Data Security

Overview

Responsible for building, implementing, and operating the enterprise-wide data security strategy to ensure:

• Data is protected safely and used for the correct purposes.
• Compliance with legal regulations and security standards.
• Support for the business in digital transformation, cloud, and AI adoption in a safe and sustainable manner.

Key Responsibilities

• Develop and maintain the Group Data Security Framework across the organization.
• Establish data classification standards and manage data lifecycle controls.
• Implement and operate Data Loss Prevention (DLP) solutions to prevent data leakage.
• Ensure personal data protection and privacy compliance in accordance with local and international regulations.
• Govern and control data protection at the platform level, including database security, application-layer security, and cloud environments (encryption, authentication, access control).
• Review, assess, consolidate, and report on data security and data protection activities.
• Provide advisory support on data protection and privacy matters.
• Participate in security incident response, including analysis, containment, and remediation of data breach incidents.
• Identify, assess, and maintain a group-wide data risk register.
• Conduct periodic data security compliance audits and regulatory assessments.

Requirements

• Experience: Over 5 years of experience in cybersecurity, with a focus on Data Security, Data Protection, Privacy, IAM (Identity and Access Management), Cloud Security, SOC Operations, or GRC (Governance, Risk, and Compliance).
• Education: Bachelor’s or Master’s degree in Computer Science, Engineering, Data Science, or a related field.
• Technical Expertise: Strong hands-on knowledge of data protection technologies, with experience delivering large-scale implementations such as DLP, CASB, and Data Classification & Labeling solutions.
• Architecture Skills: Solid understanding of data architecture and data classification models.
• Standards & Regulations: Familiarity with data protection and privacy frameworks and regulations, including GDPR, Vietnam Decree 13, ISO 27701, NIST, and Privacy Impact Assessments (PIA/DPIA).
• Certifications: Preferred candidates hold CISSP, CISM, CDPSE, ISO 27001 Lead Auditor / Internal Auditor, or equivalent certifications.

Benefits

• Attractive and competitive compensation packages with performance-based bonuses aligned with market standards.
• Opportunities to participate in large-scale, strategic technology projects across the Group.
• Professional working environment with leading scientists, experts, and engineers in Vietnam and around the world.
• Full social insurance coverage in compliance with Vietnamese labor laws (Social
• Insurance, Health Insurance, Unemployment Insurance), plus personal health insurance provided by the company based on job level, and annual health checkups at reputable hospitals and medical centers nationwide.
• 12 annual leave days, plus public holidays and Tet holidays as regulated by law. Monthly lunch allowance.
• Engagement in company-wide internal activities, teambuilding programs, and annual corporate events.

HOW TO APPLY: Please send your CV to the consultant in charge:

Ms. Dieu Nguyen

E-mail: dieu.nguyen@ev-search.com

All applications will be considered without regard to race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, parental status, military service, or any other non-merit factor.