Chief Information Security Officer

Define and lead the enterprise-wide Information Security and Cybersecurity strategy aligned with business objectives and banking partnership requirements.

Oversee IT security operations, including security monitoring, incident response, cyber threat prevention, and business continuity.

Conduct IT risk assessments, security audits, and ensure compliance with banking regulations, legal requirements, and international security standards (e.g. ISO 27001, PCI DSS).

Act as a key liaison with banking partners, auditors, legal, IT, and business teams to ensure security requirements are embedded across all products and services.

Establish and enforce policies, frameworks, and controls for customer data protection, especially in B2C and eCommerce platforms.

Build, lead, and develop the information security team; promote security awareness across the organization.

Provide security advisory and risk assessment support for digital transformation, eCommerce initiatives, and system integration projects.

At least 8 to 10 years of working experience in supporting IT/cyber security operations, risk assessment, audit and compliance.

Preferably having spent some 4 to 6 years in security consulting services and 2 to 3 years in Global MNC.

Must have B2C industry experience.

Experience in managing customer data in an eCommerce environment is a plus.

In-depth knowledge of information security governance frameworks, standards, and banking-related compliance.

Strong leadership, stakeholder management, and communication skills.

Proficient in professional English.

Salary: Negotiable

Bonuses: Public holidays, Tet bonus, and at least 13th-month salary per year.

Insurance: Full Social Insurance (SI) and Health Insurance (HI) in accordance with labor law.

Leave: Annual leave as per Vietnamese labor regulations.

Working environment: Professional and international working environment.