Security Engineer (Id21194)

Our client is a foreign-invested company, now looking for a Security Engineer (2000$, ID21194):

• Lead cybersecurity evaluations such as penetration testing, source code analysis, and threat assessments for IoT, OT, and ICS products and environments.
• Plan and define assessment projects by tailoring testing methodologies according to system architecture, risk exposure, and compliance obligations.
• Support customer projects and business development activities by providing expertise in cybersecurity, regulatory compliance, and service solutions.
• Manage conformity assessment activities, including technical analysis and comprehensive reviews of product-related documentation.
• Analyze and implement cybersecurity regulations and standards (e.g., ETSI, IEC, NIST, CRA, RED) into effective and flexible assessment methodologies.
• Review and assess manufacturers’ risk analysis processes, identifying deficiencies and validating compliance with applicable standards.
• Take responsibility for project delivery by proactively addressing issues, closing gaps, and ensuring successful completion of assigned workstreams.
• Investigate and solve technical problems encountered during practical security assessments, even in unclear or incomplete operating conditions.
• Serve as a cybersecurity expert by providing technical guidance and consultation across internal teams, projects, and client engagements.
• Enhance and expand cybersecurity services to align with emerging technologies and changing regulatory requirements.
• Convert operational requirements and compliance expectations into practical procedures, assessment methods, and technical solutions for laboratory operations.
• Support team development by improving technical expertise and contributing to strategic initiatives and capability-building activities.
• Represent the company in external meetings, conferences, and technical seminars.
• Communicate effectively with senior leadership and executive stakeholders regarding the cybersecurity lab’s capabilities, services, and business value.
• Work collaboratively with cross-functional teams to maintain efficient and high-quality service delivery.

• Male/Female: 30 -45 years old
• Bachelor’s degree in Computer Science, Information Security, Computer Engineering, or a related technical field.
• Minimum 4–6 years of experience in a Senior Cybersecurity Engineer role, with hands-on expertise in IoT, OT, ICS, or product security environments.
• Relevant professional certifications such as OSCP, CREST, GPEN, CISA, CISM, or CISSP are highly preferred.
• Proficient in English

• Participation in Social Insurance, Health Insurance, and Life Insurance
• Annual Leave
• Public Holidays, Tet (Lunar New Year), and personal leave as per regulations
• Maternity leave, sick leave, and work-related accident benefits
• Work equipment