Senior Security Engineer

Ho Chi Minh City, Ho Chi Minh City, Vietnam

Katalon logo

Katalon

Katalon is the leading low-code test automation solution for Web, API, Mobile, and Desktop apps. Packed with native CI/CD integrations, start for free now!

Established in 2015, Katalon, Inc. is a global product company providing an End-to-End Software Quality Platform that empowers teams to deliver software with excellence and confidence and proudly achieve the Great Place to Work® Certification™, both in Vietnam and the United States in 2022.

Growing from a team of 6 back in 2015 to over 250 employees now, Katalians has been experiencing exponential growth across the region with one vision: “To become the most popular software quality platform in the world by providing indispensable testing tools for software teams of all sizes”.

We are looking for a Senior Security Engineer who thrives working with engineering and operations teams to secure the cloud enterprise infrastructure. Candidates should have a genuine interest in cyber security and a good understanding of the tactics, techniques, and procedures of attackers. This role requires a detail-oriented, critical thinker who can anticipate issues and solve problems.

Key Responsibilities:

  • Partner with Infrastructure, Architecture, and Operational staff to identify and drive resolution on cloud and workforce projects and issues;
  • Conduct security reviews on AWS cloud environments and follow up with implementing approved targeted improvements and mitigations;
  • Maintain up-to-date detailed knowledge of cloud security including awareness of new or revised security designs, improved security processes, and best practices;
  • Recommend additional security solutions or enhancements to existing security solutions to improve overall cloud and operations security;
  • Act as a subject matter expert for AWS, CIAM, IdAM, SWG, CASB, PAM, SIEM, DLP, and any future cloud or workforce security initiatives;
  • Resolve incidents escalated from the Service desk related to cloud-based access or issues;
  • Participate in security and application troubleshooting and incident problem resolutions with other infrastructure teams;
  • Work along with the team for using security tools such as CrowdStrike, Lacework, and Drata.

Requirements

Key Qualifications

  • Professional IT experience, specifically in Workload and Cloud Security;
  • Solid experience, knowledge, and understanding of security specific to GSuite/AWS is a requirement;
  • Knowledge of computer systems, networks, telecommunication, internet, intranet, and extranet technologies; strong technical acumen: application and operating system hardening, vulnerability assessments, security audits, forensics investigations, intrusion detection systems, and firewalls; ability to weigh business risks and enforce appropriate information security measures; excellent documentation and presentation skills; ability to explain information security concepts to audiences outside of the field;
  • Ability to evaluate business processes and IT technology, identify risks, and process gaps, and evaluate control;
  • Knowledge of GDPR, SOC, CCPA, and other data privacy regulations and standards that apply to the organization;
  • Extensive knowledge of data security and access control systems, encryption, and related matters;
  • Extensive knowledge of information protection methodologies and concepts, such as identification and authentication, access control, inception, and audit trails;
  • Knowledge of system and network exploitation, attack pathologies, and intrusion techniques, such as denial of services, Sync attack, malicious code, password cracking, etc;
  • Knowledge of Single Sign On, SAML, Federation, and Internet/Intranet architecture and design;
  • Extensive knowledge of addressing and remediating malware security incidents;
  • Ability to conduct security assessments and audits against policies/procedures/best practices;
  • Excellent communication skills in English & Vietnae (both written and verbal);
  • Competent interpersonal skills, demonstrating the ability to lead projects;
  • Ability to coordinate and perform multiple tasks/projects simultaneously, balancing priorities and deliverables.

Nice To Have, but not required:

  • Presentation experience at all levels;
  • Security designations (CISSP, CCSK, CCSP, GWEB, AWS) and knowledge of "best practice" frameworks (COBIT, NIST, ITIL, ISO27001) are preferred but not required;
  • Experience working with compliance, privacy, IT, networking, or related functions.

Benefits

At Katalon, we bring together self-starting, open-minded, and talented people while actively promoting a transparent and growth-enabling working environment. But don’t just take our words for it. Take a better look below!

  • Attractive compensation package including achievable Quarterly Performance Bonus (up to 120% gross monthly salary) and 13th-Month Bonus
  • 19 annual leave days and other supportive allowances
  • Flexible working time and place together with high-end working equipment at the high-class new office at Viettel Building (Dist. 10, HCMC)
  • Diverse & International Working Environment with Agile culture
  • Premium healthcare package for you and your loved ones
  • A company trip every summer, an annual year-end party, team-building activities, and so much more fun are waiting for you!

Katalon is proud to be an equal opportunity employer. We care about our people and celebrate our differences. We want to work with talented, collaborative, and innovative people. We do not discriminate in hiring or any employment decision based on race, color, religion, national origin, age, sex (including pregnancy, childbirth, or related medical conditions), marital status, ancestry, physical or mental disability, genetic information, veteran status, gender identity or expression, sexual orientation, or other characteristics protected by law.

* Salary range is an estimate based on our salary survey at salaries.infosec-jobs.com

Tags: Agile Audits AWS CCPA CCSP CISSP Cloud CoBIT Compliance Encryption Firewalls Forensics GDPR Intrusion detection ISO 27001 Malware NIST Privacy SAML Security assessments SIEM

Perks/benefits: Flex hours Medical leave Salary bonus Signing bonus Startup environment Team events

Region: Asia/Pacific
Country: Vietnam
Job stats:  7  0  0

Other jobs like this

Explore more Cybersecurity career opportunities

Find open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Analysis, Cryptography, Digital Forensics and Cyber Security in general, filtered by job title or popular skill, toolset and products used.