Information Security Specialist
Ho Chi Minh City, Vietnam
Ninja Van
Ninja Van is Southeast Asia’s leading logistics provider, with the highest service coverage over 6 countries in the region. Experience the joy of hassle-free deliveries by shipping with Ninja Van today.At our core, we are a technology company that is disrupting a massive industry with cutting-edge software and operational concepts. Powered by algorithm-based optimisation, dynamic routing, end-to-end tracking and a data-driven approach, we provide best-of-class delivery services that delight both the shippers and end customers. But we are just getting started! We have much room for improvement and many ideas that will further shape the industry.
Responsibilities
- Program Delivery
- Manage delivery of Group Information Security tools and capabilities locally
- Support CISO in managing the delivery of global programs, KPIs and KRIs
- Compliance
- Support local business in Security Architecture decisions by working in liaison with Group Information Security
- Manage resolution of vulnerabilities or issues detected in local IT/Tech Infrastructure
- Reduce the information security risk by identifying the root cause and working with local/group stakeholders to take corrective actions
- Support Local Team with questions related to regulatory compliance and IT/InfoSec audits.
- Training and Incident Response
- Run local security training programs
- Communicate and ensure implementation of group IS policies, procedures and processes locally.
- Adapt security procedures as per local needs where required
- Qualify local Security Incidents and co-ordinate incident response with Group IS
- Lead and/or participate in post Incident Reviews
Requirements
- Experience/Skills Required
- Bachelors in Information Security / STEM (science, technology, engineering and mathematics) degree
- At least 6+ years of experience in IT/Information Security
- Experience in leading IT security, attestation and assurance audits globally
- Professional security related qualification (e.g. CISM, CISA, CRISC.) will be favorable although not mandatory
- Local Language skills
- Education / Qualifications
- Bachelor’s degree in Computer Science, Information system
- Core Competencies
- Knowledge of attestation standards (SOC 1. SOC 2, IT SOX etc.)
- Knowledge of ISO 27001, NIST CSF
- Excellent written and verbal communication skills and ability to escalate timely to management.
- High degree of attention to detail and discipline in tracking and managing the closure of identified vulnerabilities and issues arising from audit
- Effective influencing and negotiating skills and demonstrated sensitivity to working and interacting with senior stakeholders
- Ability to work independently
- Language Requirements
- Able to communicate in English effectively (TOEIC >700)
Salary and benefits:Competitive income compared to the market"Tet" bonus , Performance review from 1 - 4 monthsPaid social insurance based on full salary12 days annual leave, 5 days sick leave (with full salary)High-class AON Health Insurance for manager level.Year End Party, annual Townhall CeremonyAnnual company trip Attractive team-building activities, regular internal activitiesProvide laptop for employees
Training and developing:Participate in internal training courses: online/offlineOpportunities to promote to higher positions: Senior, Team Leader, Manager etc.
Work environment & colleagues:Senior leaders are open-minded, respectful and ready to facilitate personal growthYoung and dynamic working environmentScope of work is large, the company has more than 4000 employees, the company has operations spreading to 63 provinces/cities thoughout the country.
Submit a job applicationBy applying to the job, you acknowledge that you have read, understood and agreed to our Privacy Policy Notice (the “Notice”) and consent to the collection, use and/or disclosure of your personal data by Ninja Logistics Pte Ltd (the “Company”) for the purposes set out in the Notice. In the event that your job application or personal data was received from any third party pursuant to the purposes set out in the Notice, you warrant that such third party has been duly authorised by you to disclose your personal data to us for the purposes set out in the the Notice.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits CISA CISM Compliance Computer Science CRISC Incident response ISO 27001 KPIs Mathematics NIST Privacy SOC SOC 1 SOC 2 STEM Vulnerabilities
Perks/benefits: Competitive pay Gear Health care Salary bonus Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open DevSecOps-related jobs