Offensive – Security Auditor

FPT Corporation has been the No. 1 ICT Corporation in Vietnam for more than 36 years, pioneering in digital transformation by offering advanced technology services and solutions across 30 countries and regions with more than 80,000 global talents.

As a subsidiary of FPT Corporation, FPT Smart Cloud is a world-class AI and Cloud provider with the mission to accelerate digital transformation for business through agility and innovation, aiming to create breakthroughs in operations with first-rate services. We are also a trusted tech firm with more than 3,000 major global customers in the fields of finance, banking, retail…

• Customized to specific need: Providing cloud-based products and solutions customized to each industry.
• All-in-one Platform: Consolidating FPT Smart Cloud technology and diverse business solutions all in one platform
• Local market leadership: Outstanding Cloud and AI technology infrastructure and platform to help local businesses grow their products and services online.
• Deliver the future: Help customers achieve business outcomes faster by integrating world-class processes and technology.
• Be a world-class service provider with the GPU service provided by FPT AI Factory in Vietnam and in Japan.

Top Benefits

• Flexible income according to ability, open agreement.
• Unique advantage of being at the forefront of Vietnam’s digital transformation.
• Be a part of the team building products that cater specifically to the needs of Vietnamese businesses, driving innovation, flexibility, and data security tailored to the local market.
• Opportunity to contribute to pioneering projects, developing cutting-edge solutions that empower industries across the country.
• FPT Premium Care package · Activities and culture with FCI and FPT Corporation
• Study support package for children of FCI union · Sponsor-related courses and certifications

Main Responsibilities

Overall: We are looking for candidates who are passionate about cybersecurity and specialize in security auditing. The ideal candidate should have expertise in assessing and evaluating the security of systems, applications, and cloud environments to ensure compliance with established security standards. A strong understanding of risk assessment, security frameworks, and best practices is essential for effectively identifying vulnerabilities and recommending improvements to enhance organizational security posture.

Responsibilities:

• System Auditing: Ensure that servers, network devices, and infrastructure comply with security policies. Assess access controls (Access Control).
• Application Auditing: Evaluate risks associated with application development and deployment. Analyze security controls such as authentication, authorization, and sensitive data protection.
• Cloud Environment Auditing: Review cloud configurations to ensure the secure setup of cloud services like AWS, Azure, and GCP.
• Regulatory Compliance Methods: Ensure cloud environments comply with regulations such as GDPR, CCPA, or HIPAA.
• Cloud Risk Assessment: Analyze security issues related to resource management, IAM (Identity and Access Management), and data encryption.

Job Requirement

• At least 3 years of experience in cybersecurity, particularly in roles involving cloud services and security.
• Deep understanding of the operation and configuration of major cloud platforms such as AWS, Azure, and GCP.
• Proficiency in standards like NIST, ISO 27001, COBIT, and relevant regulations such as GDPR, PCI DSS, and HIPAA.
• Expertise in using common tools to examine and analyze configurations, system logs, and overall security posture.
• Ability to identify and categorize vulnerabilities based on severity and potential impact.
• Proficiency in creating professional audit reports, clearly outlining discovered vulnerabilities and recommending remediation solutions.
• Preferred Certifications in the relevant areas of security:
  • Certified Information Systems Security Professional (CISSP)
  • GIAC Systems and Network Auditor (GSNA)
  • Certified Information Systems Auditor (CISA)
  • Certified Cloud Security Professional (CCSP)
  • ISO/IEC 27001 Lead Auditor

Working Environment

• Working Location:
  • Site Hanoi: 7th Floor, FPT Tower, no. 10 Pham Van Bach Street, Dich Vong ward, Cau Giay district, Hanoi
  • Site HCMC: 3rd floor, PJICO Tower, no. 186 Dien Bien Phu, Ward 6, District 3, HCMC
• Working hours:
  • 8h30 AM – 12h00 PM
  • 1h00 PM – 5h30 PM

Contact Person

Pham Thi Ha My (Ms.) – Talent Acquisition Leader
Email: Mypth3@fpt.com
Phone: 0962456194
FPT Smart Cloud (FCI) Co., LTD
Address: 7th Floor, FPT Tower, No. 10 Pham Van Bach, Cau Giay Dist, Hanoi
Websites: FPT Cloud | FPT AI