Overview of GPBank

On January 17, 2025, GPBank will transition its operating model to become a wholly-owned limited liability bank under VPBank. This marks a significant turning point, ushering in a new phase of development built on a strong financial foundation, modern technology, and a customer-centric approach. GPBank is currently fostering a professional and transparent work environment – one where each individual can maximize their capabilities and jointly create sustainable value.

Purpose of the Job:

- Overall responsibility for all activities of the IT Security department, including: Strategy, organizational structure, human resources, IT Security risk and compliance, ensuring information security.

- Managing the IT Security budget

- Interacting with internal and external IT units

- Managing and developing the IT Security human resources team

Main Duties:

* Management

An IT Security Manager is responsible for overseeing and maintaining the security of an organization's IT systems and data. Key responsibilities include:

- Developing and Implementing Security Policies: Creating security protocols to protect sensitive information.

- Risk Management: Identifying and mitigating security risks.

- Incident Response: Managing responses to security breaches and incidents.

- Compliance: Ensuring adherence to data protection laws and industry regulations.

- Security Awareness: Educating employees on security best practices and conducting training.

- Network and Systems Security: Protecting networks, servers, and databases from unauthorized access.

- Security Architecture: Designing and maintaining secure IT infrastructure.

- Vendor Management: Ensuring third-party vendors follow proper security measures.

- Continuous Monitoring: Implementing tools to detect and respond to threats in real-time.

- Disaster Recovery: Developing plans to ensure business continuity during crises.

- Team Leadership: Managing security teams and collaborating with other departments.

- Budgeting: Overseeing the security budget and investing in the right tools.

The role combines technical expertise with leadership, strategic planning, and constant monitoring to protect the organization's IT environment from potential threats.

* Leadership

- Demonstrate and achieve the cybersecurity goals to secure the Company 

- Ensure that skills are kept relevant meet the Business Initiatives

- Be able to manage and guide project managers

* Projects

- Build up the cybersecurity capabilities to strengthen the cybersecurity posture of the Company

- Ensure that the Cybersecurity and IT programs meet their targets securely

* Reporting and Administration

- Control for implementation of IT Security strategy and plans of IT Security    

- Regularly report to CIO/Top Management regarding progress and the implementation of project, timely request for decisions

- Collect, analyze and produce reports for IT Security every month.