, reviewing and updating Trusting Social’s policies, standards, procedures and guidance documents for Data Protection & Privacy to align with multiple countries laws and business contracts
- Work closely with project teams, developers, big data engineers, SRE and IT operational teams to ensure ongoing compliance with Trusting Social data protection policies, standards and privacy regulations
- Collaborate with IT auditors to ensure that systematic data protection & privacy compliance audits are intensive and that their findings are reported and acted upon
- Develop and present training material to support the data protection & privacy training program
- Monitor the industry landscape & emerging threats to keep visibility on evolutions, trends, and best practices related to Data Protection & Privacy

**Chức vụ**: Nhân Viên/Chuyên Viên

**Hình thức làm việc**: Toàn thời gian

**Quyền lợi được hưởng**:
Health insurance package for the whole family, free food at the office, Grab for Work allowance
Be part of a winning team with exponential growth regionally, recruiting world-class talent
Opportunity to work and learn from one of the best and brightest technology teams in Vietnam

**Yêu cầu bằng cấp (tối thiểu)**: Đại Học

**Yêu cầu công việc**:
What you need to have
- Bachelor's Degree in Computer Science or related IT field
- 3+ years of demonstrated experience in Information Technology/Security, Governance, Risk, Compliance (GRC) and Privacy domains
- Experience in privacy and data protection laws and frameworks such as NIST Privacy Framework, GDPR, PCI-DSS, or US privacy laws
- Good communication skills, including the ability to liaise with people across the business
- Strong experience in risk assessment, SOPs, documents, reports and templates development and management
- Strong experience in data protection & DLP solutions
- Basic knowledge for data protection & privacy concepts and best practices on Native clouds, API, Infra as a Code and Container technology
- Privacy certification (such as CIPP/CIPM/CIPT or similar) is strongly preferred

What you will get:

- Top market rate pay
- Offer state-of-the-art Macbook, offices, and facilities
- 100% salary during probation
- Free Grab for work
- Exceptional career growth
- Comprehensive health insurance package for parents, spouses, and children
- Best and brightest colleagues
- Free food at the office - all day
- Amazing company retreats

**Yêu cầu giới tính**: Nam/Nữ

**Ngành nghề**: CNTT - Phần Mềm,Data Analytics,Quản Trị Hệ Thống

Đại Học
Không yêu cầu

KMS was established in 2009 as a U.S.based software development & consulting company with development centers in Vietnam. Over 13 years of operation, we have been trusted globally for the superlative quality of software services, products, technology solutions and engineers' expertise.
- KMS Technology focuses on custom software development and a wide variety of consulting services
- KMS Healthcare specialises in the healthcare industry, provides a unique blend of consultative healthcare technology solutions backed by the power of full lifecycle development support
- KMS Solutions serves the Asia Pacific region, bringing the world's innovative technologies to help organizations achieve their business goals through world-class digital capabilities and fit-for-purpose solutions

Besides providing services, KMS builds and successfully launches its own software companies through its internal startup incubator, KMS Labs. The most notable companies with millions of users worldwide include QASymphony, Kobiton, Katalon, Grove, and Visily.

KMS is committed to providing tangible contributions and long-lasting impacts to the communities through leveraging our IT expertise. The company has also been recognized by prestigious industry awards as a great workplace in Vietnam, Asia, and the U.S. for many years in a row.

**Responsibilities**:
**Key Responsibilities**:

- Configure, maintain, and enhance the Physical Security Systems (CCTV, Door Access Control, etc.).
- Manage the Access Control system on the daily operation (print ID badges, input data into the system, promptly delete accounts of terminated employees) for KMS Group.
- Maintain and improve the WCA (Workplace Condition Assessment) standard in KMS Group to ensure its effectiveness. Planning, coordinating and implementing effective WCA policies, guidelines, and procedures to meet departmental objectives.
- Handle the payment process for purchasing materials within the PSE Team.
- Assist with ad-hoc Physical and Safety tasks and projects as required.

**Qualifications**:
**Technical and Skills**:

- Having knowledge in the field of physical security.
- A university degree in a technical, IT-related field is an advantage.
- Having experience (understanding, configuration, planning, troubleshooting, etc.) in managing physical security and access control systems.
- Having a basic knowledge of labour hygiene and safety (HSE) standards is an advantage.
- Having a basic knowledge of electrical engineering.

**Soft Skill**:

- Proficiency in Google Suite (Google Docs, Sheets, Slides, Drive, etc.) and document writing and policy development.
- Willingness to learn new concepts related to health, safety and the environment, including laws, processes, and practices.
- Ability to effectively prioritize, take ownership and execute tasks in a high-pressure environment.
- Basic logical and creative thinking skills. Honesty, enthusiasm, openness, and enthusiasm for work.

**Benefits and Perks**:
**_ Perks you Enjoy at KMS_**
- Working in one of the Best Places to Work in Vietnam
- Working & growing with Passionate & Talented Team
- Attractive Salary and Benefits
- Performance appraisal twice a year
- Flexible working time
- Premium health care insurance for you and your loved ones
- Company trip in every summer, big annual year-end party every year, team building, etc.
- Fitness & sports activities: football, tennis, table-tennis, badminton, yoga, swimming
- Joining community development activities: 1% Pledge, charity every quarter, blood donation, public seminars, career orientation talks,
- Free in-house entertainment facilities (football, ping pong, boxing, gym ), coffee (latte, cappuccino, espresso) and snack (instant noodles, cookies, candies )

And much more, join us and let yourself explore other fantastic things!

**RESPONSIBILITIES**:
**Cloud Cybersecurity risk and compliance framework and management**:

- Accountable for development of the Cloud Security Design framework for new technology solutions
- Responsible for embedding best practice security through evaluation of suppliers
- Responsible for establishing security requirements needed to provide services securely
- Ensure compliance to current standards ISO27001, 27017-27018, PCI-DSS
- Defining requirements for risk and security and ensuring they are achieved
- Drive cyber security strategy compliance
- Align activities to current BAU audit activities from legacy business to ensure consistency in approach
- Manage and liaise with regulators
- Identify, highlight and remediate information security risk in the Bank

**Policy, Standards and Processes**
- Planning, studying and then designing a resistant security architecture for various IT/IT Security projects (clould/onpremise)
- Test and evaluate new security solution/new security technology
- Make sure that all workers follow the necessary corporate security policies and procedures that are defined, developed, implemented, and maintained for a seamless workflow.
- Create standards for all IT assets, such as routers, firewalls, LANs, WANs, VPNs, and other network devices. You have to determine their efficacy and efficiency.
- Comply with the Bank’s Information Security Policy, Regulations, Standards, and Process
- Provide feedback to enhance the current policies, regulations, standards and processes where necessary
- Communicate and ensure all staff understands and comply with the Information Security Policy, Regulations, Standards and Processes

**Operations, Reporting and Administration**
- Ensure that the Information Security Strategy and Plans are implemented as planned.
- Ensure that Information Security process are followed diligently. This may include Risks Management, Operating Security Services/Tools to support the Information Security Program of the Bank.
- Control approve the request/changes related to security, control activities of IT security: implementing, operating, vulnerabilities management
- Contribute to the IT Security Dash Board for Management
- Work with both internal/external audit during audit programs
- Training IT security awareness
- Collect, analyze and produce report for IT Security every month

**Area of Information Security Specialization**
- Provide the appropriate guidance and advisory in the area of specialization
- Be able to contribute to the Bank in terms of documentation, transfer of ideas and implementing the plans in the area of specialization

**REQUIREMENTS**:
**Educational Qualifications**
- Bachelor's or Technical Degree Required (IT, Cryptography, computer science, information systems, business administration or other industry-related curriculum)

**Relevant Knowledge/ Expertise**
- Have at least a minimum of 5 years of experience in the area of specialization
- Have a good knowledge international IT security standards (ISO 270001, PCI-DSS, ), ITIL
- Work experience with one or more cloud service providers
- Deep understanding of cloud service architecture with emphasis on security in the cloud
- Solid understanding of modern information security methodologies and standards, especially in cloud environment
- Cloud/Security certification desired
- Knowledge and experience supporting IAM, security operations and threat response
- Practice with modern DevSecOps with automation (nice to have)Ability to automate repetitive tasks (scripting skills in Bash/PowerShell/ Python)
- Expert with architect, security technology, integration
- Have good knowledge with pen test with OWSAP Standard and ability discovery & exploit vulnerabilities, cyber attack
- Good knowledge some tools for hacking: VA, APPScan, Metaexploit, kalilinux
- Experienced in implementing ISO27000/PCI-DSS is preferred
- Have good knowledge with secure coding with some languages: Python, Shell, PHP and have good knowledge with encryption, cryptography techniques

**Skills**
- Have ability to read and understand the professional documents in English.
- Strong interpersonal and communication skill
- Be able to catch up and manage works quickly and effectively
- Be able to work independently with high pressure, good in teamwork
- Careful, responsible, and secure in protecting information/data belong to Bank
- Good knowledge of risk management principles, methodology and practice
- Preferred Fluent in English

**Relevant Experience**
- Stakeholder expectation management
- People Management
- Risk Management
- Budget Management

**Others**
- Strong Logical Thinker and Planner
- Management, Leading ability
- Implementation and Deliver ability

**For more information, please contact**:

- Ms. Nguyen Thi Hoai (84) 24 3936 7618 - Ext: 163

Our client, a prominent technology firm, is looking for a skilled Information Security Analyst with specialized expertise in Security Information and Event Management (SIEM) to join their team in **Thanh Hoa, Thanh Hoa, VN**. This role is crucial in safeguarding the organization's digital assets and ensuring the integrity and confidentiality of sensitive data. You will be responsible for monitoring security alerts, investigating potential security incidents, and developing robust incident response plans. A key aspect of this position involves managing and optimizing the SIEM platform, including rule tuning, dashboard creation, and log source integration. You will actively hunt for threats, analyze malware, and perform vulnerability assessments to identify and remediate security weaknesses. The ideal candidate will possess a deep understanding of cybersecurity principles, network protocols, and common attack vectors. You will also be involved in developing and implementing security policies and procedures, conducting security awareness training, and ensuring compliance with industry regulations. Collaboration with IT operations and development teams is essential to integrate security measures throughout the software development lifecycle. This is a challenging opportunity to make a significant impact on our client's security posture in a dynamic technological landscape. The role requires a proactive approach to threat detection and a commitment to continuous improvement in security operations.
Key Responsibilities:

• Monitor SIEM alerts and investigate security incidents in real-time.
• Develop, implement, and tune SIEM rules and correlation logic.
• Manage and maintain the SIEM platform, including log aggregation and analysis.
• Conduct threat hunting activities to proactively identify security threats.
• Perform malware analysis and digital forensics.
• Conduct vulnerability assessments and penetration testing.
• Develop and update incident response playbooks.
• Assist in the development and enforcement of security policies and procedures.
• Provide security awareness training to employees.
• Collaborate with IT teams to ensure secure system configurations.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• 3-5 years of experience in information security, with a strong focus on SIEM technologies.
• Hands-on experience with SIEM platforms such as Splunk, QRadar, or ArcSight.
• Knowledge of networking protocols (TCP/IP, HTTP, DNS) and operating systems (Windows, Linux).
• Familiarity with security frameworks (e.g., NIST, ISO 27001).
• Relevant security certifications (e.g., CompTIA Security+, CEH, GIAC) are a plus.
• Strong analytical and problem-solving skills.
• Excellent communication and reporting skills.

Our client is seeking a vigilant and skilled Information Security Analyst with a specialization in Security Information and Event Management (SIEM) to join their dedicated security operations center in **Buon Ma Thuot, Dak Lak, VN**. This role is critical in protecting the organization's digital assets by monitoring, analyzing, and responding to security threats. You will be responsible for the configuration, maintenance, and optimization of the SIEM platform, ensuring that it effectively detects and alerts on malicious activities. Your duties will include developing and refining correlation rules, creating dashboards and reports for security insights, and performing in-depth investigations of security incidents. You will play a key part in threat hunting, proactively searching for indicators of compromise that may have bypassed automated defenses. Collaboration with IT infrastructure teams, application developers, and other security professionals will be essential to integrate new data sources into the SIEM and enhance overall security posture. Experience with various security tools, including firewalls, IDS/IPS, endpoint detection, and vulnerability scanners, is highly desirable. The ideal candidate will possess strong analytical and problem-solving skills, a meticulous attention to detail, and a passion for cybersecurity. Certifications such as CompTIA Security+, CEH, or GIAC are advantageous. This position offers an excellent opportunity to work with cutting-edge security technologies in a supportive environment, contributing directly to the protection of sensitive information and systems. You will be instrumental in strengthening our client's defense against a constantly evolving threat landscape, ensuring the integrity and confidentiality of their operations. This role requires an individual committed to continuous learning and staying ahead of emerging security trends and vulnerabilities.

Key Responsibilities:

• Manage, configure, and optimize the SIEM platform.
• Monitor security alerts and events for potential threats.
• Investigate and analyze security incidents to determine root causes.
• Develop and implement SIEM correlation rules and use cases.
• Perform threat hunting and proactively identify vulnerabilities.
• Generate security reports and dashboards for management.
• Collaborate with IT teams to ensure data source integration with SIEM.
• Respond to and mitigate security incidents.
• Maintain documentation for security procedures and tools.
• Stay updated on the latest cybersecurity threats and technologies.