Filter Jobs

Job type:

Full-time

• Gather, analyze, and document Business Requirements related to Collections systems and regulatory impacts..
• Facilitate requirement gathering sessions with business users, IT teams, and relevant stakeholders to support system development projects.
• Perform Gap Analysis by comparing current processes (As-Is) and future processes (To-Be) to identify system enhancement opportunities..
• Coordinate with internal teams, IT, and external vendors to identify suitable solutions and ensure timely project delivery.
• Review and validate user requirements and provide recommendations to improve feasibility and process efficiency.
• Prepare batch processing plans, test scenarios, and UAT (User Acceptance Testing) scripts to ensure systems meet business requirements..
• Support troubleshooting and resolution of BAU (Business-As-Usual) system issues in collaboration with IT and users..
• Monitor and control project implementation to ensure delivery timelines and business expectations are met.
• Investigate reported system issues and coordinate with relevant teams to implement solutions.
• Support additional assignments as required.
• Bachelor s degree in Computer Science, Information Technology, Business Information Systems, or related fields.
• Minimum 2-3 years of experience as an IT Business Analyst, System Analyst, or related role..
• Experience in Business Requirement gathering, system enhancement projects, and UAT testing..
• Experience in Project Management or involvement in system implementation projects..
• Experience in Process Improvement or Lean Process initiatives is preferred..
• At least 2 years of experience working on projects within financial services, banking, or auto leasing industries is an advantage.

Skills:

Project Management

Job type:

Full-time

• จัดทำงบประมาณในการทำโครงการ พร้อมควบคุมงบประมาณในโครงการที่รับผิดชอบ.
• ศึกษาทำความเข้าใจกระบวนการทำงานของธุรกิจ และสามารถวิเคราะห์ประเด็นปัญหา/ความต้องการทางธุรกิจได้ (Business Requirement) และออกแบบระบบให้มีประสิทธิภาพ รองรับกระบวนการทางธุรกิจใหม่ที่เกิดขึ้น.
• ศึกษาทำความเข้าใจในธุรกิจค้าปลีก เพื่อวิเคราะห์และพัฒนาระบบในการบริหารร้านค้าปลีก เพื่อสนับสนุนการการใช้งานในร้านค้าพันธมิตร.
• ศึกษารายละเอียดโครงการเพื่อจัดทำแผนการดำเนินงาน, ข้อมูลทางเลือกในการลงทุน และนำเสนอต่อผู้บริหารเพื่ออนุมัติ ตามหลักของการบริหารโครงการ Project Management.
• ติดตามการดำเนินงานและอัพเดตแผนงาน เพื่อรายงานความคืบหน้าโครงการต่อผู้บริหารได้.
• ศึกษาความต้องการทางธุรกิจ พร้อมนำเสนอกระบวนการทำงานใหม่ที่มีประสิทธิภาพ เพื่อสรุปเป็นเอกสารสำหรับพัฒนาระบบตามมาตรฐาน.
• สามารถพัฒนาโปรแกรมและบริหารจัดการสร้างฐานข้อมูลได้อย่างมีประสิทธิภาพ.
• ดำเนินการทดสอบระบบให้ได้ตามมาตรฐาน Non-Functional และ Functional และดำเนินการทดสอบให้ได้ตาม Requirement Spec พร้อมทั้งจัดทำเอกสารการทดสอบ Test script ร่วมกับทีมพัฒนาระบบ และจัดทำรายงานผลการทดสอบเพื่อนำเสนอต่อผู้บริหาร.
• จัดทำเอกสารคู่มือการใช้งานระบบที่พัฒนาและระบบที่เกี่ยวข้อง เพื่อใช้ในการอบรมให้กับผู้ใช้งาน อีกทั้งยังต้องเก็บรวบรวมประเด็นที่ต้องพัฒนาเพิ่มเติม เพื่อรวบรวมในการทำแผนพัฒนาต่อยอดระบบใน Phase ต่อไป.
• ดำเนินการฝึกอบรมการใช้งานให้กับผู้ใช้งานระดับต่างๆ ให้เป็นไปตามวัตถุประสงค์ของการพัฒนาระบบ.
• ดำเนินการวางแผนการดูแลระบบให้สามารถใช้งานได้อย่างมีประสิทธิภาพ วางแผนการปรับปรุงและพัฒนาระบบให้เหมาะสมกับการเปลี่ยนแปลงของเทคโนโลยี และเป็นไปตามนโยบายบริษัท.
• ปริญญาตรีด้านวิทยาการคอมพิวเตอร์, คอมพิวเตอร์ธุรกิจ, เทคโนโลยีสารสนเทศ หรือ สาขาที่เกี่ยวข้อง.
• มีประสบการณ์ทำงานการพัฒนาระบบงานและรายงานอย่างน้อย 5 ปีขึ้นไป.
• มีทักษะด้านการสื่อสารที่ดี มีสามารถควบคุมและบริหารทีมงาน.
• มีความรู้ความสามารถในการวิเคราะห์ระบบงาน หรือ มีความรู้ความสามารถในการพัฒนาระบบงานเป็นอย่างดี.
• มีความสามารถในการจัดการ Database ได้อย่างดี.
• ติดต่อสอบถาม.
• คุณสวรินทร์.
• สำนักทรัพยากรบุคคล.
• บริษัท มีชัย มีโชค จำกัด.
• อาคารแสงโสม ถนนวิภาวดีรังสิต แขวงจอมพล เขตจตุจักร กรุงเทพมหานคร 10900.

Skills:

Problem Solving, English

Job type:

Full-time

• Be a liaison between technology team and business units for business strategy implementation and business improvement with the right use of technology.
• Gather, analyze, plan and prioritize requirements of the project in close collaboration with the business stakeholder.
• Create and maintain business requirements document including business workflow and data flow diagram which can be understandable by business and technical team.
• Provide the end to end solution analysis by identifying business need, business constraints, business impacts and new opportunities which may have in the future.
• Work with UX/UI to design user flows and make recommendations to improve and support business systems to deliver greater effectiveness and efficiency.
• Present requirements and solution to stakeholders for approval process or program design and development.
• Bachelor degree or Master degree in MBA, Computer Science, MIS or related field.
• At least 1-2 years of experience in role of Business or System Analyst.
• Have experience in Banking or Financial industry is a plus.
• Strong problem solving and analytical skills combined with an ability to communicate with more technical IT teams or related parties.
• Excellent communication and presentation skills.
• Good in English.

Experience:

5 years required

Job type:

Full-time

• Liaise with business application owners and system owners to gather requirements and support the implementation of Role-Based Access Control (RBAC) projects.
• Analyze identity lifecycle processes, defining roles and access rights aligned with business and security requirements.
• Apply documented security frameworks, methods, and best practices to support project delivery and operational efficiency.
• Contribute to ISO 27001 implementation and follow up on cybersecurity non-compliance issues.
• Prepare project status reports and security documentation to support management decision-making.
• Support and lead security awareness initiatives for internal stakeholders.
• Coordinate with business users, internal IT teams, and regional stakeholders to enhance cybersecurity and compliance.
• ABOUT YOU
• Bachelor's or Master's degree in IT, Cybersecurity, MIS, or a related field.
• 5+ years of experience in Cybersecurity, Identity and Access Management, or related domains.
• Strong knowledge of IAM concepts, including RBAC and identity lifecycle management.
• Experience with ISO 27001 standards and cybersecurity compliance.
• Exposure to security awareness or training programs.
• Structured and analytical mindset with strong project management skills.
• Good command of Microsoft tools (Office, Project, Visio).
• Strong communication and interpersonal skills; ability to work under time constraints.
• Professional proficiency in English.
• WHY AMARIS?
• Global Diversity: Be part of an international team of 110+ nationalities, celebrating diverse perspectives and collaboration.
• Trust and Growth: With 70% of our leaders starting at entry-level, we're committed to nurturing talent and empowering you to reach new heights.
• Continuous Learning: Unlock your full potential with our internal Academy and over 250 training modules designed for your professional growth.
• Vibrant Culture: Enjoy a workplace where energy, fun, and camaraderie come together through afterworks, networking events, and more.
• Meaningful Impact: Join us in making a difference through our CSR initiatives, including the WeCare Together program, and be part of something bigger.
• Equal Opportunity
• At our company, we are committed to creating an inclusive workplace that promotes and values diversity. All qualified applicants will be considered for employment without regard to gender, sexual orientation, race, ethnicity, beliefs, age, marital status, disability, or any other characteristic protected by applicable laws.
• Who are we?
• Amaris Consulting is an independent technology consulting firm providing guidance and solutions to businesses. With more than 1000 clients across the globe, we have been rolling out solutions in major projects for over a decade - this is made possible by an international team of 7,600 people spread across 5 continents and more than 60 countries. Our solutions focus on four different Business Lines: Information System & Digital, Telecom, Life Sciences and Engineering. We're focused on building and nurturing a top talent community where all our team members can achieve their full potential. Amaris is your steppingstone to cross rivers of change, meet challenges and achieve all your projects with success.
• Brief Call: Our process typically begins with a brief virtual/phone conversation to get to know you! The objective? Learn about you, understand your motivations, and make sure we have the right job for you!
• Interviews (the average number of interviews is 3 - the number may vary depending on the level of seniority required for the position). During the interviews, you will meet people from our team: your line manager of course, but also other people related to your future role. We will talk in depth about you, your experience, and skills, but also about the position and what will be expected of you. Of course, you will also get to know Amaris: our culture, our roots, our teams, and your career opportunities!
• Case study: Depending on the position, we may ask you to take a test. This could be a role play, a technical assessment, a problem-solving scenario, etc.
• As you know, every person is different and so is every role in a company. That is why we have to adapt accordingly, and the process may differ slightly at times. However, please know that we always put ourselves in the candidate's shoes to ensure they have the best possible experience.
• We look forward to meeting you!

Skills:

Compliance

Job type:

Full-time

• Validates, classifies, priorities and opens ticket.
• Acting as focal contact point for report security incidents.
• Document and escalate incidents (including event's history, status, and potential impact for further action) that may cause ongoing and immediate impact to the environment.
• Provide daily summary reports of security incidents.
• Responds to security alerts generate within the SLA time window.
• Follow-up and tracking security incidents base on team process.
• Examine network topologies to understand data flows through the network.
• Validate security incidents alerts against network traffic using packet analysis tools.
• Isolate or remove malware.
• Identify applications and operating systems of a network device based on network traffic.
• Assist in the construction of signatures which can be implemented on cyber defense network tools in response to new or observed threats within the network environment or enclave.
• Notify cybersecurity service provider team members of suspected cyber incidents, status, and potential impact for further action in accordance with the organization's cyber incident response plan.
• Work with stakeholders to resolve computer security incidents and vulnerability compliance.
• Who are we looking for?.
• Knowledge of computer networking concepts and protocols, and network security methodologies.
• Analytical and problem-solving skills are required.
• Knowledge of network traffic analysis methods.
• Knowledge of cyber defense and information security policies, procedures, and regulations.
• Experience in IT Security, Network Security or Security Compliance.
• Knowledge of common security tools such as anti-virus, firewall and intrusion detection system.
• Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services. Able to work in shift.
• Location: Head Office: Chatuchak, SJ Infinite One Business Complex

Skills:

Software Development, Analytical Thinking, Excel

Job type:

Full-time

• Extensive understanding of the software development lifecycle, backed by relevant technical certifications.
• Adept in Agile practises, with experience leading cross-functional teams to achieve exceptional results.
• Competence in applying technical frameworks and methodologies, complemented by a foundational grasp of user experience design.
• Familiarity with modern platform engineering technologies and tools.
• Exceptional communication capabilities, paired with strong analytical thinking and a keen eye for detail.
• A self-starter attitude with the ability to excel independently and in collaboration with a team.
• The experience we're looking for.
• Extensive understanding of the software development lifecycle, backed by relevant technical certifications.
• Adept in Agile practises, with experience leading cross-functional teams to achieve exceptional results.
• Competence in applying technical frameworks and methodologies, complemented by a foundational grasp of user experience design.
• Familiarity with modern platform engineering technologies and tools.
• Exceptional communication capabilities, paired with strong analytical thinking and a keen eye for detail.
• A self-starter attitude with the ability to excel independently and in collaboration with a team.
• The skills for success.
• Product Development, system development, Project Management, Programme Management, Design Thinking, Process Automation, IT Service Management, Innovation Processes, Innovation, User Experience Design, Change Analyst, Change Management, Digital Transformation, Value Analysis, Change Management, Adoption, Technology Adoption Lifecycle, Stakeholder Relationship Management, Vendor Management, Outstanding Communication, stakeholder engagement, Digital Strategy, Product Solution Architecture, Cyber Security Strategy, Cyber Security, Data Privacy, Portfolio Management, Data Governance, Product Compliance, Media Analytics, advertising, Consumer Engagement.
• What we offer.
• With inclusion at the heart of everything we do, working alongside our four global Employee Resource Groups, we support our people at every step of their career journey, helping them to succeed in their own individual way. We invest in the wellbeing of our people through parental benefits, an Employee Assistance Program to promote mental health, and life insurance for all employees globally. We have a range of other benefits in line with the local market. Through our global share plans we offer the opportunity to save and share in Reckitt's potential future successes. For eligible roles, we also offer short-term incentives to recognise, appreciate and reward your work for delivering outstanding results. You will be rewarded in line with Reckitt's pay for performance philosophy.
• Equality.
• We recognise that in real life, great people don't always 'tick all the boxes'. That's why we hire for potential as well as experience. Even if you don't meet every point on the job description, if this role and our company feels like a good fit for you, we still want to hear from you. All qualified applicants will receive consideration for employment without regard to age, disability or medical condition; colour, ethnicity, race, citizenship, and national origin; religion, faith; pregnancy, family status and caring responsibilities; sexual orientation; sex, gender identity, gender expression, and transgender identity; protected veteran status; size or any other basis protected by appropriate law.

Skills:

Teamwork, Compliance, Problem Solving, English

Job type:

Full-time

• IT Solutions & Services.
• Work with Passion, Professional and Teamwork.
• Work in Shift.
• We are looking for a highly proficient Cyber Security Consultant who has the professional knowledge and skill to drive and enhance our security solutions in any field at MFEC Cyber Security Operation Center (CSOC) for our large enterprise customers.
• What we want?.
• To find the most efficient way to create and to manage every cyber security solution for multiple clients.
• To propose improvement to infrastructure and security systems and may present them to customer s upper management.
• Plan and carry out a customer s information security strategy to be the healthy security architectures for any IT project.
• To implement security system and ensure compliance with corporate cyber security policies and procedures.
• To provide professional supervision and guidance to security teams.
• Works with other business units, partners, and customers to maintain secure methods of security management.
• Work in Shift.
• Who are we looking for?.
• 1-3 Years or experience in Cyber Security field.
• Great awareness of Cyber Security trends and new technology update.
• Strong knowledge and experience with various IT security such as Incident Handler, Forensic Examiner, Forensic Analyst is a plus.
• Excellent knowledge in Security Product (Firewall/VPN, IPS/IDS), Security Platform, Endpoint Solution, and Network Security solution.
• Excellent problem solving and analytical skill, planning and organizing skill and customer oriented.
• Proficiency in English both written and spoken.
• Security Profession Certification is a plus.
• Knowledge in AI and the ability to use AI-related tools and technologies.
• MFEC OKR:- As MFEC People, you will be a part of our talent team. Besides your main responsibilities, you do have special projects as part of OKR. However, the percentages will be different according to the positions and teams.
• Location: Branch: Chatuchak, Lao Peng Nguan Building

Job type:

Full-time

• Manage end-to-end project delivery for automotive lending and leasing system initiatives
• Coordinate with stakeholders, Product Owner, and development team
• Track project timeline, risks, and deliverables
• Ensure project milestones are achieved within scope and timeline
• Conduct regular project status updates and reporting
• Gather and analyze business requirements from stakeholders
• Understand loan disbursement and lending workflow processes
• Prepare business requirements documents and functional specifications
• Create process flow diagrams and documentation
• Support user acceptance testing and ensure requirements are delivered correctly
• ABOUT YOU
• Experience in IT project management and/or business analysis (4-6 years)
• Experience in leasing, auto finance, or lending systems
• Proficiency with project tracking tools (e.g., JIRA)
• Experience with flowchart and process diagram tools
• Experience with project documentation
• Understanding of loan disbursement processes
• Experience working in Agile or Scrum environments
• Ability to coordinate with both business and technical teams
• English fluent
• WHY AMARIS?
• Global Diversity: Be part of an international team of 110+ nationalities, celebrating diverse perspectives and collaboration.
• Trust and Growth: With 70% of our leaders starting at entry-level, we're committed to nurturing talent and empowering you to reach new heights.
• Continuous Learning: Unlock your full potential with our internal Academy and over 250 training modules designed for your professional growth.
• Vibrant Culture: Enjoy a workplace where energy, fun, and camaraderie come together through afterworks, networking events, and more.
• Meaningful Impact: Join us in making a difference through our CSR initiatives, including the WeCare Together program, and be part of something bigger.
• Equal Opportunity
• Amaris Consulting is proud to be an equal opportunity workplace. We are committed to promoting diversity within the workforce and creating an inclusive working environment. For this purpose, we welcome applications from all qualified candidates regardless of gender, sexual orientation, race, ethnicity, beliefs, age, marital status, disability, or other characteristics.
• Who are we?
• Amaris Consulting is an independent technology consulting firm providing guidance and solutions to businesses. With more than 1000 clients across the globe, we have been rolling out solutions in major projects for over a decade - this is made possible by an international team of 7,600 people spread across 5 continents and more than 60 countries. Our solutions focus on four different Business Lines: Information System & Digital, Telecom, Life Sciences and Engineering. We're focused on building and nurturing a top talent community where all our team members can achieve their full potential. Amaris is your steppingstone to cross rivers of change, meet challenges and achieve all your projects with success.
• Brief Call: Our process typically begins with a brief virtual/phone conversation to get to know you! The objective? Learn about you, understand your motivations, and make sure we have the right job for you!
• Interviews (the average number of interviews is 3 - the number may vary depending on the level of seniority required for the position). During the interviews, you will meet people from our team: your line manager of course, but also other people related to your future role. We will talk in depth about you, your experience, and skills, but also about the position and what will be expected of you. Of course, you will also get to know Amaris: our culture, our roots, our teams, and your career opportunities!
• Case study: Depending on the position, we may ask you to take a test. This could be a role play, a technical assessment, a problem-solving scenario, etc.
• As you know, every person is different and so is every role in a company. That is why we have to adapt accordingly, and the process may differ slightly at times. However, please know that we always put ourselves in the candidate's shoes to ensure they have the best possible experience.
• We look forward to meeting you!

Experience:

1 year required

Skills:

Assurance, Accounting, Quality Assurance, English

Job type:

Full-time

• Perform IT Audit and Advisory services for various industries/sectors (e.g., Financial Services, Manufacturing, Automotive, Telecommunication, Life Science & Hospitality, Energy, Consumer Product, etc.).
• Participate in significant meetings with client's management to communicate detailed audit findings and recommendations, as assigned.
• Perform any other tasks or assignments.
• Your role as a leader:At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We connect our purpose and shared values to identify issues as well as to make an impact that matters to our clients, people and the communities. Additionally, Analyst, Consultant, Senior Consultant across our Firm are expected to:Actively seek out developmental opportunities for growth, act as strong brand ambassadors for the firm as well as share their knowledge and experience with others.
• Respect the needs of their colleagues and build up cooperative relationships.
• Understand the goals of our internal and external stakeholder to set personal priorities as well as align their teams work to achieve the objectives.
• Constantly challenge themselves, collaborate with others to deliver on tasks and take accountability for the results.
• Build productive relationships and communicate effectively in order to positively influence teams and other stakeholders.
• Offer insights based on a solid understanding of what makes Deloitte successful.
• Project integrity and confidence while motivating others through team collaboration as well as recognising individual strengths, differences, and contributions.
• Understand disruptive trends and promote potential opportunities for improvement.
• RequirementsEducation background in Accounting, Finance, and/or other IT-related fields (eg., AIS/MIS, Computer Engineering, Computer Science, etc).
• At least 1-3 years experience in IT Audit / IT Security / IT Quality Assurance, or Financial Audit with some IT knowledge (e.g., access control, change management).
• Knowledge in Audit concept / technique, and willing to learn more in IT Audit and Advisory services.
• Can do" attitude and able to work either individually or with team under pressure (e.g., quality and timeliness of audit reports).
• Experiences in using CAAT or Data Analytic & Visualization tools (e.g., R, Python, Tableau, PowerBI, etc) would be advantage.
• Verbal and written communication skills in both Thai and English.
• Due to volume of applications, we regret that only shortlisted candidates will be notified.
• Please note that Deloitte will never reach out to you directly via messaging platforms to offer you employment opportunities or request for money or your personal information. Kindly apply for roles that you are interested in via this official Deloitte website. Requisition ID: 36464In Thailand, the services are provided by Deloitte Touche Tohmatsu Jaiyos Co., Ltd. and other related entities in Thailand ("Deloitte in Thailand"), which are affiliates of Deloitte Southeast Asia Ltd. Deloitte Southeast Asia Ltd is a member firm of Deloitte Touche Tohmatsu Limited. Deloitte in Thailand, which is within the Deloitte Network, is the entity that is providing this Website.

Experience:

5 years required

Skills:

Problem Solving, English

Job type:

Full-time

• Design, implement and maintain the IT Security of the organization which involves developing and executing security strategies, standards and procedures to protect IT assets from cyber threats and vulnerabilities.
• Develops solution conceptual designs and solution blueprints for IT projects.
• Design security architecture elements to mitigate emerging threats.
• Reviewing security measures and recommending to implementing enhancements.
• Review and advise security solution architect for the proposed system such as: Network Segmentation, Application protection, Defense-in-depth, Remote Access, Encryption Technologies.
• Conducting security advisory consultancy and working with RED and BLUE team for security testing along the pipeline of the system delivery.
• Bachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 5 years of experience of IT Security Advisory, Penetration tester or Enterprise Architect or related role.
• Comprehensive understanding of the IT Security Concept, Security Architect, Risk assessment.
• Ability to analyst finding form Offensive and Defensive Security team.
• Ability to analyze end-to-end security processes and provide advice in order to reduce risk to acceptable levels.
• Strong analytical and problem solving.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, and etc.
• Professional Certificated related to work e.g. (CISSP, CSSLP, CDPSE, OSCP, TOGAF) is desirable.
• Location: True Digital Park, Punnawithi.

Experience:

5 years required

Skills:

ISO 27001, Legal, Finance

Job type:

Full-time

• Design and implement a cybersecurity strategy that aligns with the organization's overall business objectives.
• Conduct regular security risk assessments, vulnerability assessments, and penetration testing to evaluate the organization s cyber defenses; subsequently, develop and implement security risk mitigation strategies and programs.
• Lead and coordinate response efforts in the event of security incidents, overseeing investigation, mitigation, and post-incident analysis.
• Compliance & Regulatory ManagementEnsure adherence to relevant laws, regulations, and standards (e.g., PDPA).
• Implement and lead initiatives for security and compliance audit certifications, including ISO 27001, NIST, the Cyber Resilience Assessment Framework (C-RAF), and other applicable standards and best practices.
• Recommend, implement, and manage continuous monitoring of IT security systems and tools.
• Collaborate with legal and data protection teams to establish policies and safeguards for sensitive and personal data.
• IT GovernanceEstablish and maintain an IT governance framework, policies, and processes that align with the organization s business goals while ensuring compliance with legal, regulatory, corporate, and industry requirements.
• Work in partnership with management, legal, finance, and external auditors to promote transparency and alignment in governance practices.
• Generate and present reports on IT governance performance, compliance status, and the risk landscape to stakeholders.
• Data GovernanceDevelop and implement data governance policies that ensure data quality, security, and compliance.
• Manage the data lifecycle, align data strategies with business objectives, and collaborate with cross-functional teams to enhance data integrity.
• Oversee data stewardship, regulatory compliance, and provide best practices for data management to support effective decision-making.
• Team Leadership and DevelopmentLead and mentor a small team of IT governance, compliance, and security professionals.
• Foster a culture of continuous improvement and knowledge sharing within the team and across business units.
• Requirements:Bachelor s or Master s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• A minimum of 5 years of experience in IT governance, cybersecurity, and compliance, with at least 2 years in a managerial role.
• Strong understanding of IT governance frameworks (e.g., ITIL, COBIT), cybersecurity standards (e.g., ISO 27001, NIST), and regulatory requirements (e.g., PDPA).
• Possession of basic IT governance and cybersecurity certifications (e.g., CISSP, CISM) is advantageous.
• Proficient in common technical team/project management tools (e.g., JIRA, Asana, Github). Collaborative team player with strong interpersonal skills, capable of working effectively with both internal and external teams.
• Working-level fluency in English and Thai. Proficient in English equivalent to IELTS 5.5, CEFR B2, or TOEFL 72; excellent spoken and written communication to effectively work with a global management team.
• Familiarity with local regulatory bodies (e.g., OIC, SEC, BOT) is a plus.
• Experience in the insurance industry will be an added advantage.

Experience:

2 years required

Skills:

Public Relations, Legal, ISO 27001, English

Job type:

Full-time

• Executes cybersecurity engineer tasks including, but not limited to, security patch management, security vulnerability management, and security configuration management.
• Tests, implements, deploys, maintains, reviews, and administers the cybersecurity tools.
• Assist in identifying, prioritizing, and coordinating the protection of critical cyber defense infrastructure and key resources.
• Coordinate with Cyber Defense Analysts to manage and administer the updating of rules and signatures (e.g., intrusion detection/protection systems, antivirus, and content blacklists) for specialized cyber defense applications.
• Identify potential conflicts with the implementation of any cyber defense tools (e.g., tool and signature testing and optimization).
• Operates and maintains production information security systems.
• Ensures proper cybersecurity documentation is in place regarding standard operating procedures.
• Monitors the industry and external environment for emerging threats and advises relevant stakeholders on appropriate courses of action.
• Oversees incident response planning and the investigation of security breaches and assists with any associated disciplinary, public relations, and legal matters.
• Applies expert knowledge and skills to resolve problems, including support concepts and methods, problem isolation and troubleshooting procedures, system and file recovery processes, and operating system and network configurations.
• Prepares and presents cogent and cohesive analyses and briefings advising management on new technological developments, techniques, and enhancements that result in increased time and cost efficiencies.
• Provides advice and assistance to troubleshoot the most complex problems in a manner that minimizes interruptions in the ability to carry out critical business activities.
• Supports rapid response teams in response to customer service problems resulting from catastrophic events such as virus infections or widespread power outages.
• Supports the development of a formal cyber security risk assessment program.
• Supports and assists in maintaining a vulnerability/gap/response assessment program.
• Supports the ongoing maintenance of the cyber-Kill Chain for the company, focusing on phases of cyber-attack and remediation/mitigation for each phase.
• Supports ongoing activities to develop, communicate, and support appropriate standards and risk controls associated with digital data.
• Supports the development and maintenance of a company Data Protection program.
• Responds to cybersecurity alerts.
• Cascade and leverage cybersecurity control and practice to the entire company group.
• Bachelor s or Master s degree in Computer Engineering, MIS, IT, or a related field.
• At least 2 years experience in computer security and 5 years in IT infrastructure.
• Have a foundation in good information security practices.
• Knowledge of International Security frameworks, Standards, and Guidelines, e.g., COBIT, NIST-800, ISO 27001, PCI-DSS, OWASP, etc.
• Experience in Security tools, e.g., EDR, ATP, WAF, IPS/IDS, Deception, TI/TIP, Anti DDoS.
• Experience in Cloud Environments, e.g., Google Cloud, AWS, Microsoft Azure.
• Experience with system and application security management and control.
• Experience with system, network, and OS hardening techniques. (e.g., remove unnecessary services, password policies, network segmentation, enable logging, least privilege, etc.).
• Experience with facilitating information security risk assessments.
• Technical writing, documentation development, process mapping, and visual communication skills.
• Hands-on experience with computer programming languages and/or scripting languages such as Python, Java, and Shell for automation.
• Professional certificates related to work (e.g., CISSP, CISM, AWS Certified Security, or similar general security certification) are desirable.
• Talent to identify and create a broad vision for a security solution and to execute it;.
• Systems Thinking - the ability to see how parts interact with the whole (big picture thinking).
• Proven experience of acting as an expert in project teams.
• A positive, can-do attitude who naturally expresses a high degree of empathy to others.
• Ability to explain your thoughts or findings also to non-technical professionals.
• Strong problem-solving and analytical abilities Able to work under minimal supervision, detail oriented.
• Excellent English (Spoken and Written).
• Location: True Digital Park, Punnawithi.

Experience:

5 years required

Skills:

Problem Solving, English

Job type:

Full-time

• Design, implement and maintain the IT Security of the organization which involves developing and executing security strategies, standards and procedures to protect IT assets from cyber threats and vulnerabilities.
• Develops solution conceptual designs and solution blueprints for IT projects.
• Design security architecture elements to mitigate emerging threats.
• Reviewing security measures and recommending to implementing enhancements.
• Review and advise security solution architect for the proposed system such as: Network Segmentation, Application protection, Defense-in-depth, Remote Access, Encryption Technologies.
• Conducting security advisory consultancy and working with RED and BLUE team for security testing along the pipeline of the system delivery.
• Essential Skills & PrerequisitesBachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 5 years of experience of IT Security Advisory, Penetration tester or Enterprise Architect or related role.
• Comprehensive understanding of the IT Security Concept, Security Architect, Risk assessment.
• Ability to analyst finding form Offensive and Defensive Security team.
• Ability to analyze end-to-end security processes and provide advice in order to reduce risk to acceptable levels.
• Strong analytical and problem solving.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, and etc.
• Professional Certificated related to work e.g. (CISSP, CSSLP, CDPSE, OSCP, TOGAF) is desirable.
• Why Ascend Money?Contribute to a safer digital world.
• Gain hands-on experience with cutting-edge cybersecurity challenges.
• Grow your career in a dynamic, fast-moving environment.
• Don t miss this opportunity to be part of something big! Apply now and take the next step with Ascend Money.
• Apply Now: CLICK