Filter Jobs

Job type:

Full-time

• Supervises daily operations for a team of Security Officers; includes regular duties such as planning, scheduling, submitting timesheets, organizing, and directing execution of routine and special project work delegated by Security leadership.
• Aids in identifying and attracting prime talent by participating in the recruitment process, assessing qualifications, interviewing candidates, and hiring individuals to join the team.
• Contributes and supports the development, implementation, and enforcement of securit ...
• Guides team members on how to fulfil the special / unique requirements for NTT GDC clients, and ensures requirements are met; includes maintaining a positive and professional demeanor, proper engagement, and establishing client relationships.
• Remains alert and monitors security operations at all times during shift to ensure data center and surrounding property is secure and not accessed by unauthorized personnel, or open to sabotage, vandalism or theft.
• Acts as the first point of contact during security incidents, assist with investigations, gather evidence, and prepare incident reports. This also includes collaborating with relevant stakeholders to resolve incidents effectively.
• Administers the operation of all security related systems on shift, such as access control, CCTV, digital video recording, photo badging, etc.
• Reviews utilization and maintenance of security equipment.
• Organizes and conducts predefined actions in emergency situations and renders first aid, in events ranging from fire, work accidents, to illness.
• Recommends improvements to recordkeeping software to capture accurate security officer activities.
• To thrive in this role, you need to have: Familiarity with security management, preferably in a data center or critical infrastructure environment.
• Knowledge of physical security systems, access control, surveillance technologies, and incident response procedures.
• Recognition of leadership skills with the ability to learn to motivate and manage a team effectively.
• Analytical and problem-solving skills to identify and mitigate security risks and vulnerabilities.
• Good communicator, with ability to interact with stakeholders at all levels.
• Able to navigate security technologies and computer systems, including access control systems, CCTV, and incident management software.
• Familiar with occupational hazards and safety rules.
• Academic qualifications and certifications: High School or GED required.
• Post school qualification, or equivalent combination of work experience and occupational training / certifications.
• Certifications such as Certified Protection Professional (CPP), Certified Information Systems Security Professional (CISSP), or Physical Security Professional (PSP) are preferred.
• CPR/First Aid Certification preferred.
• Required experience: Prior Law-Enforcement and/or Military Schooling, a plus.
• Prior relevant experience in law enforcement, industrial, commercial, or governmental security and loss prevention.
• Prior relevant experience using security systems and tools, for example access control systems, CCTV etc.
• Developing experience in managing a team of Security Guards.
• On-site Working About NTT DATA
• NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
• Equal Opportunity Employer
• NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Skills:

Compliance, Project Management, Finance

Job type:

Full-time

• Understand business & IT strategy & directions together with all squad s vision and product roadmaps.
• Understand the regulatory matters and issues by coordinate and collaborate with Regulator, Compliance, IT security, Risk and Audit.
• Share and communicate the regulatory matters to all squads and related parties to ensure that they all understand, aware and comply.
• Define overall masterplan including the budgetary and activities related to regulations, compliance, IT security, risk and audit that align with business & IT strategy and directions.
• Define way of work that proper manage and align with agile way of working squads and related parties.
• Lead, manage and collaborate with related parties for all regulations initiatives, issues, and requests that initiated from regulator, compliance, risk, security and audit.
• Monitor and follow up to ensure that all related parties can deliver and solve the initiatives, issues and requests related to regulations, compliance, IT security risk and audit as per target.
• Work closely with related parties to come up and conclude the proper work around solutions that can mitigate the issues according to policies and risk acceptances.
• Summarize and report overall regulatory matters including initiatives, issues, requests to management and key stakeholders.
• Bachelor s or Master's Degree in computer science and engineering or any related fields.
• More than 10 years of working experience related to IT fields.
• 10 years of working experience in Relationship Management that understand, comply and control the regulation, compliance, security, risk and audit s expectation by collaborate and work closely with all related parties.
• Have strong knowledge on IT Compliance, Risk, Security, Audit and Governance.
• Have knowledge of Project management both traditional & agile methodology.
• Background in Auto Finance and/or Banking products & business processes is an advantage.
• Advance in MS word, excel, and power point to produce documentation.
• Excellent teamwork under pressure and time limitation.
• Effective communication and interpersonal throughout organization.
• Effective presentation.

Skills:

Teamwork, Compliance, Problem Solving

Job type:

Full-time

• IT Solutions & Services.
• Work with Passion, Professional and Teamwork.
• Grow up in Career path.
• We are looking for talented Cyber Security Engineer to find the most efficient way to create and to manage every cyber security solution for multiple clients.
• What we want?.
• To propose improvement to infrastructure and security systems and may present them to customer s upper management.
• Plan and carry out a customer s information security strategy to be the healthy security architectures for any IT project.
• To implement security system and ensure compliance with corporate cyber security policies and procedures.
• To provide professional supervision and guidance to security teams.
• Works with other business units, partners, and customers to maintain secure methods of security management.
• Who are we looking for?.
• Experience in IT infrastructure or Cyber Security field.
• Great awareness of Cyber Security trends and new technology update.
• Knowledge in Security Management is advantage. Excellent knowledge in Security Product (Antivirus/Firewall/VPN, IPS/IDS), Security Platform, Endpoint Solution, and Network Security solution is a plus.
• Excellent problem solving and analytical skill, planning and organizing skill and customer oriented.
• Security Profession Certification is a plus.
• Knowledge in AI and the ability to use AI-related tools and technologies.
• MFEC OKR:- As MFEC People, you will be a part of our talent team. Besides your main responsibilities, you do have special projects as part of OKR. However, the percentages will be different according to the positions and teams.
• Location: Branch: Chatuchak

Skills:

ISO 14001, Compliance, English

Job type:

Full-time

• Arrange and conduct proper training on safety issues for staff.
• Work with all managers to ensure proper safety equipment and protection systems are available and used. Also review with all managers on safety & security policies/procedures to ensure they are effective and workable.
• Follow up emergency equipment inspection and conduct emergency drill.
• Establish, manage and develop an effective security and loss control program to prevent and protect plant s properties.
• Establish and develop effective audit procedures to ensure the implementation of SHE & security policies/procedures are ongoing accordingly.
• Ensure SHE programs comply with the local standards & related regulations.
• Liaise with local fire station, first aid hospital, and security contractor to ensure that personnel and plant are safe.
• Provide personal protective equipment for employees and contractors.
• Set up Safety, Health and Environment committee meetings and conduct safety training and procedures for contractors, including hazardous substance spill prevention and control.
• Establish and implement environmental management programs to ensure that all environmental aspects are properly managed, and continual improvement is achieved.
• Monitor and report the plant environmental status (EIA and other regulations) to government agencies.
• Serve as the Environmental Management Representative (EMR) for ISO 14001 & ISO 45001 for Gulf NRV1 Company Limited and Gulf NRV2 Company Limited.
• Coordinate and perform industrial hygiene measurements.
• Coordinate with government agencies or visitors regarding environmental issues during plant visits.
• Perform other duties as assigned by the Plant Manager.
• Assist with plant housekeeping.
• Become familiar with plant operations.
• Play a vital role in quality, environmental, safety, and social management systems (ISO 14001, 9001, 45001, ESMS).
• Bachelor s degree in Environmental Science or equivalent technical training and experience; a higher degree is desirable..
• Minimum 4 years experience in the power generation industry or process plant operations, preferably in a supervisory capacity..
• 1-5 years of relevant experience in safety, health, environment, and security (SHE/S) or a related field..
• Experience of advanced incident investigation and prevention and managing positive changes in HSE performance.
• Knowledge of federal, state and local health and safety, and environmental regulations, and direct experience dealing with regulatory agencies and/or compliance officers.
• Strong leadership with a good interpersonal skills and excellent communications.
• Fluent in English both written and verbal.
• Ability to travel/ work upcountry.
• Goal-Oriented, Unity, Learning, Flexible.

Job type:

Full-time

• Lead the implementation and maintenance of IAM/IGA platforms (e.g., SailPoint, Saviynt, MS Entra).
• Manage, mentor and develop IAM/IGA team including analysts and administrators.
• Collaborate with application teams to understand and onboarding new applications with IAM system.
• User Identity Management: Overseeing the creation, modification, and removal of user accounts and access rights within the CP axtra's IAM system.
• Access Reviews and Audits: Conducting regular access reviews and audits to ensure compliance with security standards and regulatory requirements.
• Worked closely with Human Resources and Business team to address and resolve employee issues.
• Bachelor's or Master's degree in Computer Science, Information Security, or a related field.
• Proven experience 2-3 years in designing, implementing, and managing Identity and Access Management solutions, with a focus on SSO and IGA platforms.
• Strong understanding of IAM technologies, protocols, and standards (e.g., SAML, OAuth, LDAP, RBAC).
• Familiarity with IAM solutions from leading vendors like Onelogin, Azure AD, MS Entra, Saviynt, Sailpoint, etc.
• Solid knowledge of security frameworks, compliance standards, and best practices.
• Excellent leadership and communication skills, with the ability to work collaboratively across teams.
• CP AXTRA | Lotus's
• CP AXTRA Public Company Limited.
• Nawamin Office: Buengkum, Bangkok 10230, Thailand.
• By applying for this position, you consent to the collection, use and disclosure of your personal data to us, our recruitment firms and all relevant third parties for the purpose of processing your application for this job position (or any other suitable positions within Lotus's and its subsidiaries, if any). You understand and acknowledge that your personal data will be processed in accordance with the law and our policy. .

Skills:

Automation, Compliance, ISO 27001

Job type:

Full-time

• Design, implement, and maintain enterprise IAM solutions supporting identity lifecycle, authentication, and authorization.
• Manage user onboarding, access provisioning, and deprovisioning workflows integrated with ITSM and ITAM platforms.
• Develop and enforce access policies, governance standards, and automation processes for managing users and assets.
• Integrate IAM systems with core productivity, communication, and collaboration platforms.
• Implement and monitor privileged access controls to safeguard critical systems and infrastructure.
• Oversee secure remote access and connectivity across networks and cloud environments.
• Collaborate with IT, Security, and Operations teams to align IAM practices with ITSM change, incident, and request processes.
• Maintain accurate asset and account inventories through ITAM integrations to ensure compliance and visibility.
• Troubleshoot identity-related incidents and support audits, reviews, and internal controls.
• 3-5 years of experience in identity and access management engineering or IT administration.
• Strong understanding of IAM concepts: SSO, OIDC, SCIM,MFA, RBAC, lifecycle automation, and access governance.
• Experience integrating IAM with ITSM and ITAM systems for end-to-end user and asset lifecycle management.
• Hybrid Identity & Access Management, Managed AD and Google Workspace.
• Familiarity with privileged access controls, VPNs, and secure network access solutions.
• Knowledge of IT operations and service delivery processes (incident, change, and request management).
• Scripting or automation experience to streamline access and provisioning workflows.
• Strong documentation, communication, and cross-team collaboration skills.
• Nice to Have.
• Experience in fintech, blockchain, or crypto environments.
• Exposure to zero trust and identity governance models.
• Understanding of compliance and security frameworks (SOC 2, ISO 27001, NIST).
• Knowledge of basic network and infrastructure.

Skills:

Social media, Microsoft Office, Mandarin, English

Job type:

Full-time

• Bachelor s Degree or at least Diploma or equivalent in any discipline.
• Must have B2 level English Language proficiency (reading, writing, speaking and aural comprehension) https://www.coe.int/en/web/common-european-framework-reference-languages/level-descriptions.
• Essential Requirements: Experience of working in a high transactional role, in a KPI driven environment.
• A background in either content moderation, customer service or any other role that involves working with daily targets.
• You will have a track record that demonstrates your ability to perform multiple tasks while paying close attention to detail.
• Mentally and emotionally able to handle offensive or disturbing behaviour, language, and content.
• Availability to work rotational shifts.
• Must be able to speak, read and write the required language to support.
• Preferred requirements Deep familiarity with social media, internet laws, policy regulations and market knowledge.
• Content Moderation experience is preferred, but not essential.
• Bachelor's degree is preferred, however not essential.
• Technical Skills: Minimum typing speed of 40wpm with a 90% accuracy score.
• Computer literate and fully conversant in Microsoft Windows and Microsoft Office.
• Responsibilities:Review, classify and/or eliminate content uploaded by users, according to the parameters and policies defined by the client.
• Comply with the key performance indicators defined by the specific client operation and maintain a high level of quality in each case that you review.
• Make timely escalations in accordance with established procedures.
• Comply with corporate confidentiality policies and ensure the appropriate handling of customer information, to guarantee information security.
• Participate in continuous training programs established by the company for optimal development in the role.
• Comply with all instructions and procedures related and complementary to the role.
• Be attentive to the communications that arrive through the different communication channels of the company.
• At TP we care deeply about the Health and Wellness of our employees, and we provide a dedicated Trust & Safety wellness program to promote and support whole person wellness throughout your employment journey. We have dedicated Wellness teams for each account who work to integrate wellness across the entire employee experience and our moderation teams are strongly encouraged to actively participate in training, group sessions, planned activities and initiatives, to foster a culture of Wellness.
• TP is an equal opportunity employer and value diversity in our company. Therefore, we do not discriminate based on race, religion, national origin, gender, sexual orientation, age, marital status, veteran status, disability, or any other protected status.

Job type:

Full-time

• Monitor all data center systems including power, cooling, fire suppression, and physical security systems during the shift.
• Perform routine inspections and preventive maintenance of data center equipment to ensure optimal performance.
• Respond promptly to alerts, alarms, and incidents, escalating issues to higher-level technical teams or management as necessary.
• Maintain accurate logs and records of all operational activities, incidents, and maintenance tasks performed during the shift.
• Support the deployment, relocation, and removal of hardware and equipment in accordance with standard operating procedures.
• Ensure compliance with company policies, safety protocols, and regulatory requirements related to data center operations.
• Coordinate with cross-functional teams (network, facilities, security) to resolve operational issues efficiently.
• Assist in maintaining physical security and access control for the data center facility.
• Participate in shift handover meetings to ensure seamless transition and communication between shifts.
• Bachelor Degree s in Engineering.
• Prior experience in data center operations or facility management is an advantage.
• Basic understanding of data center infrastructure components (power, cooling, fire safety, security).
• Ability to work in a 24/7 shift environment including nights, weekends, and holidays.
• Strong problem-solving skills and attention to detail.
• Ability to follow procedures and work independently or as part of a team.
• Physical ability to handle equipment and perform routine inspections.
• Fluent in English both written and verbal (Minimum 600 TOEIC score).
• Goal-Oriented, Unity, Learning, Flexible.

Job type:

Full-time

• Monitor all data center systems including power, cooling, fire suppression, and physical security systems during the shift.
• Perform routine inspections and preventive maintenance of data center equipment to ensure optimal performance.
• Respond promptly to alerts, alarms, and incidents, escalating issues to higher-level technical teams or management as necessary.
• Maintain accurate logs and records of all operational activities, incidents, and maintenance tasks performed during the shift.
• Support the deployment, relocation, and removal of hardware and equipment in accordance with standard operating procedures.
• Ensure compliance with company policies, safety protocols, and regulatory requirements related to data center operations.
• Coordinate with cross-functional teams (network, facilities, security) to resolve operational issues efficiently.
• Assist in maintaining physical security and access control for the data center facility.
• Participate in shift handover meetings to ensure seamless transition and communication between shifts.
• Bachelor Degree s in Engineering.
• Prior experience in data center operations or facility management is an advantage.
• Basic understanding of data center infrastructure components (power, cooling, fire safety, security).
• Ability to work in a 24/7 shift environment including nights, weekends, and holidays.
• Strong problem-solving skills and attention to detail.
• Ability to follow procedures and work independently or as part of a team.
• Physical ability to handle equipment and perform routine inspections.
• Fluent in English both written and verbal (Minimum 600 TOEIC score).
• Goal-Oriented, Unity, Learning, Flexible.

Skills:

Continuous Integration, Legal, Procurement

Job type:

Full-time

• Support regular group assessments to evaluate security risks, security maturity and compliance gaps across SCBX Group.
• Policy, Procedures, Standards & Guidelines.
• Support the development, review, and update of security policies, procedures, standards, and guidelines to ensure robust organizational controls.
• Regularly update documentation to reflect the evolving threat landscape and regulatory requirements.
• Security Consultation.
• Lead conversation with senior leadership across SCBX Group and provide value-added insights to delivered outcome.
• Develop a comprehensive proposal and project plan that secures buy-in from senior stakeholders, while establishing an effective delivery approach for the working group to ensure successful project delivery and valued outcomes.
• Embrace creative problem-solving and flexible approaches to navigate challenges, ensuring that critical outcomes are consistently achieved while effectively managing obstacles.
• Provide expert guidance and recommendations to internal and external stakeholders on the best security practices and solutions to address operational and compliance issues.
• Recommend improvements for security governance and operational resilience.
• SDLC Security & DevSecOps Integration.
• Develop and implement security frameworks and best practices within the SDLC to minimize vulnerabilities.
• Collaborate with development, operations, and security teams to embed security controls and processes within continuous integration/continuous deployment (CI/CD) pipelines.
• Advise on the integration of automated security testing tools and manual assessments throughout development, staging, and production phases.
• Monitor and evaluate the effectiveness of security controls, adjusting strategies as required.
• Pentester Governance & Annual Panel Selection.
• Oversee and manage the overall pentesting program, including planning, scoping, and executing external and internal penetration tests.
• Develop and enforce governance policies for third-party penetration testing, ensuring compliance with internal and industry standards.
• Lead the annual selection process of the pentester panel by evaluating vendor capabilities, reviewing performance metrics, and coordinating panel evaluations.
• Collaborate with legal, procurement, and compliance teams to negotiate contracts and service level agreements (SLAs) with selected vendors.
• Application Security Testing.
• Define and maintain comprehensive application security testing strategies, including static and dynamic code analysis, vulnerability assessments, and risk management.
• Coordinate regular security assessments, penetration tests, and vulnerability remediation efforts.
• Analyze findings from testing activities and provide actionable recommendations to mitigate risks.
• Work with development teams to ensure security testing is integrated into agile and DevOps methodologies.
• Identity Architecture & Strategy.
• Define and implement enterprise-wide identity governance frameworks, access models, and role designs.
• Develop future-ready IAM architectures to support Zero Trust security, cloud adoption, and business scalability.
• Design identity lifecycle processes such as automated provisioning, de-provisioning, RBAC, and approval workflows.
• Align IAM practices with global standards (NIST, ISO 27001, CIS) and regulatory mandates (PCI-DSS, GDPR, BOT).
• Establish and maintain a comprehensive security governance framework with clear roles, responsibilities, and performance metrics.
• IAM Solution Delivery & Operations.
• Lead the design, deployment, and integration of solutions including SSO, MFA, PAM, and CIAM.
• Oversee directory services and federation platforms such as Active Directory, Azure AD, and cloud identity providers.
• Collaborate with implementation teams and vendors to configure and deploy IAM technologies that ensure security, scalability, and operational excellence.
• Minimum of 12+ years in information security consultancy, with a proven track record in Application security, DevSecOps integration, Vulnerability Management, Penetration testing and Digital Identity.
• Demonstrated expertise in developing and implementing security frameworks and policies that embed secure coding practices and automated security testing within complex, enterprise-level SDLC environments.
• Demonstrates a deep understanding of global security frameworks, including NIST, ISO 27001/27002, PCI-DSS, BOT and CIS Controls.
• Extensive experience in conducting large-scale security assessments, performance measurements, risk management, and security strategy development that align with organizational objectives.
• Relevant certifications such as CISSP, CISM, CRISC, OSCP, or equivalent are highly desirable.

Job type:

Full-time

• Support regular group assessments to evaluate security risks, security maturity and compliance gaps across SCBX Group.
• Policy, Procedures, Standards & Guidelines.
• Support the development, review, and update of security policies, procedures, standards, and guidelines to ensure robust organizational controls.
• Regularly update documentation to reflect the evolving threat landscape and regulatory requirements.
• Security Consultation.
• Lead conversation with senior leadership across SCBX Group and provide value-added insights to delivered outcome.
• Develop a comprehensive proposal and project plan that secures buy-in from senior stakeholders, while establishing an effective delivery approach for the working group to ensure successful project delivery and valued outcomes.
• Embrace creative problem-solving and flexible approaches to navigate challenges, ensuring that critical outcomes are consistently achieved while effectively managing obstacles.
• Provide expert guidance and recommendations to internal and external stakeholders on the best security practices and solutions to address operational and compliance issues.
• Recommend improvements for security governance and operational resilience.
• Security Awareness & Training.
• Develop and manage security e-learning programs, newsletters, and knowledge-sharing initiatives to enhance employee awareness.
• Conduct phishing drills and security simulations to assess and improve employee resilience against cyber threats.
• Design specialized training for executives and high-risk users to enhance their understanding of emerging threats and security best practices.
• Implement interactive learning methods such as gamification, security awareness series, real-world security challenges to encourage participation, on-site engagements to reinforce security culture.
• Digital Identity.
• Assist in Identity Governance & Administration (IGA) by supporting policy enforcement, identity lifecycle management, and compliance monitoring.
• Support Access Management by integrating authentication mechanisms such as SSO, MFA, and adaptive access controls into enterprise systems.
• Contribute to Role Management, ensuring structured RBAC/ABAC models and periodic access reviews.
• Help implement Privileged Access Management (PAM) controls, monitoring privileged user sessions, and enforcing security best practices.
• Assist in Identity Integration & Directory Services, ensuring seamless identity synchronization and federation across cloud and on-prem systems.
• Security Innovation.
• Research and evaluate emerging cybersecurity technologies, AI-driven security analytics, and automation tools, conducting PoCs to assess feasibility.
• Explore AI-driven security solutions for threat detection - prevention, and automated security operation to enhance cybersecurity resilience.
• Provide strategic insights to align security innovations with digital transformation, FinTech, and cloud security initiatives across subsidiaries.
• Partner with internal teams, vendors, and industry leaders to benchmark security advancements and drive innovation initiatives..
• Minimum of 5+ years in information security consultancy, with a proven track record in security assessment, identity & access and data security.
• Experience in conduct IAM solutions, including IGA, identity assessment - planning, access management, PAM, and identity integration within enterprise environments.
• Demonstrates a deep understanding of global security frameworks, such as NIST, ISO 27001/27002, PCI-DSS, BOT and CIS Controls.
• Extensive experience in conducting large-scale security assessments, performance measurements, risk management, and security strategy development that align with organizational objectives.
• Relevant certifications such as from identity products or equivalent are highly desirable.

Skills:

Express, Risk Management

Job type:

Full-time

• Serve as the main point of contact for gathering evidence, CCTV footage, and relevant information for assigned fraud cases.
• Coordinate with other relevant teams to prepare for interrogation sessions.
• Participate in the interrogation sessions of offenders and culprits.
• Draft investigation reports for supervisor review.
• Act as a CCTV real-time monitor as requested or assigned by the supervisor.
• Participate in security-related projects as assigned.
• Manage other Security-Related tasks as assigned.
• 1-Year contract (with the possibility of extension)
• Working from Monday to Saturday, with Sundays off
• Requirements: Bachelor's degree in a related field.
• Experience in Fraud Investigation, Fraud Prevention, Loss Prevention, Government Affairs, Government Relations, or Risk Management-related positions.
• Previous experience as a Police/Military Official or other government official is advantageous.
• Familiarity with reviewing CCTV footage.
• Availability to be on-call for emergency issues.

Skills:

Automation, English

Job type:

Full-time

• Establish a consistent approach to handle security incidents under committed OLA, SLA, MTTX matrix..
• Effectively and efficiently contain and eradicate cyber threats with all subsidiaries.
• Recover impacted assets from technical and business damage done by cyber threats.
• Develop and distribute security incident reports to all key stakeholders.
• Incorporate root cause and lessons learned into an improvement plan.
• Strengthen processes and maturity of Group security operations.
• Continuous improve security incident operations.
• Security Incident Identification, Triage and Response with MS Sentinel SIEM and SOAR cover 24*7 detection & analysis, containment, eradication & post incident investigation on high, rather high, moderate, rather low and low severity..
• Access to internal or external IR specialists to support in Digital forensics investigations and IR team, Threat hunting using Microsoft Sentinel to proactively identify threats in the environment.
• Gather cyber threat insights on security incidents through governance reporting covering weekly operational reports, monthly tactical reports and quarterly management reports.
• Review use-cases onboarding and continuous optimizations to comprehensively detect threats for all subsidiaries environments.
• Works smooth with SOC operation outsources team under the SCBX Cyber Defense Operating Model..
• Support in helping subsidiaries to containment and resolve security incidents within MTTC SLA.
• Maintained and updated security incident response playbooks and runbooks with all subsidiary s acknowledgement.
• Develop, design and participate in cyber tabletop exercises.
• 5-7 years experienced in cyber security incident response or SOC environments. If you worked in Financial industry will be plus score..
• Strong knowledge of cyber security principles and practices, including vulnerability assessment, incident response, and SOC architecture. If you have Cyber/IR certificates related will be plus score..
• Strong knowledge and skills of security threats, attack countermeasures and threat detection/prevention/mitigation.
• Working experience in SOC (Security Operations Center) with hands-on experience with Automated Analytic Rules and Automation Playbook on MS Sentinel..
• Experience with a variety of cyber security tools such as SIEM, EDR, Firewall, IPS, etc and SOC technologies. Excellent analytical and problem-solving skills.
• Hands-on experience in provisioning and interpreting log and network packet data, cloud environment.
• Ability to work independently and as part of a team.
• Ability to communicate complex technical concepts to both technical and non-technical audiences in both of Thai and English..
• Experienced in multi-vendor management.
• Join our team and contribute to ensuring the best availability and efficiency of our Cyber Defense strategy and Cyber Defense Operating Model.
• Apply today to play a crucial role in safeguarding our organization's security.

Skills:

Network Infrastructure, English

Job type:

Full-time

• Good command of English and computer literacy.
• Work @ Sriracha, Chonburi.
• ROLE & RESPONSIBILITY.
• Provide effective and efficient monitoring, troubleshooting, gap improvement, sustainable management, and new projects for the OT system of the Advanced Process Control Network (APCN) with a focus to enhance performance in term of high availability and cyber resilience/ cybersecurity.
• Fully manage of PI system, PI connection, and PI user in all dimensions.
• Collaborate with cross-functional teams to address OT network infrastructure, communication, connection, and information security requirements.
• Leading new projects aimed at enhancing the performance and security of the APCN.

Skills:

Risk Management, Kubernetes, Docker

Job type:

Full-time

• Design, develop, and maintain security systems, tools, and best practices across the stack (frontend, backend, mobile, and infrastructure).
• Identify, assess, and mitigate security vulnerabilities through proactive risk management and threat modeling.
• Collaborate with product managers and developers to embed security into the software development lifecycle (SDLC).
• Develop and enforce policies for secure coding, data protection, and incident response.
• Implement robust authentication and authorization mechanisms.
• Conduct regular security assessments, including penetration testing and code reviews.
• Monitor, detect, and respond to security incidents using advanced tools and methodologies.
• Enhance infrastructure security using Kubernetes, Docker, and cloud platforms (GCP, AWS).
• Stay current on emerging threats, vulnerabilities, and security trends, and recommend actionable insights to improve defenses.
• Champion security awareness across the organization, including training sessions and knowledge-sharing activities.
• Ensure compliance with relevant security standards and regulations such as ISO 27001, PDPA, GDPR, SOC 2, or PCI DSS.
• Basic QualificationsProven expertise in application security, cloud security, and infrastructure security.
• Proficiency in securing systems built with technologies such as Node.js, Golang, Elixir, Python, React, Svelte, or Flutter.
• Experience with tools like Docker, Kubernetes, and cloud services (GCP, AWS).
• Strong understanding of cryptographic principles and secure communication protocols.
• Familiarity with CI/CD pipelines and secure DevOps practices.
• Hands-on experience with security tools for vulnerability scanning, penetration testing, and threat detection.
• Deep understanding of database security, especially with PostgreSQL or other relational or non-relational databases.
• Strong analytical and problem-solving skills with a security-first mindset.
• Excellent communication skills and the ability to collaborate effectively in Agile teams.
• Self-motivation, adaptability, and a strong work ethic.
• Preferred Qualifications We re especially excited if you bring:Experience leading security initiatives or mentoring other engineers in security best practices.
• Expertise in compliance frameworks such as ISO 27001, PDPA, GDPR, SOC 2, or PCI DSS.
• Advanced knowledge of security monitoring and incident response systems.
• Strong system design skills with a focus on secure architectures and long-term trade-offs.
• A proven track record of securing fast-paced, high-growth tech environments.
• A passion for securing user-centric products and contributing to their success.
• Perks & Benefits Flat Structure As we continue to grow fast, we strive to retain our culture where everyone is heard, contributes, and grows with the company..
• Work-life Harmony We believe that quality time outside of work is important to sustaining a healthy and happy lifestyle.
• Remote Work Hybrid-mode activated! It comes with the package: flexibility, focus and productivity!.
• Urban Office One breath from Phrom Phong BTS. No sweat whatsoever! The office should also feel like a second home so we dedicated a lot of care and resources into building the best environment for you to wake up to every morning.
• Fun Workshop The best relationships are built over new experiences, that s why we have workshops filled with a range of activities for you to look forward to and enjoy.
• Game Tournament It s getting fun and competitive! Challenge doesn t only have to come from work. Own the championship and show the peeps how great of a gamer (and player) you are.
• Group Insurance Health comes first, we know, don t worry, we ve got you covered.
• Health & Wellness Only a healthy army wins the war. We invest to take care of you from physical, mental and happiness-level. Adopted health & wellness applications plus activities to make sure everyone here is on cloud nine

Skills:

Compliance

Job type:

Full-time

• Validates, classifies, priorities and opens ticket.
• Acting as focal contact point for report security incidents.
• Document and escalate incidents (including event's history, status, and potential impact for further action) that may cause ongoing and immediate impact to the environment.
• Provide daily summary reports of security incidents.
• Responds to security alerts generate within the SLA time window.
• Follow-up and tracking security incidents base on team process.
• Examine network topologies to understand data flows through the network.
• Validate security incidents alerts against network traffic using packet analysis tools.
• Isolate or remove malware.
• Identify applications and operating systems of a network device based on network traffic.
• Assist in the construction of signatures which can be implemented on cyber defense network tools in response to new or observed threats within the network environment or enclave.
• Notify cybersecurity service provider team members of suspected cyber incidents, status, and potential impact for further action in accordance with the organization's cyber incident response plan.
• Work with stakeholders to resolve computer security incidents and vulnerability compliance.
• Who are we looking for?.
• Knowledge of computer networking concepts and protocols, and network security methodologies.
• Analytical and problem-solving skills are required.
• Knowledge of network traffic analysis methods.
• Knowledge of cyber defense and information security policies, procedures, and regulations.
• Experience in IT Security, Network Security or Security Compliance.
• Knowledge of common security tools such as anti-virus, firewall and intrusion detection system.
• Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services. Able to work in shift.
• Location: Head Office: Chatuchak, SJ Infinite One Business Complex

Skills:

Fast Learner, Burmese, English

Job type:

Full-time

• You will ensure legal compliance and safety of content uploaded to our platform.
• You are responsible for the development, improvement, and maintenance of standards for the security of our online communities.
• You will improve the content management strategy for short video platforms.
• You are responsible for coordinating with supervising departments for timely management of content that violates our policies.
• Minimum Qualifications:You are a fast learner and a good communicator and can speak, read and write fluently in English, Thai, and Burmese.
• Willing to work on shifts.
• You pay attention to detail and have a passion for maintaining a high standard of work.
• You have the resilience and persistence to handle routine daily tasks efficiently and accurately.
• Your ability to work in a high tempo environment, adapt, respond to day-to-day challenges of the role.
• Your resilience and commitment to self-care to manage the emotional demands of the role.
• Preferred Qualifications:You possess cultural sensitivity and understanding relating to global/ regional current affairs. Familiarity with internet laws and regulations, in particular reviewing online content, would be a good plus.
• You have active usage and interest in short video platforms.
• Experience in a BPO / call center/customer service environment is a plus.
• Job Information
• About TikTok
• TikTok is the leading destination for short-form mobile video. At TikTok, our mission is to inspire creativity and bring joy. TikTok's global headquarters are in Los Angeles and Singapore, and we also have offices in New York City, London, Dublin, Paris, Berlin, Dubai, Jakarta, Seoul, and Tokyo.
• Why Join Us
• Inspiring creativity is at the core of TikTok's mission. Our innovative product is built to help people authentically express themselves, discover and connect - and our global, diverse teams make that possible. Together, we create value for our communities, inspire creativity and bring joy - a mission we work towards every day.
• We strive to do great things with great people. We lead with curiosity, humility, and a desire to make impact in a rapidly growing tech company. Every challenge is an opportunity to learn and innovate as one team. We're resilient and embrace challenges as they come. By constantly iterating and fostering an "Always Day 1" mindset, we achieve meaningful breakthroughs for ourselves, our company, and our users. When we create and grow together, the possibilities are limitless. Join us.
• Diversity & Inclusion
• TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.
• Trust & Safety
• TikTok recognises that keeping our platform safe for the TikTok communities is no ordinary job which can be both rewarding and psychologically demanding and emotionally taxing for some. This is why we are sharing the potential hazards, risks and implications in this unique line of work from the start, so our candidates are well informed before joining.
• We are committed to the wellbeing of all our employees and promise to provide comprehensive and evidence-based programs, to promote and support physical and mental wellbeing throughout each employee's journey with us. We believe that wellbeing is a relationship and that everyone has a part to play, so we work in collaboration and consultation with our employees and across our functions in order to ensure a truly person-centred, innovative and integrated approach.

Skills:

ISO 27001

Job type:

Full-time

• Protect the organization's computer networks and systems against a range of cyber threats, such as hacking attempts, data breaches, and different types of cyber attacks. The
• responsibilities of this role include creating, deploying, and overseeing security strategies and technologies to defend the organization IT security..
• Lead the strategic direction, development, and implementation of cybersecurity solutions and practices to protect the organization from sophisticated cyber threats and ...
• Serve as the foremost cybersecurity expert within the organization, providing deep technical expertise and leadership in the design, evaluation, and optimization of complex security architectures.
• Develop comprehensive cybersecurity frameworks that align with industry best practices and regulatory standards, ensuring the organization's resilience against cyber attacks.
• Conduct sophisticated risk assessments and threat modeling exercises to identify potential security gaps and develop advanced strategies for mitigation and prevention.
• Lead the incident response and crisis management efforts for high-impact security breaches, coordinating with cross-functional teams to ensure rapid containment and recovery.
• Drive the adoption of cutting-edge security technologies and methodologies, including artificial intelligence and machine learning, to enhance detection and response capabilities.
• Establish and maintain strong relationships with external cybersecurity agencies, industry groups, and technology partners to stay abreast of emerging threats and trends.
• Develop and manage the cybersecurity budget, ensuring strategic allocation of resources to high-priority projects and initiatives.
• Advanced degree in Computer Science, Information Security, or a related field, with specialized knowledge in cybersecurity.
• A minimum of 5 years of experience in Infrastructure, 3 years of cybersecurity, with at least 2 years in a strategic leadership or management role overseeing cybersecurity functions.
• Professional cybersecurity certifications, such as CISSP, CISM, CCSP, or similar, are required.
• Proven expertise in developing and implementing cybersecurity strategies and architectures to protect complex enterprise environments.
• Other: Deep knowledge of the cybersecurity landscape, including emerging threats, advanced persistent threats (APT), regulatory requirements, and industry best practices.
• Other: ISO 27001..

Job type:

Full-time

• Entry-level experience with troubleshooting and providing support in security, network, DATA centre, systems, or storage administration and monitoring services within a medium to large ICT organization.
• Working knowledge of ITIL processes.
• Skills in active listening techniques such as paraphrasing, probing for further relevant information, and refraining from interrupting.
• Highly disciplined in handling of tickets on day-to-day basis. Act promptly as per defined Sop s.
• Try to resolve as many tickets as possible using available Knowledge articles or provided Sop s.
• Good understanding of using ITSM tools.
• Ability to communicate and work across different cultures and social groups.
• Capacity to plan activities and projects well in advance, adapting to changing circumstances as needed.
• Positive outlook and ability to perform well under pressure.
• Eagerness to work diligently and extend hours when necessary.
• Client-centric approach, always putting clients at the forefront of interactions.
• Bachelor's degree or equivalent qualification in IT/Computing or demonstrated equivalent work experience.
• On-site Working About NTT DATA
• NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
• Equal Opportunity Employer
• NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Skills:

Internal Audit, Research, System Administration

Job type:

Full-time

• Implements IT security improvements by assessing current situation; evaluating trends; anticipating requirements.
• Protects IT system by defining access privileges, control structures, and required resources.
• Process & analyze to gain insights on past IT areas on, current or potential attacks and threats that pose a risk to the organization.
• Primary point of contact with Internal Audit. Periodically review, update, implement and communicate changes to IT policies and procedures and General IT Controls. Facilitate internal and external audit processes by participating in scoping discussions and walk-throughs, delivering evidence that controls are operating as defined, remediating deficiencies, and acting on recommendations.
• Safeguards IT infrastructure and system as well as information system assets by identifying and solving potential and actual security problems.
• Research cyber security topics and promote Cyber security awareness throughout Thaioil.
• EDUCATION.
• Bachelor s degree in computer science, Information Systems, or equivalent education or work experience.
• EXPERIENCE.
• Relevant experience, especially in IT working environment.
• Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.
• Hands-on experience analyzing high volumes of logs, network data (e.g., Netflow, FPC), and other attack artifacts in support of incident investigations.
• Experience with vulnerability scanning solutions.
• Familiarity with Vulnerability Management program.
• Proficiency with any of the following: Anti-Virus, HIPS, ID/PS, Full Packet Capture, Host-Based Forensics, Network Forensics, and RSA Security.
• Have knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform.
• Understanding of mobile technology and OS (i.e., Android, iOS, Windows), VMware technology, and Unix and basic Unix commands.
• OTHER REQUIREMENTS.