Senior Pentester

Job Purpose
Participate in and directly carry out: defining security requirements and designing information security for systems and applications; performing penetration testing; deploying and enhancing systems and applications in use or under development with the goal of strengthening information security capabilities and promptly identifying potential vulnerabilities to propose remediation measures.
Manage and implement information security standards at Techcombank in compliance with Vietnamese and international security regulations.
Establish and maintain compliance with information security policies and regulations. Timely address risks to ensure the overall information security of the bank.
Key Accountabilities
Information Security Responsibilities:

Regularly audit the configuration and integrity of internal security policies and systems at TCB to detect violations or potential insider threats.
Join development and technology deployment projects to ensure security throughout the system lifecycle, including: security requirement analysis, secure design, threat modeling, source code review, security testing, and implementation of appropriate security controls.
Collaborate with the Security Monitoring team to participate in incident response and resolution.
Ensure ongoing compliance with internal Techcombank policies and with circulars and regulations issued by the State Bank of Vietnam.
Coordinate with Compliance Assessment and Risk Management units to evaluate the system’s compliance with policies, regulations, standards, procedures, and checklists.
Establish and oversee the implementation of information security processes, regulations, standards, guidelines, and policies in line with government requirements and international best practices.
Implement and maintain compliance with international standards such as PCI DSS, ISO, SWIFT CSP.
Research and develop information security solutions to prevent cyber- attacks and incidents, ensuring safety and security across the bank’s entire information system.

Other Responsibilities

Research and apply information security standards and frameworks suitable for the banking environment.
Perform other duties as assigned by management.
Design and deliver security awareness and training programs for bank staff.

Yêu cầu công việc

Bachelor’s degree in Information Technology, Computer Science, or Electronics and Telecommunications.
3–5 years of experience in security assessment and penetration testing within financial services, telecom, or similar sectors.
Experience should include:
Participating in the development and enforcement of information security standards for IT systems.
Researching, designing, implementing, and evaluating information security solutions across different areas;
Implementation and compliance with standards such as PCI- DSS, ISO, SWIFT CSP;
English: According to Techcombank’s current language proficiency requirements.
Experience in assessing information security in Agile development environments.
Relevant security certifications such as OSCP, or PCI DSS implementation/evaluation certifications

At Techcombank, you will have the resources of a leading bank, and the opportunity to directly shape data- driven strategies that impact tens of millions of customers.
We offer:

Opportunities to innovate, influence, and lead at scale.
A global working environment with top- tier experts from leading international organizations.
Competitive compensation and performance- based incentives.
Recognition as Vietnam’s 1 customer experience bank, driven by our focus on Big Data utilization and cutting- edge technology infrastructure.

Cập nhật gần nhất lúc: 2025-08-25 00:30:02