Penetration Tester (Vietnamese candidates only)

Gene Solutions is a leading company in Vietnam specializing in the research, development and application of the most advanced genetic tests, providing genetic testing services for screening, diagnosis and treatment orientation.Over the years, Gene Solutions has continuously developed and invested in building a strong and excellent R&D team, focusing on research and application of useful technologies that have been certified in the world to bring latest genetic testing and services, with the best quality at the most affordable cost, increasing Vietnamese people's access to essential genetic tests for prevention, examination and treatment, improving the quality of medical examination and treatment, contributing to the quality of medical services and health for the community. RESPONSIBILITIESThe position is based in Ho Chi Minh City. The role will report to the IT Governance & Security Manager, and handle the following responsibilities:1. Own and conduct end-to-end penetration testing for the Company's systems:  Perform penetration testing of web/mobile applications, networks, and operating systems.  Conduct attack exploitation using manual penetration testing (MPT) and automatic tools according to the security test plan and checklist.  Create a security report and provide applicable recommendations based on the test performed.  Provide summary reports that will help the board of management team understand the company's security posture.  2. Join the Incident Response Team: Collaborate with other IT teams and user departments to handle information security incidents, analyze application logs, security logs, trace root causes, detect actors, propose solutions to prevent attacks, and develop best practices to enhance security systems. 3. Participate in the projects:  External partners for independent security assessment: propose the scope of services; understand and verify the findings in penetration testing projects; etc.  Security solutions implementation or enhancement projects: analyze and develop security protection requirements; evaluate the proposal; validate the deliveries; etc.  4. Self-development:  Research and self-improve on new attack exploitation methods and appropriate security standards.  Perform other tasks as required by the manager.  5. Other tasks assigned by superiors.