DevArchitect
← Back to jobs
CÔNG TY CỔ PHẦN NGHIÊN CỨU PHÁT TRIỂN VÀ ỨNG DỤNG NGƯỜI MÁY ĐA NĂNG VINMOTION

Application Cloud Security Engineer

CÔNG TY CỔ PHẦN NGHIÊN CỨU PHÁT TRIỂN VÀ ỨNG DỤNG NGƯỜI MÁY ĐA NĂNG VINMOTION

ITviec
Vietnam17 days ago
Application SecurityAPIOWASPCloud SecurityMicrosoft Azure SQL DatabaseAWS
Apply Now

Job Description

Top 3 Reasons To Join Us Competitive Compensation World-Class Team in Humanoid Robotics Cutting-Edge Humanoid Robot Products The Job

Responsibilities: 

DevSecOps & Pipeline Security: 

  • Build and maintain security automation in CI/CD pipelines. 
  • Run code scanning, dependency checks, and container image scanning. 
  • Manage secret storage, rotation, and detection. 

Application & API Security: 

  • Review code and help teams follow secure coding practices. 
  • Protect APIs with authentication, rate limits, and validation. 
  • Support developers in fixing identified vulnerabilities. 

Cloud Security: 

  • Manage IAM roles, access control, and least-privilege policies. 
  • Configure Cloudflare WAF and cloud firewall rules. 
  • Monitor cloud configurations and enforce security best practices. 

Monitoring & Incident Response: 

  • Track vulnerabilities, alerts, and suspicious activities. 
  • Support incident response and root-cause analysis. 
  • Maintain dashboards and automated alerts. 

Compliance & Governance: 

  • Support ISO27001, SOC2, or other compliance requirements. 
  • Keep documentation, audit logs, and security reports up to date. 
  • Work with the Security Architect on long-term improvements. 
Your Skills and Experience

Must have:

  • Bachelor’s degree in Computer Science, Cybersecurity, Information Security, or related technical field. 
  • 3+ years in Application Security, Cloud Security, or DevSecOps. 
  • Experience with AWS/Azure/GCP security tools. 
  • Hands-on with CI/CD pipelines and security scanners (SAST/DAST/SCA). 
  • Solid understanding of IAM, WAF, encryption, and secret management. 
  • Knowledge of OWASP Top 10 and API Security Top 10. 
  • Experience working with logging, SIEM, and monitoring tools. 

Nice to Have: 

  • Security experience (OPA, Falco, image signing). 
  • Experience with Cloudflare security tools. 
  • Penetration testing or red-team experience. 
  • Understanding of ISO 27001, SOC2, UL 3300, or GDPR. 
  • Security certifications (e.g., CEH, GCSA, CISSP, AZ-500). 
  • Scripting skills (Python, Bash, Go). 
Why You'll Love Working Here
  • Competitive salary and benefits package.
  • Opportunities for professional development and growth.
  • Flexible work arrangements.
  • Collaborative and supportive work environment.

Benefits

  • Competitive salary and benefits package.
  • Opportunities for professional development and growth.
  • Flexible work arrangements.
  • Collaborative and supportive work environment.