Responsibilities
1. Professional Management and Strategic Direction
- Develop and implement a comprehensive cybersecurity strategy aligned with the overall development orientation of the group.
- Collaborate with the General Director in planning internal security services, standardizing professional processes, and designing operational security models across the group’s ecosystem.
2. Professional Oversight
- Operate and implement cybersecurity activities for member companies within the group.
- Assess and ensure the security of software systems, source code, cloud infrastructure, and IT infrastructure, while establishing proactive and reactive defense measures.
- Manage the Security Operations Center (SOC): conduct threat hunting, early warning detection, incident response, investigation, and recovery.
- Ensure compliance with information security regulations and standards.
- Evaluate and protect OT (Operational Technology) systems in production units, infrastructure, and related environments.
3. Team Leadership and Operations
- Lead and manage specialized departments.
- Establish an effective technical organizational structure; recruit, train, and develop a strong team of security professionals.
4. Internal Relations and Advisory
- Act as the primary contact providing security services to member companies.
- Directly advise leaders of business units within the group on security solutions and strategies.
Requirements
Mandatory:
- Proficiency in English across all four skills (business-level fluency).
- Strong adaptability and flexibility in dynamic environments.
- In-depth knowledge of global cybersecurity trends and their real-world applications, with strong research capability.
- Minimum of 10 years of experience in information security, including at least 5 years in senior management positions in related fields.
- Extensive knowledge of the cybersecurity ecosystem: AppSec, Infrastructure, Cloud, OT, Threat Intelligence, Compliance, etc.
- Hands-on experience with large-scale systems such as SIEM, SOAR, WAF, DLP, EDR, etc.
- Proven track record in building and implementing security standards within large organizations (ISO 27001, NIST, PCI-DSS, etc.).
- Strategic thinking with the ability to plan and execute effectively.
- Strong leadership skills, capable of inspiring teams and fostering an organizational culture of information security.
Preferred:
- International certifications such as CISSP, CISM, OSCP, GSEC, CCSP, ISO 27001 Lead Implementer/Auditor, etc.
- Experience working in large, multi-industry corporations (services, manufacturing, infrastructure, etc.).
- Experience in building internal SOC or MSSP service models.
HOW TO APPLY: Please send your CV to the consultant in charge:
Ms. My Do
Email: my.do@ev-search.com
All applications will be considered without regard to race, color, religion, sex (inclusing pregnancy and fender identity), national origion, political affiliation, sexual orientation, mariatal status, disability, genetic information, age, membership in an employee organization, parental status, military service or other nonmerit factor
