Filter Jobs

Skills:

Risk Management, Software Development, Kubernetes

Job type:

Full-time

• Design, develop, and maintain security systems, tools, and best practices across the stack (frontend, backend, mobile, and infrastructure).
• Identify, assess, and mitigate security vulnerabilities through proactive risk management and threat modeling.
• Collaborate with product managers and developers to embed security into the software development lifecycle (SDLC).
• Develop and enforce policies for secure coding, data protection, and incident response.
• Implement robust authentication and authorization mechanisms.
• Conduct regular security assessments, including penetration testing and code reviews.
• Monitor, detect, and respond to security incidents using advanced tools and methodologies.
• Enhance infrastructure security using Kubernetes, Docker, and cloud platforms (GCP, AWS).
• Stay current on emerging threats, vulnerabilities, and security trends, and recommend actionable insights to improve defenses.
• Champion security awareness across the organization, including training sessions and knowledge-sharing activities.
• Ensure compliance with relevant security standards and regulations such as ISO 27001, PDPA, GDPR, SOC 2, or PCI DSS.
• Basic QualificationsProven expertise in application security, cloud security, and infrastructure security.
• Proficiency in securing systems built with technologies such as Node.js, Golang, Elixir, Python, React, Svelte, or Flutter.
• Experience with tools like Docker, Kubernetes, and cloud services (GCP, AWS).
• Strong understanding of cryptographic principles and secure communication protocols.
• Familiarity with CI/CD pipelines and secure DevOps practices.
• Hands-on experience with security tools for vulnerability scanning, penetration testing, and threat detection.
• Deep understanding of database security, especially with PostgreSQL or other relational or non-relational databases.
• Strong analytical and problem-solving skills with a security-first mindset.
• Excellent communication skills and the ability to collaborate effectively in Agile teams.
• Self-motivation, adaptability, and a strong work ethic.
• Preferred Qualifications We re especially excited if you bring:Experience leading security initiatives or mentoring other engineers in security best practices.
• Expertise in compliance frameworks such as ISO 27001, PDPA, GDPR, SOC 2, or PCI DSS.
• Advanced knowledge of security monitoring and incident response systems.
• Strong system design skills with a focus on secure architectures and long-term trade-offs.
• A proven track record of securing fast-paced, high-growth tech environments.
• A passion for securing user-centric products and contributing to their success.
• Perks & Benefits Flat Structure As we continue to grow fast, we strive to retain our culture where everyone is heard, contributes, and grows with the company..
• Work-life Harmony We believe that quality time outside of work is important to sustaining a healthy and happy lifestyle.
• Remote Work Hybrid-mode activated! It comes with the package: flexibility, focus and productivity!.
• Urban Office One breath from Phrom Phong BTS. No sweat whatsoever! The office should also feel like a second home so we dedicated a lot of care and resources into building the best environment for you to wake up to every morning.
• Fun Workshop The best relationships are built over new experiences, that s why we have workshops filled with a range of activities for you to look forward to and enjoy.
• Game Tournament It s getting fun and competitive! Challenge doesn t only have to come from work. Own the championship and show the peeps how great of a gamer (and player) you are.
• Group Insurance Health comes first, we know, don t worry, we ve got you covered.
• Health & Wellness Only a healthy army wins the war. We invest to take care of you from physical, mental and happiness-level. Adopted health & wellness applications plus activities to make sure everyone here is on cloud nine

Skills:

ISO 27001, Python, PowerShell

Job type:

Full-time

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 5 years of experience in IT security and governance.
• Strong understanding of IT security principles, practices, and technologies.
• Knowledge of relevant security standards and regulations (e.g., ISO 27001, NIST, GDPR, HIPAA, PCI DSS).
• Experience with risk assessment and vulnerability management.
• Experience with security incident response and management.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Ability to work independently and as part of a team..
• Relevant certifications (e.g., CISSP, CISM, CISA, Security+).
• Experience with cloud security (AWS, Azure, GCP) and On-Premises.
• Experience with security information and event management (SIEM) systems.
• Experience with scripting languages (e.g., Python, PowerShell).
• Experience with penetration testing.
• Ability to maintain confidentiality and handle sensitive information.
• Ability to adapt to changing technologies and security threats.
• Strong attention to detail and organizational skills.
• Ability to create and maintain clear and concise documentation..
• โบนัสประจำปี.
• ลาพักร้อน เมื่อพ้นทดลองงาน.
• ลา Workcation.
• กองทุนสำรองเลี้ยงชีพ.
• ประกันสังคม / ประกันสุขภาพ / ประกันชีวิต / ประกันอุบัติเหตุ.
• วันหยุดตามกฏหมาย (ไม่น้อยกว่า 13วัน).
• ลาหยุดในเดือนเกิด.
• ตรวจสุขภาพประจำปี.
• เงินช่วยเหลือสมรส.
• สิทธิคุณพ่อลาเลี้ยงบุตร.
• เงินช่วยเหลือฌาปนกิจ.
• Co working Space.
• ฟิตเนต.
• Point แลกของรางวัล.
• บริการปรึกษานักจิตวิทยาออนไลน์..
• การเดินทาง.
• BTS: สถานีหมอชิต, ห้าแยกลาดพร้าว.
• MRT: สถานีพหลโยธิน.
• บริการเรียกรถผ่าน App MuvMi..
• ติดตามข่าวสารจาก SC ASSET ได้ที่.
• http://insidesc.scasset.com/..

Skills:

ISO 27001

Job type:

Full-time

• Protect the organization's computer networks and systems against a range of cyber threats, such as hacking attempts, data breaches, and different types of cyber attacks. The
• responsibilities of this role include creating, deploying, and overseeing security strategies and technologies to defend the organization IT security.
• Lead the strategic direction, development, and implementation of cybersecurity solutions and practices to protect the organization from sophisticated cyber threats and ...
• Serve as the foremost cybersecurity expert within the organization, providing deep technical expertise and leadership in the design, evaluation, and optimization of complex security architectures.
• Develop comprehensive cybersecurity frameworks that align with industry best practices and regulatory standards, ensuring the organization's resilience against cyber attacks.
• Conduct sophisticated risk assessments and threat modeling exercises to identify potential security gaps and develop advanced strategies for mitigation and prevention.
• Lead the incident response and crisis management efforts for high-impact security breaches, coordinating with cross-functional teams to ensure rapid containment and recovery.
• Drive the adoption of cutting-edge security technologies and methodologies, including artificial intelligence and machine learning, to enhance detection and response capabilities.
• Establish and maintain strong relationships with external cybersecurity agencies, industry groups, and technology partners to stay abreast of emerging threats and trends.
• Develop and manage the cybersecurity budget, ensuring strategic allocation of resources to high-priority projects and initiatives.
• Advanced degree in Computer Science, Information Security, or a related field, with specialized knowledge in cybersecurity.
• A minimum of 5 years of experience in Infrastructure, 3 years of cybersecurity, with at least 2 years in a strategic leadership or management role overseeing cybersecurity functions.
• Professional cybersecurity certifications, such as CISSP, CISM, CCSP, or similar, are required.
• Proven expertise in developing and implementing cybersecurity strategies and architectures to protect complex enterprise environments.
• Other: Deep knowledge of the cybersecurity landscape, including emerging threats, advanced persistent threats (APT), regulatory requirements, and industry best practices.
• Other: ISO 27001.

Skills:

Negotiation

Job type:

Full-time

• Bachelor degree or higher in Computer Science or related filed.
• There are 5-8 years, Experience in Network skills.
• Able to do network design, evaluation, POC, implementation.
• Self-Motivation and Hard Working.
• Able to work some time on night and weekend by job duties.
• Able to troubleshooting related to network problem & connecting equipment.
• Willing to self-study for network knowledge and learn new knowledge from team.
• Good communication,interpersonal, problem-solving, presentation, and negotiation skill.

Experience:

2 years required

Skills:

Network Infrastructure, Network Administration, CompTIA Security+, System Security, English

Job type:

Full-time

• Design & Deployment: Architect and deploy on-premises infrastructure solutions, including servers, storage, and networking equipment.
• Maintenance & Support: Perform regular maintenance and troubleshooting of all infrastructure components, ensuring timely updates and patches.
• Monitoring & Troubleshooting: Continuously monitor system performance, diagnosing and resolving hardware, software, or network-related issues.
• Virtualization: Manage visualized environments, such as VMware or Hyper-V, optimizing server workloads and system resources.
• Backup & Recovery: Implement and maintain backup solutions and disaster recovery plans to safeguard critical business data and ensure continuity.
• Security & Compliance: Apply industry-standard security measures to protect infrastructure, ensuring compliance with relevant regulations and policies.
• Documentation: Develop and maintain comprehensive documentation of infrastructure configurations, procedures, and troubleshooting guidelines.
• Collaboration: Work closely with cross-functional teams to align IT infrastructure with business requirements, providing necessary technical support.
• Bachelor s degree in Computer Science, Information Technology, or a related field (or equivalent experience).
• 4 years of hands-on experience managing on-premises IT infrastructure, including servers, storage, networking, and virtualization.
• Expertise in Windows/Linux operating systems and experience with virtualization platforms like VMware or Hyper-V.
• Strong knowledge of networking technologies, such as TCP/IP, DNS, DHCP, and VPNs.
• Experience with backup, storage, and disaster recovery solutions.
• Strong analytical and troubleshooting skills for diagnosing complex technical issues.
• Good communication skills and ability to work effectively in a team environment.
• Experience in vulnerability management is a strong advantage.
• CompTIA Server+ or A+.
• VMware Certified Professional (VCP).
• Microsoft Certified: Windows Server Administrator.
• Cisco Certified Network Associate (CCNA).

Skills:

System Security

Job type:

Full-time

• ดูแล วางแผน และออกแบบ ระบบรักษาความปลอดภัยสารสนเทศ เช่น Firewall, VPN, Email Security, AAA, Cloud Security, Security Consult.
• บริหารจัดการโครงการด้านความปลอดภัยสารสนเทศ.
• ร่วมพัฒนาระบบงานความปลอดภัยด้านสารสนเทศ ระบบต่าง ๆ ด้าน IOT / ระบบ Email / ระบบป้องกันไวรัส.
• ให้คำแนะนำระบบความปลอดภัยด้านสารสนเทศภายใน และภายนอกแก่หน่วยงานต่าง ๆ พร้อมจัดทำคู่มือ และฝึกอบรมทีมงาน และผู้ใช้งาน.
• ประสานงาน ให้คำปรึกษา และแนะนำระบบความปลอดภัยสารสนเทศให้กับพนักงาน และผู้ที่เกี่ยวข้อง.
• งานอื่น ๆ ตามที่ได้รับมอบหมาย.
• วุฒิการศึกษา: ปริญญาตรี วิศวกรรมศาสตร์ / วิทยาศาสตร์ คอมพิวเตอร์ หรือสาขาอื่น ๆ ที่เกี่ยวข้อง.
• ประสบการณ์ทำงาน: 5 - 10 ปี.
• มีทักษะการสื่อสาร วางแผน และเจรจาต่อรอง.

Experience:

5 years required

Skills:

Problem Solving, English

Job type:

Full-time

• Design, implement and maintain the IT Security of the organization which involves developing and executing security strategies, standards and procedures to protect IT assets from cyber threats and vulnerabilities.
• Develops solution conceptual designs and solution blueprints for IT projects.
• Design security architecture elements to mitigate emerging threats.
• Reviewing security measures and recommending to implementing enhancements.
• Review and advise security solution architect for the proposed system such as: Network Segmentation, Application protection, Defense-in-depth, Remote Access, Encryption Technologies.
• Conducting security advisory consultancy and working with RED and BLUE team for security testing along the pipeline of the system delivery.
• Bachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 5 years of experience of IT Security Advisory, Penetration tester or Enterprise Architect or related role.
• Comprehensive understanding of the IT Security Concept, Security Architect, Risk assessment.
• Ability to analyst finding form Offensive and Defensive Security team.
• Ability to analyze end-to-end security processes and provide advice in order to reduce risk to acceptable levels.
• Strong analytical and problem solving.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, and etc.
• Professional Certificated related to work e.g. (CISSP, CSSLP, CDPSE, OSCP, TOGAF) is desirable.
• Location: True Digital Park, Punnawithi.

Experience:

3 years required

Skills:

Python, Windows API, Full Stack, English, Thai

Job type:

Full-time

• Develop functionality for integration of forecast and observation information from local and international agencies to RIMES data warehouse.
• Implementing automated data integration functionality to streamline processes for data integrated platforms.
• Managing databases and data warehouses, ensuring data integrity, security, and availability.
• Supporting the development and design of both back-end and front-end systems to meet project objectives.
• Assist in the development of the technical design framework and specifications (e.g., function, system architecture, data flow, etc.).
• B. Web Portal and Interface Development.
• Design/development/customization the data visualization platform with user-friendly web portals/websites.
• Creating dashboards and visual interfaces for the DSS, enhancing usability and accessibility.
• Creating and maintaining efficient script for web portals, websites, dashboards, and visual interfaces.
• Planning, design, development, testing, and validation of new systems, solutions, and processes to meet user needs and requirements effectively and efficiently.
• Analyses of users need to identify critical points where sectoral platform could be used effectively.
• Lead the development of system mock-ups and its iterations based on the design framework and specification, and users feedback.
• C. IT Infrastructure and Support.
• Ensuring seamless integration of IT systems with web applications and DSS.
• Providing technical support and troubleshooting to resolve any project-related IT issues.
• Implementing and managing security measures and backup solutions to protect project data.
• D. Other tasks.
• Conducting regular system reviews and maintaining optimal functionality and relevance.
• Scoping up the needs, requirements and recommending the implementation to enhance system performance and user experience.
• Participate in project planning and capacity-building activities.
• Perform other duties as may be required by the Project.
• Bachelor s degree in Information technology, Software Engineering, Computer Science or any related field.
• Minimum three (3) years of professional work experience in programming using Python.
• Strong proficiency in at least one backend framework of Python, with Django being explicitly mentioned as an example. This implies experience in building web applications, APIs, and handling data using Django's ORM, templating engine (if applicable), and project structure.
• Minimum two (2) years of professional work experience in designing and implementing APIs.
• Proven ability to integrate systems using web services such as REST and SOAP.
• Experience in API documentation, likely using tools like Swagger/OpenAPI.
• Demonstrated ability to work effectively in a Linux Command Line Interface (CLI) for tasks such as navigating the file system, managing processes, and basic system administration.
• Knowledge and experience in deploying web applications to servers, including understanding server environments, configuration, and deployment processes.
• At least one (1) year of basic work experience in HTML5, JavaScript, or modern JavaScript frameworks (e.g., React, Angular, Vue.js). This suggests a foundational understanding of frontend technologies, even if the primary focus is backend.
• At least three (3) years of combined professional work experience in systems design (understanding architecture, scalability, etc.) and database management (working with relational or NoSQL databases, schema design, querying, etc.).
• Involvement in at least two (2) web and/or mobile app development projects in the last five years. This indicates recent and practical experience in the full development lifecycle.
• Familiarity with the institutions/organizations as well as approaches and concepts in Disaster Risk Reduction and Management (DRRM), early warning, and/or Climate Change Adaptation (CCA). This would be a significant advantage, showing an understanding of the application domain.
• Excellent understanding of system development methodologies and lifecycle.
• Expert in relational databases and SQL.
• Proficient with software testing principles and methodologies.
• Excellent critical thinking, problem-solving, and planning skills.
• Strong communication, interpersonal, and writing skills.
• Ability to work amicably in a multicultural and multidisciplinary work environment.
• Excellent knowledge of English (both oral and written).
• Self-motivated, flexible, and able to work effectively and independently.
• Excellent work ethic and aptitude to work with a constructive attitude.
• Conscientious and efficient in meeting commitments, observing deadlines, and achieving results.
• Shows persistence when faced with difficulties or challenge.
• How to Apply: send your application letter, resume, salary expectation and 2 references in PDF format to [email protected] by midnight of 4 June 2025. Please state Full Stack Developer-HQ: Your Name the Subject line of the email. Only short-listed applicants will be contacted..
• Ms. Dusadee Padungkul.
• Head-Operational Support.
• Regional Integrated Multi-Hazard Early Warning System.
• AIT Campus, 58 Moo 9 Paholyothin Rd., Klong 1,.
• Klong Luang, Pathumthani 12120 Thailand..
• RIMES promotes diversity and inclusion in the workplace. Well-qualified applicants particularly women are encouraged to apply.

Skills:

Project Management, Teamwork, Good Communication Skills

Job type:

Full-time

• Provide first-line IT support and services to both the corporate office and hotel properties; escalate to vendors as needed.
• Handle daily IT operations in hotels, including network systems, telephone systems, POS, and back-office systems.
• Plan, manage, and maintain the hotel/warehouse s IT infrastructure including hardware, software, network systems, and servers to ensure smooth operations.
• Manage and participate in IT-related projects such as system upgrades, security enhancements, and new implementations across various business units.
• Assist in developing and maintaining the company s website to optimize user engagement and support strategic business goals.
• Coordinate with external vendors and internal teams to resolve IT issues and implement effective solutions.
• Report progress and issues to management regularly.
• Perform regular system backups, data protection, and disaster recovery procedures.
• Maintain IT documentation and inventory.
• Assist with IT projects through vendor coordination.
• Aligning to Corporate IT Policies; ensuring that all technology systems, processes, and practices within the organization adhere to its established IT policies and regulations.
• Bachelor s degree or higher in Computer Engineering, Computer Science, Information Technology, or related fields.
• Minimum 5 years of experience in IT support or infrastructure roles; hospitality or hotel industry background is a plus.
• Proficient in network systems, IT equipment, and end-user support.
• Familiar with hotel systems such as Comanche PMS, POS, CCTV, and telephony systems.
• Strong project management, communication, and teamwork skills.
• Experience in website development or content management is an advantage.
• Service-minded, solution-oriented, and able to work under pressure.
• Good communication skills.
• Adaptability to work outside of standard hours, including potential availability during holidays for urgent matters or project deadlines.

Experience:

5 years required

Skills:

Compliance, ISO 27001, Legal

Job type:

Full-time

• Design and implement a cybersecurity strategy that aligns with the organization's overall business objectives.
• Conduct regular security risk assessments, vulnerability assessments, and penetration testing to evaluate the organization s cyber defenses; subsequently, develop and implement security risk mitigation strategies and programs.
• Lead and coordinate response efforts in the event of security incidents, overseeing investigation, mitigation, and post-incident analysis.
• Compliance & Regulatory Management.
• Ensure adherence to relevant laws, regulations, and standards (e.g., PDPA).
• Implement and lead initiatives for security and compliance audit certifications, including ISO 27001, NIST, the Cyber Resilience Assessment Framework (C-RAF), and other applicable standards and best practices.
• Recommend, implement, and manage continuous monitoring of IT security systems and tools.
• Collaborate with legal and data protection teams to establish policies and safeguards for sensitive and personal data.
• IT Governance.
• Establish and maintain an IT governance framework, policies, and processes that align with the organization s business goals while ensuring compliance with legal, regulatory, corporate, and industry requirements.
• Work in partnership with management, legal, finance, and external auditors to promote transparency and alignment in governance practices.
• Generate and present reports on IT governance performance, compliance status, and the risk landscape to stakeholders.
• Data Governance.
• Develop and implement data governance policies that ensure data quality, security, and compliance.
• Manage the data lifecycle, align data strategies with business objectives, and collaborate with cross-functional teams to enhance data integrity.
• Oversee data stewardship, regulatory compliance, and provide best practices for data management to support effective decision-making.
• Team Leadership and Development.
• Lead and mentor a small team of IT governance, compliance, and security professionals.
• Foster a culture of continuous improvement and knowledge sharing within the team and across business units.
• Bachelor s or Master s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• A minimum of 5 years of experience in IT governance, cybersecurity, and compliance, with at least 2 years in a managerial role.
• Strong understanding of IT governance frameworks (e.g., ITIL, COBIT), cybersecurity standards (e.g., ISO 27001, NIST), and regulatory requirements (e.g., PDPA).
• Possession of basic IT governance and cybersecurity certifications (e.g., CISSP, CISM) is advantageous.
• Proficient in common technical team/project management tools (e.g., JIRA, Asana, Github). Collaborative team player with strong interpersonal skills, capable of working effectively with both internal and external teams.
• Working-level fluency in English and Thai. Proficient in English equivalent to IELTS 5.5, CEFR B2, or TOEFL 72; excellent spoken and written communication to effectively work with a global management team.
• Familiarity with local regulatory bodies (e.g., OIC, SEC, BOT) is a plus.
• Experience in the insurance industry will be an added advantage.

Job type:

Full-time

Greenline Synergy provides the information security governance to the BDMS hospitals which is a framework of policies, practices, and strategies that align organizational resources toward protecting information through cybersecurity measures.

Skills:

ISO 27001, Compliance, Assurance, English

Job type:

Full-time

• Develop and support internal audit strategies within the cyber security domain, which involves protecting computers, servers, mobile devices, electronic systems, networks, and data from malicious attacks.
• Implement work standards to achieve desired outcomes and report findings to top management as a Cyber Security Auditor.
• Identify potential cyber security risks and convince organizational stakeholders to adopt comprehensive actionable recommendations.
• Act as a liaison with internal auditors, external auditors, Bank of Thailand auditors, Electronic Transactions Development Agency auditors, and other regulatory bodies (e.g., ISO 27001, PCI DSS, etc.) to ensure documentation and information compliance.
• Provide assurance and advisory services to ensure that IT Management plans, organizes, and directs appropriate IT governance, risk management, and control processes.
• Liaise with IT risk owners to develop risk-based assessments and establish risk response programs and reporting processes according to the Risk Management Policy and Framework.
• Bachelor's or master s degree in Computer Engineering, Computer Science, Information Technology, or related fields.
• Experience in relevant local and international security standards and best practices such as ISO 27001, NIST, COBIT, COSO, PCI DSS, and ITIL.
• Experience in IT Governance, Risk Management, and Control Processes (IT GRC), Project Management, Lead Auditor/Lead Implementer, or similar roles is preferred.
• Professional certifications such as CISA (Certified Information Systems Auditor), CISSP (Certified Information Systems Security Professional), and CRISC (Certified in Risk and Information Systems Control) are advantageous.
• Technical expertise in cyber security auditing.
• Proficiency in English.
• At least 3 years of experience in information security management, information risk management, IT audit management, ICT security, cloud security, or related fields.

Skills:

Research, Project Management

Job type:

Full-time

• Manage and control project operations, analyze and design systems, and oversee system development to meet business needs.
• Analyze and define IT Business Solutions.
• Develop project plans and control timelines to ensure all parties' agreements are met, always prioritizing the organization's best interests.
• Analyze and design data integration architecture and internal systems, as well as facilitate data exchange between internal and external systems.
• Support the development or application of designed architecture to ensure effective implementation, including managing change and mitigating IT-related risks.
• Research and evaluate innovative technologies to enhance system and platform efficiency, considering processing capabilities, security, and adaptability for future changes (for IT and non-IT regulations).
• Manage stakeholder requirements effectively.
• Define company policies related to IT systems.
• Bachelor s degree in a Computer Engineering, Computer Science, Information Technology, or related fields.
• More than 10 years of experience, with over 5 years in Software Solution Architecture.
• Project management.
• Providing consultation and guidance".

Experience:

2 years required

Skills:

Compliance, Excel

Job type:

Full-time

• Assist in the planning, execution, and monitoring of projects.
• Utilise strong critical thinking and problem solving skills day to day.
• Collaborate with team members to ensure project deliverables are met on time and within scope.
• Prepare and maintain project documentation, including reports, presentations, and meeting minutes.
• Quickly adapt to changing priorities and project requirements.
• Demonstrate flexibility in managing tasks and responsibilities in a dynamic work environment.
• Proactively identify and address potential issues or roadblocks to ensure smooth project execution.
• Work with other NIS teams both locally, regionally and globally to deliver the security needs specific to the firm.
• Support work in vulnerability management and compliance activities.
• Handles BAU activities such as managing security exceptions.
• Help the business comply with the Information Security Policy by leveraging your cyber security knowledge and expertise.
• Collaborate with PwC IT and global team to align security process and tools.
• Guide and support the business team to complete all required security reviews.
• Build knowledge on application security to effectively support security assessments.
• Align with different global and local teams to identify and fix gaps or risk found.
• Other.
• Help with daily security incident handling.
• Help to manage junior staff, eg. interns.
• An effective CISO pillar candidate will also possess the following skills/ Requirements.
• Able to work in a fast-paced environment, can upskill quickly and learn proactively.
• Analytical: Inquisitive nature and intuition regarding what questions to ask, when, and their relative significance.
• Technical: Broad understanding of security technology.
• Business: High level understanding of PwC s business model, service offerings, and business operating environment as it pertains to the firm s threat landscape. Ability to frame threats and exposures in a business context recognized by non-technical staff and executives.
• Individuals selected for this role are expected to have both extensive knowledge and managerial know-how related to the following aspects: Demonstrate flexibility in managing tasks and responsibilities in a dynamic work environment.
• Understanding of technical and non-technical information security risks.
• Have skills to analyse data and visualise data (good to have knowledge of Excel, PowerPoint etc.).
• Good written and effective communicator to deal with various stakeholders.
• Meticulous and possesses an eye for details.
• Proactive, keen to learn, enjoys solving challenging problems, thinking outside of the box.
• Diligent and open to feedback.
• Experience in a role balanced between business stakeholders and a central service organization.
• Possess knowledge about application security to effectively support security assessments.
• Time and Task Management: Ability to prioritise risk, manage a variety of take, take ownership to drive completion of activities and deliver on time.
• Interest in Information Security.
• Bachelor s or master s degree (technical degree) or equivalent Industry certification.
• Desired Certifications: (Certifications aren t a prerequisite however are well regarded).
• Education Level: Undergraduate Degree (e.g. BIT, BSc) STEM or equivalent work experience: 1-2 years of progressive professional roles involving information security, computer science and/or other technical background.
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified).
• Required Skills.
• Optional Skills.
• Accepting Feedback, Accepting Feedback, Active Listening, Communication, Computer Engineering, Computer Program Installation, Computer Programming, Computer Technical Support, Emotional Regulation, Empathy, Enterprise Architecture, Incident Management and Resolution (IMR), Inclusion, Information and Communications Technology (ICT), Intellectual Curiosity, IT Infrastructure Upgrades, IT Operations, IT Operations Management, IT Project Lifecycle, IT Support, IT Troubleshooting, Object-Oriented Programming (OOP), Optimism, Scripting Languages, Security Protocol Analysis {+ 6 more}Desired Languages (If blank, desired languages not specified).
• Travel Requirements.
• 0%
• Available for Work Visa Sponsorship?.
• No
• Government Clearance Required?.
• No

Experience:

1 year required

Skills:

Assurance, Finance, Quality Assurance, English

Job type:

Full-time

• Perform IT Audit and Advisory services for various industries/sectors (e.g., Financial Services, Manufacturing, Automotive, Telecommunication, Life Science & Hospitality, Energy, Consumer Product, etc.).
• Participate in significant meetings with client's management to communicate detailed audit findings and recommendations, as assigned.
• Perform any other tasks or assignments.
• Your role as a leader:At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We connect our purpose and shared values to identify issues as well as to make an impact that matters to our clients, people and the communities. Additionally, Analyst, Consultant, Senior Consultant across our Firm are expected to:Actively seek out developmental opportunities for growth, act as strong brand ambassadors for the firm as well as share their knowledge and experience with others.
• Respect the needs of their colleagues and build up cooperative relationships.
• Understand the goals of our internal and external stakeholder to set personal priorities as well as align their teams work to achieve the objectives.
• Constantly challenge themselves, collaborate with others to deliver on tasks and take accountability for the results.
• Build productive relationships and communicate effectively in order to positively influence teams and other stakeholders.
• Offer insights based on a solid understanding of what makes Deloitte successful.
• Project integrity and confidence while motivating others through team collaboration as well as recognising individual strengths, differences, and contributions.
• Understand disruptive trends and promote potential opportunities for improvement.
• RequirementsEducation background in Accounting, Finance, and/or other IT-related fields (eg., AIS/MIS, Computer Engineering, Computer Science, etc).
• At least 1-3 years experience in IT Audit / IT Security / IT Quality Assurance, or Financial Audit with some IT knowledge (e.g., access control, change management).
• Knowledge in Audit concept / technique, and willing to learn more in IT Audit and Advisory services.
• Can do" attitude and able to work either individually or with team under pressure (e.g., quality and timeliness of audit reports).
• Experiences in using CAAT or Data Analytic & Visualization tools (e.g., R, Python, Tableau, PowerBI, etc) would be advantage.
• Verbal and written communication skills in both Thai and English.
• Due to volume of applications, we regret that only shortlisted candidates will be notified.
• Please note that Deloitte will never reach out to you directly via messaging platforms to offer you employment opportunities or request for money or your personal information. Kindly apply for roles that you are interested in via this official Deloitte website. Requisition ID: 36464In Thailand, the services are provided by Deloitte Touche Tohmatsu Jaiyos Co., Ltd. and other related entities in Thailand ("Deloitte in Thailand"), which are affiliates of Deloitte Southeast Asia Ltd. Deloitte Southeast Asia Ltd is a member firm of Deloitte Touche Tohmatsu Limited. Deloitte in Thailand, which is within the Deloitte Network, is the entity that is providing this Website.

Skills:

Network Infrastructure, Compliance, VMware

Job type:

Full-time

• Infrastructure Design and Architecture: Lead the design and architectural planning of IT infrastructure solutions, including networks, servers, storage systems, and cloud environments. Ensure alignment with business goals, scalability, and security while incorporating SRE principles for reliability.
• Network Management: Design, configure, and maintain network infrastructure, ensuring optimal performance, reliability, and security. Implement and manage firewalls, switches, routers, and VPNs, with a focus on SRE for network reliability.
• Server and Virtualization: Oversee server infrastructure, including physical and virtual servers. Implement and manage virtualization technologies to optimize resource utilization, scalability, and reliability as per SRE guidelines.
• Storage Management: Manage and optimize storage solutions, including SAN (Storage Area Network) and NAS (Network Attached Storage) systems. Ensure data availability, backup, and disaster recovery readiness with SRE principles in mind.
• Cloud Infrastructure: Architect and manage cloud infrastructure (e.g., AWS, Azure, Google Cloud) for scalability, cost efficiency, and security. Implement best practices for cloud-based services and resources, following SRE guidelines.
• Security and Compliance: Implement and maintain security measures to protect IT infrastructure from cyber threats and vulnerabilities. Ensure compliance with industry regulations, internal policies, and integrate SRE practices for enhanced security.
• Performance Monitoring and Optimization: Continuously monitor infrastructure performance, diagnose and resolve issues, optimize resource utilization, and conduct Chaos Engineering exercises to enhance reliability and resilience.
• EDUCATION.
• Bachelor s degree in computer engineering or computer science field; certifications in IT infrastructure (e.g., Cisco, Microsoft, AWS, VMware) and SRE/Chaos Engineering are advantageous.
• EXPERIENCE.
• At least 5 years' experience in designing, implementing, and managing IT infrastructure solutions, including networks, servers, storage, and cloud technologies, with a focus on SRE and Chaos Engineering.
• Strong technical knowledge of network protocols, server operating systems, virtualization, storage technologies, and Chaos Engineering practices.
• Proficiency in security best practices, compliance requirements for IT infrastructure, SRE principles, and Chaos Engineering methodologies.
• OTHER REQUIREMENTS.
• Excellent problem-solving skills and the ability to diagnose and resolve complex infrastructure issues while incorporating Chaos Engineering for resilience testing.
• Effective communication and interpersonal skills for collaboration with cross-functional teams.
• Detail-oriented with a commitment to documentation, SRE, and Chaos Engineering best practices.
• Ability to adapt to evolving technology trends, maintain a proactive approach to infrastructure optimization, and apply SRE and Chaos Engineering principles for reliability and resilience.
• Project management skills for planning and executing infrastructure and Chaos Engineering projects.

Experience:

5 years required

Skills:

Procurement, Contracts, Negotiation

Job type:

Full-time

• The incumbent coordinates and controls the design and execution of sourcing projects within the Facilities category, including fit-up constructions, repairs, security services, cleaning services, cafeteria, and landscaping, within indirect procurement..
• They build relationships with internal and external customers and users of the optimization process. Working in a team setting with minimal supervision, this role provides internal customers/stakeholders with the support and guidance needed to create a ...
• They are responsible for driving value from strategic vendors, reducing related costs, and improving cash flow while adding value to the organization..
• This includes developing category strategies and negotiating contracts (reviewing, drafting, and redlining) from vendor contract receipt through deal closure, subject to final approval by in-house counsel..
• They lead stakeholders through the entire procurement process, from requirement definition to vendor engagement, RFQ process, and the completion and negotiation of operational contracts..
• The incumbent interacts regularly with senior management on matters concerning various functional areas, divisions, and customers. They identify future procurement projects for management by collaborating with stakeholders on category strategies..
• They co-develop and execute sourcing strategies with the business, advising and guiding the process to the best-fit approach, tactics, and tools (e.g., outcome-based specifications, RFP/RFI/RFQ builds, e-auctions, KPI/SLA development)..
• They also act as the site liaison for the Global Commodity Management team with specific global locations. The operational environment is cross-functional, complex, and fast-paced, requiring a high degree of judgment and independence to develop solutions and resolve challenges..
• Strong cross-functional relationship management, persuasive skills, and negotiation skills are essential for gaining support and buy-in..
• Knowledge/Skills/Competencies.
• Strong business acumen with the ability to create and analyze cost-benefit analysis proposals and advise business leaders, finance, and procurement on the strengths of various options.
• Excellent negotiation, relationship, and interpersonal skills.
• Strong ability to communicate with stakeholders and business leaders to understand requirements, expectations, and value measures.
• Strong analytical skills, proficiency in Microsoft Office applications (Excel, PowerPoint, Word). Advanced Excel (macros a plus) and MS Word skills are required.
• Category Management and Sourcing experience, including a deep understanding of Strategic Sourcing best practices.
• General commercial contracts and procurement experience with strong substantive knowledge and experience in drafting and negotiating a wide variety of contract provisions.
• Ability to work within a team and, where appropriate, independently or with limited guidance.
• Solid experience in face-to-face negotiations and project management.
• Ability to lead complex negotiations effectively.
• Experience creating and implementing SLAs and KPIs.
• Ability to communicate effectively, both verbally and in writing, with a wide variety of internal and external customers.
• Typical Experience.
• Minimum of 8 years of procurement experience, preferably in the manufacturing industry with expertise in Facilities/MRO.
• A minimum of 5 years of experience managing complex contracts and relationships, including contract commercials and business relationships, with experience in outsourcing vendor contract negotiations, terms, SLAs, invoicing, and dispute management.
• Category Management and Sourcing experience, including a deep understanding of Strategic Sourcing best practices.
• Project management experience is required.
• E-procurement tool experience is an asset.
• Typical Education.
• Bachelor s degree in business administration, engineering, or a procurement-related field, or equivalent combination of education and experience.
• Notes.
• This job description is not intended to be an exhaustive list of all duties and responsibilities of the position. Employees are held accountable for all duties of the job. Job duties and the % of time identified for any function are subject to change at any time.
• Celestica is an equal opportunity employer. All qualified applicants will receive consideration for employment and will not be discriminated against on any protected status (including race, religion, national origin, gender, sexual orientation, age, marital status, veteran or disability status or other characteristics protected by law).
• At Celestica we are committed to fostering an inclusive, accessible environment, where all employees and customers feel valued, respected and supported. Special arrangements can be made for candidates who need it throughout the hiring process. Please indicate your needs and we will work with you to meet them.
• Celestica (NYSE, TSX: CLS) enables the world s best brands. Through our recognized customer-centric approach, we partner with leading companies in Aerospace and Defense, Communications, Enterprise, HealthTech, Industrial, Capital Equipment and Energy to deliver solutions for their most complex challenges. As a leader in design, manufacturing, hardware platform and supply chain solutions, Celestica brings global expertise and insight at every stage of product development - from drawing board to full-scale production and after-market services for products from advanced medical devices, to highly engineered aviation systems, to next-generation hardware platform solutions for the Cloud. Headquartered in Toronto, with talented teams spanning 40+ locations in 13 countries across the Americas, Europe and Asia, we imagine, develop and deliver a better future with our customers.
• Celestica would like to thank all applicants, however, only qualified applicants will be contacted.
• Celestica does not accept unsolicited resumes from recruitment agencies or fee based recruitment services.

Experience:

6 years required

Skills:

Risk Management, Compliance, Problem Solving

Job type:

Full-time

• Provide technical support and perform maintenance.
• Perform service monitoring and reporting, with a focus on risk management and compliance.
• Explore new solutions, enhancements and opportunities for continuous improvement, projects and more.
• Perform the acquisition, provisioning and decommissioning of related equipment, software and services.
• Lead projects and change management initiatives.
• Knowledge/Skills/Competencies.
• Strong customer service orientation.
• Strong analytical, troubleshooting and problem solving skills..
• Good communication (both oral and written) and documentation skills..
• Leadership and teamwork skills..
• Ability to plan projects and tasks..
• In-depth knowledge of the Windows OS (server and client) and the desktop operating environment. Linux and other mainstream OS knowledge will be helpful..
• Fundamental knowledge of networking concepts.
• Strong knowledge of infrastructure service management & diagnostic tools and processes.
• Strong knowledge of end-point security management tools and processes.
• Physical Demands.
• Duties of this position are performed in a normal office environment..
• Duties may require extended periods of sitting and sustained visual concentration on a computer monitor or on numbers and other detailed data. Repetitive manual movements (e.g., data entry, using a computer mouse, using a calculator, etc.) are frequently required..
• Typical Experience.
• 4 to 6 years of relevant experience.in a similar role or industry..
• Typical Education.
• Bachelor's Degree or consideration of an equivalent combination of education and experience..
• Educational Requirements may vary by Geography.
• Notes.
• This job description is not intended to be an exhaustive list of all duties and responsibilities of the position. Employees are held accountable for all duties of the job. Job duties and the % of time identified for any function are subject to change at any time.
• Celestica is an equal opportunity employer. All qualified applicants will receive consideration for employment and will not be discriminated against on any protected status (including race, religion, national origin, gender, sexual orientation, age, marital status, veteran or disability status or other characteristics protected by law).
• At Celestica we are committed to fostering an inclusive, accessible environment, where all employees and customers feel valued, respected and supported. Special arrangements can be made for candidates who need it throughout the hiring process. Please indicate your needs and we will work with you to meet them.
• Celestica (NYSE, TSX: CLS) enables the world s best brands. Through our recognized customer-centric approach, we partner with leading companies in Aerospace and Defense, Communications, Enterprise, HealthTech, Industrial, Capital Equipment and Energy to deliver solutions for their most complex challenges. As a leader in design, manufacturing, hardware platform and supply chain solutions, Celestica brings global expertise and insight at every stage of product development - from drawing board to full-scale production and after-market services for products from advanced medical devices, to highly engineered aviation systems, to next-generation hardware platform solutions for the Cloud. Headquartered in Toronto, with talented teams spanning 40+ locations in 13 countries across the Americas, Europe and Asia, we imagine, develop and deliver a better future with our customers.
• Celestica would like to thank all applicants, however, only qualified applicants will be contacted.
• Celestica does not accept unsolicited resumes from recruitment agencies or fee based recruitment services.

Experience:

3 years required

Skills:

Web Services

Job type:

Full-time

• Conduct security assessments on systems, networks, and applications.
• Simulate cyber attacks to identify system vulnerabilities.
• Typical security testing activities include:Software/Web Application/Web Services penetration testing.
• Network Penetration Testing.
• Mobile Application Penetration Testing.
• Thick Client Penetration Testing.
• Develop and execute penetration testing methodologies.
• Prepare detailed reports on the findings of penetration tests.
• Recommend and implement improvements to security policies.
• Stay updated with the latest penetration testing tools and techniques.
• Train staff on security awareness and procedures.
• Collaborate with IT staff to improve system security.
• Your role as a leader: At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We expect our people to embrace and live our purpose and shared values, challenging themselves every day to identify issues that are most important to our clients, our people and the communities, and to make an impact that matters. Additionally, Consultants across our Firm are expected to:Actively seek out developmental opportunities for growth, act as strong brand ambassadors for the firm as well as share their knowledge and experience with others.
• Understand the goals of our internal and external stakeholder to set personal priorities as well as align their teams work to achieve the objectives.
• Constantly challenge themselves, collaborate with others to deliver on tasks and take accountability for the results.
• Build productive relationships and communicate effectively in order to positively influence teams and other stakeholders.
• Project integrity and confidence while motivating others through team collaboration as well as recognising individual strengths, differences, and contributions.
• Requirements: If you are someone with:Bachelor's degree in information security, information systems management, computer science, engineering, or other related discipline.
• More than 3 years of experience in information technology, IT audits, or cyber security.
• Proven experience as a Penetration Tester or similar role in cybersecurity.
• Proficiency in using automated tools and manual testing techniques.
• Strong understanding of common vulnerabilities and exploits.
• Relevant certifications (e.g., CEH, OSCP, CREST) are a plus.
• Excellent problem-solving and analytical skills.
• Must be able to work under pressure and produce content to tight timelines.
• Ability to self-manage, prioritizing a variety of tasks.
• Due to volume of applications, we regret only shortlisted candidates will be notified.
• Please note that Deloitte will never reach out to you directly via messaging platforms to offer you employment opportunities or request money or your personal information. Kindly apply for roles that you are interested via this official Deloitte website.
• Requisition ID: 108871In Thailand, the services are provided by Deloitte Touche Tohmatsu Jaiyos Co., Ltd. and other related entities in Thailand ("Deloitte in Thailand"), which are affiliates of Deloitte Southeast Asia Ltd. Deloitte Southeast Asia Ltd is a member firm of Deloitte Touche Tohmatsu Limited. Deloitte in Thailand, which is within the Deloitte Network, is the entity that is providing this Website.

Skills:

Research, System Administration, Android

Job type:

Full-time

• Implements IT security improvements by assessing current situation; evaluating trends; anticipating requirements.
• Protects IT system by defining access privileges, control structures, and required resources.
• Process & analyze to gain insights on past IT areas on, current or potential attacks and threats that pose a risk to the organization.
• Primary point of contact with Internal Audit. Periodically review, update, implement and communicate changes to IT policies and procedures and General IT Controls. Facilitate internal and external audit processes by participating in scoping discussions and walk-throughs, delivering evidence that controls are operating as defined, remediating deficiencies, and acting on recommendations.
• Safeguards IT infrastructure and system as well as information system assets by identifying and solving potential and actual security problems.
• Research cyber security topics and promote Cyber security awareness throughout Thaioil.
• EDUCATION.
• Bachelor s degree in computer science, Information Systems, or equivalent education or work experience.
• EXPERIENCE.
• Relevant experience, especially in IT working environment.
• Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.
• Hands-on experience analyzing high volumes of logs, network data (e.g., Netflow, FPC), and other attack artifacts in support of incident investigations.
• Experience with vulnerability scanning solutions.
• Familiarity with Vulnerability Management program.
• Proficiency with any of the following: Anti-Virus, HIPS, ID/PS, Full Packet Capture, Host-Based Forensics, Network Forensics, and RSA Security.
• Have knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform.
• Understanding of mobile technology and OS (i.e., Android, iOS, Windows), VMware technology, and Unix and basic Unix commands.
• OTHER REQUIREMENTS.