Filter Jobs

Skills:

ISO 27001, Python, PowerShell

Job type:

Full-time

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 5 years of experience in IT security and governance.
• Strong understanding of IT security principles, practices, and technologies.
• Knowledge of relevant security standards and regulations (e.g., ISO 27001, NIST, GDPR, HIPAA, PCI DSS).
• Experience with risk assessment and vulnerability management.
• Experience with security incident response and management.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Ability to work independently and as part of a team..
• Relevant certifications (e.g., CISSP, CISM, CISA, Security+).
• Experience with cloud security (AWS, Azure, GCP) and On-Premises.
• Experience with security information and event management (SIEM) systems.
• Experience with scripting languages (e.g., Python, PowerShell).
• Experience with penetration testing.
• Ability to maintain confidentiality and handle sensitive information.
• Ability to adapt to changing technologies and security threats.
• Strong attention to detail and organizational skills.
• Ability to create and maintain clear and concise documentation..
• โบนัสประจำปี.
• ลาพักร้อน เมื่อพ้นทดลองงาน.
• ลา Workcation.
• กองทุนสำรองเลี้ยงชีพ.
• ประกันสังคม / ประกันสุขภาพ / ประกันชีวิต / ประกันอุบัติเหตุ.
• วันหยุดตามกฏหมาย (ไม่น้อยกว่า 13วัน).
• ลาหยุดในเดือนเกิด.
• ตรวจสุขภาพประจำปี.
• เงินช่วยเหลือสมรส.
• สิทธิคุณพ่อลาเลี้ยงบุตร.
• เงินช่วยเหลือฌาปนกิจ.
• Co working Space.
• ฟิตเนต.
• Point แลกของรางวัล.
• บริการปรึกษานักจิตวิทยาออนไลน์..
• การเดินทาง.
• BTS: สถานีหมอชิต, ห้าแยกลาดพร้าว.
• MRT: สถานีพหลโยธิน.
• บริการเรียกรถผ่าน App MuvMi..
• ติดตามข่าวสารจาก SC ASSET ได้ที่.
• http://insidesc.scasset.com/..

Skills:

ISO 27001

Job type:

Full-time

• Provide security consultation on new Core Bank and its architecture e.g. application, container and DepSecOps.
• Provide expert advice on security architecture for applications, cloud (e.g. AWS, Azure, OCP), and on-premises infrastructure.
• Ensure alignment between business requirements and security controls.
• Ensure the solution complies with internal policies and external standards (e.g. ISO 27001, NIST CSF, PDPA, BOT, PCI-DSS, etc.).
• Develop and maintain security documentation (e.g. Security standard, Security requirements, Security hardening guides).
• Security Assessment.
• Assess security scope including estimate required efforts for IT project.
• Conduct and coordinate penetration testing, vulnerability assessments, web application scans, and related activities.
• Provide practical recommendations for IT & BU.
• Maintain and follow up the findings..
• Apply now if you have these advantages.
• Master/Bachelor s degree in Computer Science, Computer Engineer, Information Technology or related fields.
• Minimum of 3-8 years of experience in Information Security design, consulting and assessment (Banking Financial industries are advantage)
• Experience with Security architecture design and consulting
• Experience with Security assessment e.g. penetration tests, source code review, VA scan, DAST
• Experience with Security consulting on DevSecOps
• Experience with Security consulting on Cloud environment e.g. AWS, Azure is advantage
• Experience with Security consulting on mobile application security is advantage.
• Knowledge in local security requirements from Regulatory.
• Relevant local and international security standards and best practices such as OWASP, NIST, ISO 27001, CIS Controls, SOC 2, PCI-DSS, and PDPA (Thailand).
• Why join Krungsri?.
• As a part of MUFG (Mitsubishi UFJ Financial Group), we a truly a global bank with networks all over the world.
• We offer a striking work-life balance culture with hybrid work policies (3 days minimum in office per week).
• Unbelievable benefits such as attractive bonuses, employee loan with special rates and many more..
• Apply now before this role is close. **.
• FB: Krungsri Career(http://bit.ly/FacebookKrungsriCareer [link removed]).
• LINE: Krungsri Career (http://bit.ly/LineKrungsriCareer [link removed]).
• Talent Acquisition Department
• Bank of Ayudhya Public Company Limited
• 1222 Rama III Rd., Bangpongpang, Yannawa, Bangkok 10120.
• หมายเหตุ ธนาคารมีความจำเป็นและจะมีขั้นตอนการตรวจสอบข้อมูลส่วนบุคคลเกี่ยวกับประวัติอาชญากรรมของผู้สมัคร ก่อนที่ผู้สมัครจะได้รับการพิจารณาเข้าร่วมงานกับธนาคารกรุงศรีฯ.
• Remark: The bank needs to and will have a process for verifying personal information related to the criminal history of applicants before they are considered for employment with the bank..
• Applicants can read the Personal Data Protection Announcement of the Bank's Human Resources Function by typing the link from the image that stated below.
• EN (https://krungsri.com/b/privacynoticeen).
• ผู้สมัครสามารถอ่านประกาศการคุ้มครองข้อมูลส่วนบุคคลส่วนงานทรัพยากรบุคคลของธนาคารได้โดยการพิมพ์ลิงค์จากรูปภาพที่ปรากฎด้านล่าง.
• ภาษาไทย (https://krungsri.com/b/privacynoticeth).

Skills:

English

Job type:

Full-time

• Review, classify and/or remove content according to client guidelines, using specific tools and channels.
• Understand and remain updated on changing client policies and guidelines.
• Investigate, resolve, and relay complex content issues to the broader Trust and Safety team.
• Serve as an advocate for the user community.
• Participate in process improvement initiatives that improve quality and efficiency of work.
• Participate in continuous training programs and workgroup discussions for optimal development in the role.
• Engage in conversation around socially sensitive topics with the purpose of keeping our communities safe..
• Basic Qualifications/Skills Needed.
• Strong coping, emotional resilience, and stress-management skills.
• Excellent comprehension, communication in English and Thai.
• Ability to perform duties objectively, devoid of inherent biases or personal beliefs, in the best interest of client policies.
• Strong attention to detail.
• Comfort synthesizing and analyzing information from multiple streams.
• Strong critical thinking and decision-making skills.
• Deep familiarity and passion for the internet, internet platforms, and internet culture.
• High affinity and cultural awareness of political and social situations regarding the relevant market and region that will be supported .
• Ability to work well individually and as part of a team.
• Ability to work differing rotations/shifts and non-standard work hours.
• Flexibility in meeting changing business needs in a fast-paced environment.
• Commitment to quality, efficiency, and effectiveness.
• Previous business process outsourcing, customer service, or content moderation experience is a plus.
• Shift timings/requirements to work weekends and holidays.

Job type:

Full-time

• Supervises daily operations for a team of Security Officers; includes regular duties such as planning, scheduling, submitting timesheets, organizing, and directing execution of routine and special project work delegated by Security leadership.
• Aids in identifying and attracting prime talent by participating in the recruitment process, assessing qualifications, interviewing candidates, and hiring individuals to join the team.
• Contributes and supports the development, implementation, and enforcement of securit ...
• Guides team members on how to fulfil the special / unique requirements for NTT GDC clients, and ensures requirements are met; includes maintaining a positive and professional demeanor, proper engagement, and establishing client relationships.
• Remains alert and monitors security operations at all times during shift to ensure data center and surrounding property is secure and not accessed by unauthorized personnel, or open to sabotage, vandalism or theft.
• Acts as the first point of contact during security incidents, assist with investigations, gather evidence, and prepare incident reports. This also includes collaborating with relevant stakeholders to resolve incidents effectively.
• Administers the operation of all security related systems on shift, such as access control, CCTV, digital video recording, photo badging, etc.
• Reviews utilization and maintenance of security equipment.
• Organizes and conducts predefined actions in emergency situations and renders first aid, in events ranging from fire, work accidents, to illness.
• Recommends improvements to recordkeeping software to capture accurate security officer activities.
• To thrive in this role, you need to have: Familiarity with security management, preferably in a data center or critical infrastructure environment.
• Knowledge of physical security systems, access control, surveillance technologies, and incident response procedures.
• Recognition of leadership skills with the ability to learn to motivate and manage a team effectively.
• Analytical and problem-solving skills to identify and mitigate security risks and vulnerabilities.
• Good communicator, with ability to interact with stakeholders at all levels.
• Able to navigate security technologies and computer systems, including access control systems, CCTV, and incident management software.
• Familiar with occupational hazards and safety rules.
• Academic qualifications and certifications: High School or GED required.
• Post school qualification, or equivalent combination of work experience and occupational training / certifications.
• Certifications such as Certified Protection Professional (CPP), Certified Information Systems Security Professional (CISSP), or Physical Security Professional (PSP) are preferred.
• CPR/First Aid Certification preferred.
• Required experience: Prior Law-Enforcement and/or Military Schooling, a plus.
• Prior relevant experience in law enforcement, industrial, commercial, or governmental security and loss prevention.
• Prior relevant experience using security systems and tools, for example access control systems, CCTV etc.
• Developing experience in managing a team of Security Guards.
• On-site Working About NTT DATA
• NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
• Equal Opportunity Employer
• NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Experience:

7 years required

Skills:

Electrical Engineering, Mechanical Engineering, English, Thai

Job type:

Full-time

• วางแผน และดำเนินการในการบำรุงรักษาอุปกรณ์และโครงสร้างต่าง ๆ ในสปา เพื่อให้มีการทำงานอย่างมีประสิทธิภาพและคงทนต่อการใช้งานในระยะยาว.
• จัดการทีมวิศวกรรมและช่างซ่อมบำรุงอาวุโส ให้มีประสิทธิภาพและความสามารถในการแก้ไขปัญหาที่เกิดขึ้น.
• ดูแลการดำเนินงานและการบริการซ่อมบำรุงที่ให้บริการสำหรับลูกค้า โดยให้ความสำคัญกับคุณภาพและความพึงพอใจของลูกค้า.
• พัฒนาและปรับปรุงกระบวนการซ่อมบำรุงเพื่อเพิ่มประสิทธิภาพและความเร็วในการให้บริการ.
• จัดการและควบคุมงบประมาณสำหรับฝ่ายวิศวกรรมและซ่อมบำรุง.
• ปริญญาตรีหรือปริญญาโทในสาขาวิศวกรรม หรือสาขาที่เกี่ยวข้อง.
• ประสบการณ์ทำงานที่เกี่ยวข้องอย่างน้อย 7-10 ปี โดยมีประสบการณ์ในการจัดการทีมและโครงการซ่อมบำรุงอาวุโส.
• มีความคิดริเริ่มและสามารถแก้ไขปัญหาทางเทคนิคที่ซับซ้อนได้อย่างมีประสิทธิภาพ.
• มีความเชี่ยวชาญในการใช้เครื่องมือและอุปกรณ์ที่ใช้ในการซ่อมบำรุงอาวุโส.
• มีทักษะในการสื่อสารและประสานงานกับผู้อื่นในทีมและแผนกอื่น ๆ ภายในองค์กร.
• มีความคุ้นเคยกับข้อกำหนดและมาตรฐานความปลอดภัยในสถานที่ทำงาน โดยเฉพาะในสถานที่ที่มีโครงสร้างและอุปกรณ์อาวุโส..

Experience:

5 years required

Skills:

Express, English

Job type:

Full-time

• Manage and lead the HSE team to the overall administration and implementation of HSE.
• Guide, support and facilitate ownership, implementation and improvement of HSE requirements including workplace safety, personal safety, asset integrity and management of health, security and environmental hazards.
• Register all incidents in company incident database, perform investigations, to understand the causes and influencing factors.
• Carry out and document routine HSE inspections and facilitate for weekly, monthly management HSE meetings locally and with regional team.
• Ensure that training and awareness programs are carried out as planned.
• Requirements Good command both of English and Thai.
• Bachelor's degree in Occupational Health & Safety or a related field, graduate with adequate *HSE qualifications/accreditation.
• 5+ years of work experience in as HSE professional.
• Experience in delivering HSE training, performing HSE audits and incident investigation.
• Excellent communication, leadership, and problem-solving skills.
• Strong knowledge of local and international HSE regulations and best practices.
• Able to work with limited supervision and deliver results within challenging deadlines and under pressure.

Experience:

5 years required

Job type:

Full-time

• Minimum of 5-7 years experience in security management, preferably in hospitality, resorts, mixed-use complexes, or large-scale commercial facilities.
• Certifications in OHS, fire safety, CPR/First Aid, or equivalent are an advantage.
• Proven experience managing multi-site security operations or complex environments with high guest and team members volume.
• Prior experience in emergency response planning, crisis management, and coordination with local authorities is highly desirable.
• Strong leadership, coaching motivation, interpersonal & coordination, good problem-solving skill and conflict management skill.
• Good personality with excellent communication and strong service minded.
• Additional InformationThis is a complex role overseeing security operations for both Anantara Riverside Bangkok Resort and Avani+ Riverside Bangkok Hotel.

Experience:

5 years required

Skills:

Compliance

Job type:

Full-time

• Identify and assess potential hazards and risks in the workplace.
• Develop and implement strategies to eliminate or control those risks.
• Conduct regular inspections and audits to ensure compliance with safety standards.
• Ensure that all policies and procedures are up-to-date and compliant with relevant regulations.
• Provide training to employees on health and safety procedures and regulations.
• Investigate workplace incidents and accidents to determine root causes.
• Assist with emergency response during actual incidents.
• Requirements: Bachelor's degree in Occupational Health & Safety or a related field, graduate with adequate *HSE qualifications/accreditation.
• 3-5 years of work experience in as HSE professional.
• Experience in delivering HSE training, performing HSE audits and incident investigation.
• Excellent communication, leadership, and problem-solving skills.
• Strong knowledge of local and international HSE regulations and best practices.
• Able to work with limited supervision and deliver results within challenging deadlines and under pressure.

Skills:

Teamwork, Compliance, Problem Solving

Job type:

Full-time

• IT Solutions & Services.
• Work with Passion, Professional and Teamwork.
• Grow up in Career path.
• We are looking for talented Cyber Security Engineer to find the most efficient way to create and to manage every cyber security solution for multiple clients.
• What we want?.
• To propose improvement to infrastructure and security systems and may present them to customer s upper management.
• Plan and carry out a customer s information security strategy to be the healthy security architectures for any IT project.
• To implement security system and ensure compliance with corporate cyber security policies and procedures.
• To provide professional supervision and guidance to security teams.
• Works with other business units, partners, and customers to maintain secure methods of security management.
• Who are we looking for?.
• Experience in IT infrastructure or Cyber Security field.
• Great awareness of Cyber Security trends and new technology update.
• Knowledge in Security Management is advantage. Excellent knowledge in Security Product (Antivirus/Firewall/VPN, IPS/IDS), Security Platform, Endpoint Solution, and Network Security solution is a plus.
• Excellent problem solving and analytical skill, planning and organizing skill and customer oriented.
• Security Profession Certification is a plus.
• Knowledge in AI and the ability to use AI-related tools and technologies.
• MFEC OKR:- As MFEC People, you will be a part of our talent team. Besides your main responsibilities, you do have special projects as part of OKR. However, the percentages will be different according to the positions and teams.
• Location: Branch: Chatuchak

Skills:

Research, Legal, Automation

Job type:

Full-time

• Proactively research emerging cyber threats, analyze their characteristics, and assess their potential impact on the organization.
• Collect and analyze threat intelligence from various sources (commercial, government, open-source) and produce actionable reports for different groups of stakeholders ranging from senior executives to technical team.
• Provide timely and relevant threat intelligence to support incident response efforts and investigations.
• Identify vulnerabilities and provide insights to improve vulnerability management processes.
• Collaborate with security teams (SOC, incident response) and other stakeholders to share threat intelligence and improve overall security posture.
• At least 4 years of experience in Cyber Threat Intelligence Engineer or related role..
• Technical Proficiency: Strong understanding of networking, operating systems, security concepts, and tools.
• Threat Intelligence Expertise: Knowledge of the threat landscape, attack methodologies, and threat actors..
• Understanding of cybersecurity-related legal and regulatory requirements.
• Analytical and Problem-Solving Skills: Ability to analyze complex information, identify patterns, and draw meaningful conclusions..
• Communication and Collaboration Skills: Ability to effectively communicate threat intelligence findings to technical and non-technical audiences.
• Experience with Threat Intelligence Platforms: Familiarity with commercial or open-source threat intelligence platforms.
• Experience with cyber forensic procedure: analysis of digital evidence to investigate cybercrimes, reconstruct events, and identify vulnerabilities.
• Programming/Scripting Skills: May be required for custom tool development and automation.
• Apply directly here: https://accenture.wd103.myworkdayjobs.com/AccentureCareers/job/Bangkok/Cyber-Threat-Intelligence-Engineer_13566456.

Skills:

Compliance, English

Job type:

Full-time

• Act as a liaison for internal, external, and regulatory auditors (e.g., Bank of Thailand, PCI, SEC, ISO27001).
• Support and monitor IT audit findings, issue tracking, and resolution progress.
• Assist in managing the IT General Controls (ITGC) framework and SOX compliance program.
• Contribute to IT Security control monitoring and risk assessment activities.
• Promote IT governance, compliance, and operational excellence across teams.
• Bachelor s or Master s degree in Information Technology, Computer Management, or related fields.
• 4 years of experience in IT within banking or financial services, including 2 years in IT audit or compliance roles..
• Knowledge of regulatory and security standards such as ISO 27001, NIST, COBIT, COSO, PCI DSS, ITIL, and SOX compliance..
• Strong analytical, communication, and problem-solving skills.
• Ability to manage multiple tasks, influence stakeholders, and work effectively under pressure.
• Good command of English.
• CISSP, CISA, CISM, CRISC, or ISO 27001 Lead Auditor/Implementer are advantageous..
• Only shortlisted candidates will be contacted.
• Talent Acquisition Department
• Bank of Ayudhya Public Company Limited
• 1222 Rama III Rd., Bangpongpang, Yannawa, Bangkok 10120
• FB: Krungsri Career.
• LINE: Krungsri Career.
• LINKEDIN: Krungsri.
• Applicants can read the Personal Data Protection Announcement of the Bank's Human Resources Function by typing the link from the image that stated below.
• EN: (https://krungsri.com/b/privacynoticeen).
• ผู้สมัครสามารถอ่านประกาศการคุ้มครองข้อมูลส่วนบุคคลส่วนงานทรัพยากรบุคคลของธนาคารได้โดยการพิมพ์ลิงค์จากรูปภาพที่ปรากฎด้านล่าง.
• ภาษาไทย: (https://krungsri.com/b/privacynoticeth).
• หมายเหตุ ธนาคารมีความจำเป็นและจะมีขั้นตอนการตรวจสอบข้อมูลส่วนบุคคลเกี่ยวกับประวัติอาชญากรรมของผู้สมัคร ก่อนที่ผู้สมัครจะได้รับการพิจารณาเข้าร่วมงานกับธนาคารกรุงศรีฯ.
• Remark: The bank needs to and will have a process for verifying personal information related to the criminal history of applicants before they are considered for employment with the bank..

Job type:

Full-time

• Installing, configuring and maintaining hardware, network and operation system of the IT system, both of cloud and on-premises infrastructures.
• Installing, configuring and maintaining software application and platforms, both of cloud and on-premises infrastructures.
• Managing users, groups and operating system policies across the entire IT network.
• Diagnosing, troubleshooting and resolving application, software, hardware and networking issues.
• Monitoring system and application performance, availability, and security.
• Automate tasks like code deployment, testing, and infrastructure provisioning through scripts, tools, and CI/CD pipelines.
• Replacing and upgrading outdated or defective components.
• Enforcing security best practices to prevent cyber attacks and security breaches..
• 7-8 years of experience in system, application or production support.
• Strong experienced in UNIX, LINUX and Windows operating systems.(System Administrator role).
• Knowledge of networking fundamentals (TCP/IP, routing, network protocols, configurations, and security practices).
• Knowledge of cloud platforms (Azure, OpenShift, Kubernetes) and DevOps/DevSecOps practices.
• Good knowledge of RESTful APIs, HTTP protocol, OAuth, and JSON.
• Experience supporting Java-based APIs is an advantage.
• Familiarity with database technologies (Oracle, MS SQL Server, PostgreSQL, MongoDB, MySQL).
• Experience with monitoring and logging tools (e.g., Dynatrace, Kibana, Elasticsearch, Grafana).
• Knowledge of scripting tool and automation (Shell Script, PowerShell, ansible playbook, CI/CD pipeline).
• Knowledge of distributed event streaming platforms is a plus.
• Proven ability to perform root cause analysis and problem diagnosis in collaboration with development teams.

Job type:

Full-time

• Support regular group assessments to evaluate security risks, security maturity and compliance gaps across SCBX Group.
• Policy, Procedures, Standards & Guidelines.
• Support the development, review, and update of security policies, procedures, standards, and guidelines to ensure robust organizational controls.
• Regularly update documentation to reflect the evolving threat landscape and regulatory requirements.
• Security Consultation.
• Lead conversation with senior leadership across SCBX Group and provide value-added insights to delivered outcome.
• Develop a comprehensive proposal and project plan that secures buy-in from senior stakeholders, while establishing an effective delivery approach for the working group to ensure successful project delivery and valued outcomes.
• Embrace creative problem-solving and flexible approaches to navigate challenges, ensuring that critical outcomes are consistently achieved while effectively managing obstacles.
• Provide expert guidance and recommendations to internal and external stakeholders on the best security practices and solutions to address operational and compliance issues.
• Recommend improvements for security governance and operational resilience.
• Security Awareness & Training.
• Develop and manage security e-learning programs, newsletters, and knowledge-sharing initiatives to enhance employee awareness.
• Conduct phishing drills and security simulations to assess and improve employee resilience against cyber threats.
• Design specialized training for executives and high-risk users to enhance their understanding of emerging threats and security best practices.
• Implement interactive learning methods such as gamification, security awareness series, real-world security challenges to encourage participation, on-site engagements to reinforce security culture.
• Digital Identity.
• Assist in Identity Governance & Administration (IGA) by supporting policy enforcement, identity lifecycle management, and compliance monitoring.
• Support Access Management by integrating authentication mechanisms such as SSO, MFA, and adaptive access controls into enterprise systems.
• Contribute to Role Management, ensuring structured RBAC/ABAC models and periodic access reviews.
• Help implement Privileged Access Management (PAM) controls, monitoring privileged user sessions, and enforcing security best practices.
• Assist in Identity Integration & Directory Services, ensuring seamless identity synchronization and federation across cloud and on-prem systems.
• Security Innovation.
• Research and evaluate emerging cybersecurity technologies, AI-driven security analytics, and automation tools, conducting PoCs to assess feasibility.
• Explore AI-driven security solutions for threat detection - prevention, and automated security operation to enhance cybersecurity resilience.
• Provide strategic insights to align security innovations with digital transformation, FinTech, and cloud security initiatives across subsidiaries.
• Partner with internal teams, vendors, and industry leaders to benchmark security advancements and drive innovation initiatives..
• Minimum of 5+ years in information security consultancy, with a proven track record in security assessment, identity & access and data security.
• Experience in conduct IAM solutions, including IGA, identity assessment - planning, access management, PAM, and identity integration within enterprise environments.
• Demonstrates a deep understanding of global security frameworks, such as NIST, ISO 27001/27002, PCI-DSS, BOT and CIS Controls.
• Extensive experience in conducting large-scale security assessments, performance measurements, risk management, and security strategy development that align with organizational objectives.
• Relevant certifications such as from identity products or equivalent are highly desirable.

Skills:

Social media, Microsoft Office, Mandarin, English

Job type:

Full-time

• Bachelor s Degree or at least Diploma or equivalent in any discipline.
• Must have B2 level English Language proficiency (reading, writing, speaking and aural comprehension) https://www.coe.int/en/web/common-european-framework-reference-languages/level-descriptions.
• Essential Requirements: Experience of working in a high transactional role, in a KPI driven environment.
• A background in either content moderation, customer service or any other role that involves working with daily targets.
• You will have a track record that demonstrates your ability to perform multiple tasks while paying close attention to detail.
• Mentally and emotionally able to handle offensive or disturbing behaviour, language, and content.
• Availability to work rotational shifts.
• Must be able to speak, read and write the required language to support.
• Preferred requirements Deep familiarity with social media, internet laws, policy regulations and market knowledge.
• Content Moderation experience is preferred, but not essential.
• Bachelor's degree is preferred, however not essential.
• Technical Skills: Minimum typing speed of 40wpm with a 90% accuracy score.
• Computer literate and fully conversant in Microsoft Windows and Microsoft Office.
• Responsibilities:Review, classify and/or eliminate content uploaded by users, according to the parameters and policies defined by the client.
• Comply with the key performance indicators defined by the specific client operation and maintain a high level of quality in each case that you review.
• Make timely escalations in accordance with established procedures.
• Comply with corporate confidentiality policies and ensure the appropriate handling of customer information, to guarantee information security.
• Participate in continuous training programs established by the company for optimal development in the role.
• Comply with all instructions and procedures related and complementary to the role.
• Be attentive to the communications that arrive through the different communication channels of the company.
• At TP we care deeply about the Health and Wellness of our employees, and we provide a dedicated Trust & Safety wellness program to promote and support whole person wellness throughout your employment journey. We have dedicated Wellness teams for each account who work to integrate wellness across the entire employee experience and our moderation teams are strongly encouraged to actively participate in training, group sessions, planned activities and initiatives, to foster a culture of Wellness.
• TP is an equal opportunity employer and value diversity in our company. Therefore, we do not discriminate based on race, religion, national origin, gender, sexual orientation, age, marital status, veteran status, disability, or any other protected status.

Experience:

3 years required

Skills:

Compliance, ISO 27001

Job type:

Full-time

มีการฝึกอบรมให้ก่อนการเริ่มงาน โดยไม่มีค่าใช้จ่ายแต่อย่างใด.

Skills:

Continuous Integration, Legal, Procurement

Job type:

Full-time

• Support regular group assessments to evaluate security risks, security maturity and compliance gaps across SCBX Group.
• Policy, Procedures, Standards & Guidelines.
• Support the development, review, and update of security policies, procedures, standards, and guidelines to ensure robust organizational controls.
• Regularly update documentation to reflect the evolving threat landscape and regulatory requirements.
• Security Consultation.
• Lead conversation with senior leadership across SCBX Group and provide value-added insights to delivered outcome.
• Develop a comprehensive proposal and project plan that secures buy-in from senior stakeholders, while establishing an effective delivery approach for the working group to ensure successful project delivery and valued outcomes.
• Embrace creative problem-solving and flexible approaches to navigate challenges, ensuring that critical outcomes are consistently achieved while effectively managing obstacles.
• Provide expert guidance and recommendations to internal and external stakeholders on the best security practices and solutions to address operational and compliance issues.
• Recommend improvements for security governance and operational resilience.
• SDLC Security & DevSecOps Integration.
• Develop and implement security frameworks and best practices within the SDLC to minimize vulnerabilities.
• Collaborate with development, operations, and security teams to embed security controls and processes within continuous integration/continuous deployment (CI/CD) pipelines.
• Advise on the integration of automated security testing tools and manual assessments throughout development, staging, and production phases.
• Monitor and evaluate the effectiveness of security controls, adjusting strategies as required.
• Pentester Governance & Annual Panel Selection.
• Oversee and manage the overall pentesting program, including planning, scoping, and executing external and internal penetration tests.
• Develop and enforce governance policies for third-party penetration testing, ensuring compliance with internal and industry standards.
• Lead the annual selection process of the pentester panel by evaluating vendor capabilities, reviewing performance metrics, and coordinating panel evaluations.
• Collaborate with legal, procurement, and compliance teams to negotiate contracts and service level agreements (SLAs) with selected vendors.
• Application Security Testing.
• Define and maintain comprehensive application security testing strategies, including static and dynamic code analysis, vulnerability assessments, and risk management.
• Coordinate regular security assessments, penetration tests, and vulnerability remediation efforts.
• Analyze findings from testing activities and provide actionable recommendations to mitigate risks.
• Work with development teams to ensure security testing is integrated into agile and DevOps methodologies.
• Identity Architecture & Strategy.
• Define and implement enterprise-wide identity governance frameworks, access models, and role designs.
• Develop future-ready IAM architectures to support Zero Trust security, cloud adoption, and business scalability.
• Design identity lifecycle processes such as automated provisioning, de-provisioning, RBAC, and approval workflows.
• Align IAM practices with global standards (NIST, ISO 27001, CIS) and regulatory mandates (PCI-DSS, GDPR, BOT).
• Establish and maintain a comprehensive security governance framework with clear roles, responsibilities, and performance metrics.
• IAM Solution Delivery & Operations.
• Lead the design, deployment, and integration of solutions including SSO, MFA, PAM, and CIAM.
• Oversee directory services and federation platforms such as Active Directory, Azure AD, and cloud identity providers.
• Collaborate with implementation teams and vendors to configure and deploy IAM technologies that ensure security, scalability, and operational excellence.
• Minimum of 12+ years in information security consultancy, with a proven track record in Application security, DevSecOps integration, Vulnerability Management, Penetration testing and Digital Identity.
• Demonstrated expertise in developing and implementing security frameworks and policies that embed secure coding practices and automated security testing within complex, enterprise-level SDLC environments.
• Demonstrates a deep understanding of global security frameworks, including NIST, ISO 27001/27002, PCI-DSS, BOT and CIS Controls.
• Extensive experience in conducting large-scale security assessments, performance measurements, risk management, and security strategy development that align with organizational objectives.
• Relevant certifications such as CISSP, CISM, CRISC, OSCP, or equivalent are highly desirable.

Skills:

Automation, English

Job type:

Full-time

• Establish a consistent approach to handle security incidents under committed OLA, SLA, MTTX matrix..
• Effectively and efficiently contain and eradicate cyber threats with all subsidiaries.
• Recover impacted assets from technical and business damage done by cyber threats.
• Develop and distribute security incident reports to all key stakeholders.
• Incorporate root cause and lessons learned into an improvement plan.
• Strengthen processes and maturity of Group security operations.
• Continuous improve security incident operations.
• Security Incident Identification, Triage and Response with MS Sentinel SIEM and SOAR cover 24*7 detection & analysis, containment, eradication & post incident investigation on high, rather high, moderate, rather low and low severity..
• Access to internal or external IR specialists to support in Digital forensics investigations and IR team, Threat hunting using Microsoft Sentinel to proactively identify threats in the environment.
• Gather cyber threat insights on security incidents through governance reporting covering weekly operational reports, monthly tactical reports and quarterly management reports.
• Review use-cases onboarding and continuous optimizations to comprehensively detect threats for all subsidiaries environments.
• Works smooth with SOC operation outsources team under the SCBX Cyber Defense Operating Model..
• Support in helping subsidiaries to containment and resolve security incidents within MTTC SLA.
• Maintained and updated security incident response playbooks and runbooks with all subsidiary s acknowledgement.
• Develop, design and participate in cyber tabletop exercises.
• 5-7 years experienced in cyber security incident response or SOC environments. If you worked in Financial industry will be plus score..
• Strong knowledge of cyber security principles and practices, including vulnerability assessment, incident response, and SOC architecture. If you have Cyber/IR certificates related will be plus score..
• Strong knowledge and skills of security threats, attack countermeasures and threat detection/prevention/mitigation.
• Working experience in SOC (Security Operations Center) with hands-on experience with Automated Analytic Rules and Automation Playbook on MS Sentinel..
• Experience with a variety of cyber security tools such as SIEM, EDR, Firewall, IPS, etc and SOC technologies. Excellent analytical and problem-solving skills.
• Hands-on experience in provisioning and interpreting log and network packet data, cloud environment.
• Ability to work independently and as part of a team.
• Ability to communicate complex technical concepts to both technical and non-technical audiences in both of Thai and English..
• Experienced in multi-vendor management.
• Join our team and contribute to ensuring the best availability and efficiency of our Cyber Defense strategy and Cyber Defense Operating Model.
• Apply today to play a crucial role in safeguarding our organization's security.

Skills:

Express, Risk Management

Job type:

Full-time

• Serve as the main point of contact for gathering evidence, CCTV footage, and relevant information for assigned fraud cases.
• Coordinate with other relevant teams to prepare for interrogation sessions.
• Participate in the interrogation sessions of offenders and culprits.
• Draft investigation reports for supervisor review.
• Act as a CCTV real-time monitor as requested or assigned by the supervisor.
• Participate in security-related projects as assigned.
• Manage other Security-Related tasks as assigned.
• 1-Year contract (with the possibility of extension)
• Working from Monday to Saturday, with Sundays off
• Requirements: Bachelor's degree in a related field.
• Experience in Fraud Investigation, Fraud Prevention, Loss Prevention, Government Affairs, Government Relations, or Risk Management-related positions.
• Previous experience as a Police/Military Official or other government official is advantageous.
• Familiarity with reviewing CCTV footage.
• Availability to be on-call for emergency issues.

Experience:

2 years required

Skills:

Security Design, Big Data, English

Job type:

Full-time

• Perform cyber security and IT security assessments for clients (e.g. cyber security program assessment, cyber security risk assessments, IT network infrastructure reviews, system technical configurations review, information security policies and processes/procedures review etc.).
• Work on IT security design, analysis and implementation of security protection solution.
• Evaluate and analyze threat, vulnerability, system weakness, impact and risk to secu ...
• Advise clients on the security issues, including explanation on the technical details and how they can remediate the vulnerabilities in the processes, controls and systems.
• Advise client on the security incident response end-to-end process (i.e. preparation, detection, analysis, response and recovery of the security incident).
• Skills and attributes for success.
• To qualify for the role you must have.
• Bachelor's degree or Master s degree in Computer Engineering, Computer Science, Information Systems, IT Security, ICT or other related fields.
• Minimum 2 years' experience in such areas as IT security management design and implementation, IT security assessment and IT technical background.
• Familiar with leading IT security processes and tools.
• Highly proficient in both English and Thai with good written and oral communication and analytical skills.
• Ideally, you ll also have.
• Having experience in project planning and management will be a plus.
• Professional certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), and / or Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or ISO27001 will be highly considered.
• Experience in new generation security practices (i.e. DevSecOps, iPentest, RedTeaming, System Resilience Design).
• Experience in Emerging Technologies (i.e. Cloud Computering, Blockchain, Big Data, A.I./M.L.).
• We re interested in intellectually curious people with a genuine passion for cyber security. With your specialization in attack and penetration testing, we ll turn to you to speak up with innovative new ideas that could make a lasting difference not only to us - but also to the industry as a whole. If you have the confidence in both your presentation and technical abilities to grow into a leading expert here, this is the role for you.
• What we offer.
• We offer a competitive remuneration package. Our comprehensive Total Rewards package includes support for flexible working and career development, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions.
• Continuous learning: You ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You ll be embraced for who you are and empowered to use your voice to help others find theirs.
• If you can demonstrate that you meet the criteria above, please contact us as soon as possible.
• The exceptional EY experience. It s yours to build.
• EY | Shape The Future with Confidence.
• EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.
• Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.
• Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

Skills:

Network Infrastructure, English

Job type:

Full-time

• Good command of English and computer literacy.
• Work @ Sriracha, Chonburi.
• ROLE & RESPONSIBILITY.
• Provide effective and efficient monitoring, troubleshooting, gap improvement, sustainable management, and new projects for the OT system of the Advanced Process Control Network (APCN) with a focus to enhance performance in term of high availability and cyber resilience/ cybersecurity.
• Fully manage of PI system, PI connection, and PI user in all dimensions.
• Collaborate with cross-functional teams to address OT network infrastructure, communication, connection, and information security requirements.
• Leading new projects aimed at enhancing the performance and security of the APCN.