IT Security Engineer

Full Time Phnom Penh Posted 1 year ago


Main Responsibilities:

  • Design and implement security based on security standard and frameworks;
  • Document the technical security implementation on the systems;
  • Conduct periodic network scans to find any vulnerability;
  • Vulnerability assessment/security risk assessment.
  • Implement protections, installation and use of firewalls, data encryption and other security products and procedures;
  • Internal threats prevention and data loss prevention;
  • Coordinate the development, delivery of an education and training program on information security and privacy matters for employees;
  • Security breach investigation or incidents investigation and analyze security breaches to determine their root cause;
  • Plan, implement and upgrade security measures and controls;
  • Protect digital files and information systems against unauthorized access, modification or destruction;
  • Manage network, intrusion detection and prevention systems;
  • Analyze security breaches to determine their root cause;
  • Recommend and install appropriate tools and countermeasures;
  • Define, implement and maintain corporate security policies.
  • Conducts regular and careful security assessment on existing and new system process and tools.
  • Data leakage preventive and monitor
  • Harden all systems including some applications
  • Staff security awareness – sends out email and training
  • Coordinate between internal and external firm Audit, BNC and other
  • Coordinate between internal and external Penetration Tester firm
  • Coordinate between internal and external PCI-DSS or ISO standard firms to completed project

Job Requirements:

  • Graduated bachelor degree of Information Technology, preferably in the field of Computer Science;
  • Completed or certified any security course like CND, CEH, and other Security related course
  • Knowledge of implementing Business continuity, and Disaster Recovery;
  • Knowledge of Security product, Firewall and any security solutions;
  • Experience in managing and configure OS: Windows Server, Linux (red hat/CentOS), and VMware;
  • Basic knowledge or experience in networking and understanding of OSI/TCP-IP model;
  • Basic knowledge of programming languages or scripting;
  • Basic knowledge or experience in penetration testing or vulnerability scanning;
  • Basic knowledge or experience in information security assessment;
  • Knowledge of SIEM solutions or other security log monitoring;
  • Security hardening configuration and implementation;
  • Knowledge or experienced in any security standard or framework such as PCI-DSS, ISO2700 series, NIST, OCTAVE is a plus.
  • The related industry, the understanding of company values & culture
  • Good communication skills, both verbal and written English Excellence organization and time management skills
  • Having high level of confidentiality, integrity and business ethic
  • Ability to work under pressure and tight deadlines
  • Be detail oriented
  • Be able to carry out multiple assignments
  • Have effective coaching and mentoring guideline
  • Security technology that business is running