Pentest Manager

Responsibilities

• Job Description:

– Participate in the implementation of penetration testing (pentest) services for clients: receive and define the requirements, scope, and assurance conditions of assigned pentest projects

– Break down tasks according to the pentest process and assign them to team members involved in the project execution

– Guide pentesters in performing cybersecurity assessments for applications

– Control service quality, adhere to processes, resources, and implementation timelines for assigned projects

– Serve as the technical point of contact, working with internal departments (Account Management, Customer Service, Project Management) & Clients to coordinate the resolution of issues within the scope of service provision

– Research and improve processes, checklists, and new techniques to enhance service quality, labor productivity, and reduce error rates. Ensure Service Level Agreements (SLAs) according to signed contracts with Clients

Qualifications

• Educational Background: 

– Bachelor’s degree in: Information Security; Information Technology, Computer Science, Mathematics-Informatics…

– English proficiency equivalent to TOEIC 650 or higher

• Requirements/Competencies:

– Thorough understanding of application vulnerabilities and their exploitation techniques

– Thorough understanding of Secure Coding Guidelines, proficient and secure programming skills in one or more programming frameworks

– Knowledge of protection and prevention mechanisms, and knowledge of analyzing and building 1-day payloads

– Thorough understanding of the application pentest process and application security assessment methodologies (Blackbox, Greybox, Whitebox)

– Thorough understanding of Web and Mobile application security assessment checklists based on the international OWASP standard

– At least 2 years of experience in an application security assessment role

– Information security certifications are an advantage: OSCP, OSWE, CPENT, Security+…

Benefits & perks

• Competitive annual total income package

• Opportunity to work with diverse domestic and international clients

• Annual salary review in March

• MIC health and personal accident insurance (coverage up to 600 million VND/year)

• Annual health check-up

• Awards recognizing performance and timely outstanding contributions

• 100% sponsorship for in-depth international professional certification based on position, special bonuses for employees achieving international professional certifications

• Continuous investment in the latest and most up-to-date learning materials in the field of Information Security from leading global vendors and institutes

• 100% of employees are provided with an Udemy eLearning account – learn anytime, anywhere

• Free participation in professional knowledge sharing programs and seminars from leading domestic and international speakers

• Working in a Grade A office – Landmark 72 building with a green space complex and a private area for gym and entertainment (billiards, PES, café, reading, Pingpong)

• 30-minute relaxation daily with Happy hours (4:00 PM – 4:30 PM)

• Sports activities: Football, Billiards, Poker, PES clubs, etc

• 12 days of annual leave according to Labor Law and 3 days of company vacation, traditional holiday on 22/12

• Personal birthday celebrations: Gifts and birthday cake from the Company

• Participation in company events: Quarterly team building activities, monthly birthday celebrations, Year End Party, vacations, International Women’s Day (March 8th), Vietnamese Women’s Day (October 20th) (female employees recieve ½ day off), Viettel Group birthday on June 1st, etc