Senior Officer, Information Security Monitoring (SOC)

- Develop and deliver use cases/rules to detect and alert as quickly as possible (real-time) all events/incidents of attacks on the bank's systems/services, based on events aggregated from information security systems, as well as other technology components. 

- Develop and deliver full response scenarios to different forms of attacks targeting the system 

- Participate in the investigation, tracing and handling of high/critical-level information security incidents when receiving escalations 

- Constantly update new types of dangerous attacks, new tactics, strategies, new types of malicious code used in targeted attacks to improve chaining capabilities, correlate analysis, improve the ability to actively hunt for signs of attack and control systems 

- Graduated in IT, Computer Science or Telecommunications 

- English: According to current regulations of the Bank (Toeic below 550) 

- Certificates in information security such as CEH + Experience in researching security holes, developing attack techniques/tools, performing attack testing of technology systems by technical and non-technical measures (01 year or more)

- Having experience in implementing, administering, and operating in-depth in terms of policies, set of rules, configuration of information security at least one of the following areas at financial/service/telecommunications organizations (2-3 years)

- Security solutions for access identity management (PAM, IAM...);

- Network security solutions (Firewall, NAC, APT, NetIPS, DDOS...);

- Security solutions for terminals (AD GPO, HIPS/HFW, Appcontrol, Web/mail filtering, DB security...);

- Data security solutions (DLP, FAM...).