VPBank
1. Cybersecurity risk and compliance framework and management:
Identify, highlight and remediate information security risk in the Bank
2. Policy, Standards and Processes
- Comply with the Bank’s Information Security Policy, Regulations, Standards, and Process
- Provide feedback to enhance the current policies, regulations, standards and processes where necessary
- Communicate and ensure all staff understands and comply with the Information Security Policy, Regulations, Standards and Processes
3. Operations, Reporting and Administration
- Ensure that the IAM Strategy and Plans are implemented as planned.
- Manages IAM products for the enterprise.
- Works with end users to prioritize and builds strategic roadmaps for IAM products.
- Provides direction to staff to ensure risk is minimized through the development and maintenance of information security processes.
- Responds to IAM incidents and communicates information security issues to management and clients.
- Implements processes and methods for auditing and addressing non-compliance to information security standards and facilitates migration of non-compliant environments to compliant environments.
- Responsible for driving the technical information security architecture, network and system security design, implementation, and management of IAM products and processes.
- Conducts studies within and outside the organization to ensure compliance with standards and currency with industry security norms.
- Evaluates new technology solutions and techniques for implementation to ensure company assets are not comprised.
- Prepares and evaluates activity reports for areas of concern and presents to management.
- Manages staff and motivates employees through talent and performance management.
- Ensure that IAM process are followed diligently. This may include Risks Management, IAM governance and operations to support the IAM Program of the Bank.
- Work with both internal/external audit during audit programs
- Collect, analyze and produce report for IT Security every month
- Ensure Third Party Access to system are managed and comply with Bank’s Information Security Policy and Procedures
4. Information Security Management
- Able to communicate Information Security matters with Stakeholders and Board of Directors where required
- Attractive and competitive salary.
- Bonus on Holidays, special occasions (Independence Day, Labor’s Day, Bank’s anniversary… following Bank’s policy), performance bonus, etc
- Loan programs for employees following Bank’s policy.
- Insurances according to Labor Law + VPBank care insurance for employees and family.
- Professional training programs for personal and leadership development.
- Working time: Monday – Friday & 2 Saturdays
- Dynamic and friendly working environment with many opportunities to join various teambuilding activities (sports, talent contests…).
- 5 years or more of working experience in IT security banking, good knowledge international IT security standards (ISO 270001, PCI-DSS), ITIL
- Experience working in or with Identity & Access Management
- Familiarity and experience working with enterprise access management solutions such as SailPoint, Secret Server, CyberArk, AD Manager highly desired
- Have experience in managing teams or people
- Experience managing product roadmaps and enhancements through the full development life cycle desired
- Knowledge of common information security management frameworks such a NIST a plus
- Extensive experience working with a diverse range of data sources/streams and managing these effectively
- Strong background in information security operations, process, solutions and technologies
- Strong understanding of policy, compliance, and best practice security principles
- Knowledge of Linux, Windows, and/or Network Operating Systems a plus
- Knowledge of infrastructure, key processes, and technology-oriented risk issues, specifically around security and privacy
- Proficiency in product management
- Proficiency in developing partnership-oriented relationships with internal and external business executives and functional leaders
- Proficiency at multitasking in a fast-paced environment with focus on timeliness, documentation, and communications with peers and business users alike.
- Experienced in implementing ISO27000/PCI-DSS is preferred
English
Speaking: Intermediate - Reading: Intermediate - Writing: Intermediate
VPBank was established in 1993. As a member of the group of 12 leading banks in Vietnam (G12), VPBank is taking steps to reaffirm its reputation as a dynamic bank with stable financial capacity and responsibility to the community. To achieve this ambitious vision, VPBank has implemented an aggressive growth strategy for the period 2012 - 2017 with the support of McKinsey, one of the world’s leading consulting companies. Accordingly, VPBank will focus on organic growth in targeted customer segments, build up foundation systems expeditiously to serve its growth needs, and monitor opportunities in the market actively.
The development of human resources is one of the key activities in the development strategy of our bank. At VP Bank, the staff are working in a dynamic and professional environment, and we also organize the training courses for enhancing the employees's skills and bring the promotion opportunities to all staff of the bank.
