CYBER SECURITY / IT AUDITOR

Bestarion is a subsidiary of Larion, a well-established software outsourcing company in Vietnam with decades of experience delivering high-quality technology solutions. Inheriting Larion’s strong foundation and technical expertise, Bestarion continues to grow as a trusted partner for clients worldwide.

For over 15 years, Bestarion has provided innovative outsourcing services and business solutions to successful clients in more than 15 countries. Our diverse range of services includes Big Data & Data Analytics, Securities Trading Solutions, Surround Core Banking Solutions, E-commerce and Social Network App Development, and Web Application Development. We focus on today’s emerging trends such as Big Data, Cloud Computing, Social Networks, Mobility, and the Internet of Things.

• Location: QTSC Building, 3rd Floor, 1 Quang Trung, Software City, HCMC
• Working Time: Monday – Friday, 8:00 AM – 5:30 PM (Flexible depending on each project)
• About the project: We have a US client and they are seeking a Cybersecurity Analyst/IT auditor with a focus on vendor risk management to join our team. In this role, you will be responsible for assessing the security posture of third-party vendors to protect our organization/customers. You will work across a multi-tiered assessment program, using your analytical and communication skills to identify and document potential risks.

JOB DESCRIPTIONS:

Vendor Risk Assessment: Conduct tiered assessments of vendors, ranging from a basic analysis to more complex evaluations (most of the focus will be on Tier 3 and Tier 2) – see below:

• Analyze vendor reports and publicly available information to identify security red flags and potential vulnerabilities.
• Review vendor-provided documentation, including Privacy Impact Assessments.

Documentation and Reporting:

• Summarize assessment findings and create comprehensive risk summaries in the customer-approved format(s).
• Ensure all documentation is accurate, well-structured, and free of grammatical or spelling errors.
• Maintain effective written communication with internal teams. Vendor communication will be handled by the customer.

Customer will interact with the Vendor(s):

• Distribute and collect required documents, methodologies, and other materials to the customer so that the customer can communicate with vendors for assessment purposes.

Compliance and Security Oversight:

• Adhere strictly to Customer’s security protocols, ensuring no data is extracted or exfiltrated without explicit approval.
• Identify and report on inappropriate security activities within other customer business units.

JOB QUALIFICATIONS

• Proven background in cybersecurity/it auditor, specifically in vendor risk management or third-party risk assessments.
• Strong analytical skills with the ability to review complex information and identify security risks.
• Excellent written communication skills, with a high level of proficiency in English.
• High attention to detail and a commitment to maintaining strict confidentiality.
• Can be able to conduct overlap with our client in US time for 30 minutes/day.

DEFINE YOURSELF AT BESTARION WITH ATTRACTIVE BENEFITS

• Performance appraisal twice a year.
• Attractive benefits (13th salary, distinguished employee of the quarter and year, seniority award…)
• 12 days off
• Lunch and parking allowance
• Healthcare and accident insurance
• Annual health check
• Working devices provided: Laptop and screen (If needed)
• Team Building activities in every summer, company trip, big annual year-end party every year, etc
• Fitness & sports activities: football, tennis, table tennis, badminton…
• Commitment to community development: charity every quarter, blood donation, public seminars, career orientation talks…

Support for personal loans such as home loans, vehicle loans, tuition fees…

Reach us: [email protected]

Address: QTSC Building, 1 Quang Trung, Software City, Trung My Tay Ward, HCM City