Filter Jobs

Job type:

Full-time

• Develop and implement comprehensive security policies and procedures aligned with organizational standards to ensure robust protection of personnel and assets.
• Lead and coordinate security operations including physical surveillance, access control systems, and emergency response protocols.
• Manage security clearance administration and conduct thorough investigations of security incidents and loss prevention cases.
• Collaborate with law enforcement agencies and internal stakeholders to maintain a secure workplace environment.
• Oversee facility safety programs including fire prevention and emergency preparedness initiatives.
• Proven track record in facilities security management and safety program implementation.
• Strong knowledge of security systems, surveillance techniques, and emergency response protocols.
• Demonstrated ability to develop and enforce security policies and procedures.
• Outstanding leadership skills with experience in managing security personnel.
• Excellent analytical and problem-solving capabilities with strong attention to detail.
• Lead strategic security initiatives that directly impact organizational success.
• Opportunity to build and mentor high-performing security teams.
• Professional development through industry-leading security management practices.
• Dynamic work environment with exposure to cutting-edge security technologies.
• Collaborative culture focused on innovation and continuous improvement.
• Let us learn about you! Apply today.
• Looking to make an IMPACT with your career?.
• When you are thinking about joining a new team, culture matters. At Schneider Electric, our values and behaviors are the foundation for creating a great culture to support business success. We believe that our IMPACT values - Inclusion, Mastery, Purpose, Action, Curiosity, Teamwork - starts with us.
• IMPACT is also your invitation to join Schneider Electric where you can contribute to turning sustainability ambition into actions, no matter what role you play. It is a call to connect your career with the ambition of achieving a more resilient, efficient, and sustainable world.
• We are looking for IMPACT Makers; exceptional people who turn sustainability ambitions into actions at the intersection of automation, electrification, and digitization. We celebrate IMPACT Makers and believe everyone has the potential to be one.
• Become an IMPACT Maker with Schneider Electric - apply today!.
• 36 billion global revenue
• 13% organic growth
• 150 000+ employees in 100+ countries
• 1 on the Global 100 World s most sustainable corporations.
• You must submit an online application to be considered for any position with us. This position will be posted until filled.
• Schneider Electric aspires to be the most inclusive and caring company in the world, by providing equitable opportunities to everyone, everywhere, and ensuring all employees feel uniquely valued and safe to contribute their best. We mirror the diversity of the communities in which we operate, and inclusion is one of our core values. We believe our differences make us stronger as a company and as individuals and we are committed to championing inclusivity in everything we do.At Schneider Electric, we uphold the highest standards of ethics and compliance, and we believe that trust is a foundational value. Our Trust Charter is our Code of Conduct and demonstrates our commitment to ethics, safety, sustainability, quality and cybersecurity, underpinning every aspect of our business and our willingness to behave and respond respectfully and in good faith to all our stakeholders. You can find out more about our Trust Charter here
• Schneider Electric is an Equal Opportunity Employer. It is our policy to provide equal employment and advancement opportunities in the areas of recruiting, hiring, training, transferring, and promoting all qualified individuals regardless of race, religion, color, gender, disability, national origin, ancestry, age, military status, sexual orientation, marital status, or any other legally protected characteristic or conduct.

Skills:

Express, Compliance, Legal, English

Job type:

Full-time

• Work with the Security Operations Lead and other relevant stakeholders to develop, implement, and manage security policies and related processes, as well as to predict future occurrences in an effort to mitigate potential threats.
• Investigate and resolve cases involving suspected fraudulent actions and non-compliance issues by working collaboratively within or across the relevant team.
• Managing specific work streams or initiatives, including setting objectives, tracking progress, and delivering results.
• Consultant functions as a specialized team member, providing advice during investigation or initiatives.
• Maintain accurate case records and ensure compliance with internal SOPs and policies.
• Gather, analyze, and document evidence to support internal actions and external legal processes.
• Support security initiatives by identifying patterns, trends.
• Analyze noncompliance reports from operations and issues; prepare a presentation for relevant stakeholders.
• Escalates threats or issues to the appropriate level of importance for law enforcement and other internal and external resources as needed.
• Manage other tasks as assigned.
• Requirements: Bachelor s degree in any related field.
• Having experience in fraud, investigation or audit is an advantage.
• Strong analytical and logical thinking skills with attention to detail.
• Advance to do data analysis.
• Good communication skills for coordination with internal teams.
• Proficiency in formular G-suit and documentation/report writing.
• Proficient in English both speaking and written.

Experience:

3 years required

Skills:

Compliance

Job type:

Full-time

• Develop and implement comprehensive security policies and procedures in compliance with laws and regulations and Shopee regional's security standards.
• Monitor and assess potential security risks, establish preventive measures, and minimize the occurrence of security incidents.
• Coordinate and lead the security team, conducting regular training to build skills and competence of security manpower.
• Maintain a good relationship with local law enforcement agencies to handle potential security incidents and ensure compliance.
• Managing facility and infrastructure support in build up cctv coverage in place ensuring it has managed function as intended including CCTV monitoring.
• Execute security protocol to manage and enforce the compliance of parties involved.
• Summarize monthly KPI and set a monthly meeting with security management team.
• A dequate security manpower is managed during campaign and BAU days.
• To develop body searching standard, frisking process and thief management.
• Guard tour management system.
• Monitor and evaluate the daily, weekly and monthly performance of Security Leaders and Guards to ensure: Perform additional duties as assigned by the reporting manager.
• Requirements:Bachelor's degree or above in Security Management, Occupational health and Safety, or related fields.
• More than 3 years of experience in security management, with a preference for experience in logistics and supply chain/E-commerce business.
• Familiarity with Thai security regulations and International's security management system with strong risk assessment capabilities.
• Qualified TAPA FSR (if applicable) would be advantageous.

Skills:

Risk Management, Kubernetes, Docker

Job type:

Full-time

• Design, develop, and maintain security systems, tools, and best practices across the stack (frontend, backend, mobile, and infrastructure).
• Identify, assess, and mitigate security vulnerabilities through proactive risk management and threat modeling.
• Collaborate with product managers and developers to embed security into the software development lifecycle (SDLC).
• Develop and enforce policies for secure coding, data protection, and incident response.
• Implement robust authentication and authorization mechanisms.
• Conduct regular security assessments, including penetration testing and code reviews.
• Monitor, detect, and respond to security incidents using advanced tools and methodologies.
• Enhance infrastructure security using Kubernetes, Docker, and cloud platforms (GCP, AWS).
• Stay current on emerging threats, vulnerabilities, and security trends, and recommend actionable insights to improve defenses.
• Champion security awareness across the organization, including training sessions and knowledge-sharing activities.
• Ensure compliance with relevant security standards and regulations such as ISO 27001, PDPA, GDPR, SOC 2, or PCI DSS.
• Basic QualificationsProven expertise in application security, cloud security, and infrastructure security.
• Proficiency in securing systems built with technologies such as Node.js, Golang, Elixir, Python, React, Svelte, or Flutter.
• Experience with tools like Docker, Kubernetes, and cloud services (GCP, AWS).
• Strong understanding of cryptographic principles and secure communication protocols.
• Familiarity with CI/CD pipelines and secure DevOps practices.
• Hands-on experience with security tools for vulnerability scanning, penetration testing, and threat detection.
• Deep understanding of database security, especially with PostgreSQL or other relational or non-relational databases.
• Strong analytical and problem-solving skills with a security-first mindset.
• Excellent communication skills and the ability to collaborate effectively in Agile teams.
• Self-motivation, adaptability, and a strong work ethic.
• Preferred Qualifications We re especially excited if you bring:Experience leading security initiatives or mentoring other engineers in security best practices.
• Expertise in compliance frameworks such as ISO 27001, PDPA, GDPR, SOC 2, or PCI DSS.
• Advanced knowledge of security monitoring and incident response systems.
• Strong system design skills with a focus on secure architectures and long-term trade-offs.
• A proven track record of securing fast-paced, high-growth tech environments.
• A passion for securing user-centric products and contributing to their success.
• Perks & Benefits Flat Structure As we continue to grow fast, we strive to retain our culture where everyone is heard, contributes, and grows with the company..
• Work-life Harmony We believe that quality time outside of work is important to sustaining a healthy and happy lifestyle.
• Remote Work Hybrid-mode activated! It comes with the package: flexibility, focus and productivity!.
• Urban Office One breath from Phrom Phong BTS. No sweat whatsoever! The office should also feel like a second home so we dedicated a lot of care and resources into building the best environment for you to wake up to every morning.
• Fun Workshop The best relationships are built over new experiences, that s why we have workshops filled with a range of activities for you to look forward to and enjoy.
• Game Tournament It s getting fun and competitive! Challenge doesn t only have to come from work. Own the championship and show the peeps how great of a gamer (and player) you are.
• Group Insurance Health comes first, we know, don t worry, we ve got you covered.
• Health & Wellness Only a healthy army wins the war. We invest to take care of you from physical, mental and happiness-level. Adopted health & wellness applications plus activities to make sure everyone here is on cloud nine

Job type:

Full-time

• Job Number26018210
• Job CategoryLoss Prevention & Security
• LocationJW Marriott Phuket Chalong Bay Resort & Spa, 3 9 Moo 3 Chalong Mueang, Phuket, Thailand, Thailand, 83130
• ScheduleFull Time
• Located Remotely?N
• Position Type Non-Management
• POSITION SUMMARY.
• Patrol all areas of the property; assist guests with room access. Monitor Closed Circuit Televisions, perimeter alarm system, duress alarms, and fire life safety system. Lock property entrances when required. Conduct daily physical hazard inspections. Respond to accidents, contact EMS or administer first aid/CPR as required. Assist guests/employees during emergency situations. Notify appropriate individuals in the event of accidents, attacks, or other incidents. Defuse guest/employee disturbances. Call for outside assistance if necessary. Complete incident reports to document all Security/Loss Prevention related incidents. Handle all interruptions and complaints. Resolve safety hazard situations. Escort any unwelcome persons from the property without interrupting the orderly flow of property operation. Report to scenes of vehicle accidents/thefts. Call for assistance using proper code responses. Complete a Loss Prevention shift summary/daily activity report. Maintain confidentiality of all Security/Loss Prevention and property reports/documents; release information only to authorized individuals. Conduct investigations and gather evidence. Conduct interviews with relevant parties.
• Follow all company policies and procedures; report accidents, injuries, and unsafe work conditions to manager; complete safety training and certifications; ensure uniform and personal appearance are clean and professional; maintain confidentiality of proprietary information; protect company assets. Welcome and acknowledge all guests according to company standards; anticipate and address guests service needs; assist individuals with disabilities; thank guests with genuine appreciation. Speak with others using clear and professional language; prepare and review written documents accurately and completely. Develop and maintain positive working relationships with others; support team to reach common goals. Comply with quality assurance expectations and standards. Stand, sit, or walk for an extended period of time. In addition, some states may have additional licensing/registration requirements to be considered for this position. Read and visually verify information in a variety of formats (e.g., small print). Visually inspect tools, equipment, or machines (e.g., to identify defects). Enter and locate work-related information using computers and/or point of sale systems. Move at a speed required to respond to work situations (e.g., run, walk, jog). Stand, sit, or walk for an extended period of time or for an entire work shift. Move, lift, carry, push, pull, and place objects weighing less than or equal to 50 pounds without assistance and objects weighing in excess of 75 pounds with assistance. Grasp, turn, and manipulate objects of varying size and weight, requiring fine motor skills and hand-eye coordination. Move through narrow, confined, or elevated spaces. Move over sloping, uneven, or slippery surfaces as well as up and down stairs and/or service ramps. Reach overhead and below the knees, including bending, twisting, pulling, and stooping. Perform other reasonable job duties as requested by Supervisors.
• PREFERRED QUALIFICATIONS.
• Education: High school diploma or G.E.D. equivalent.
• Related Work Experience: No related work experience.
• Supervisory Experience: No supervisory experience.
• License or Certification: None.
• At Marriott International, we are dedicated to being an equal opportunity employer, welcoming all and providing access to opportunity. We actively foster an environment where the unique backgrounds of our associates are valued and celebrated. Our greatest strength lies in the rich blend of culture, talent, and experiences of our associates. We are committed to non-discrimination on any protected basis, including disability, veteran status, or other basis protected by applicable law.
• Marriott Hotels strive to elevate the art of hospitality, innovating at every opportunity while keeping the comfort of the oh-so-familiar all around the globe. As a host with Marriott Hotels, you will help keep the promise of Wonderful Hospitality. Always. by delivering thoughtful, heartfelt, forward-thinking service that upholds and builds upon this living legacy. With the name that s synonymous with hospitality the world over, we are proud to welcome you to explore a career with Marriott Hotels. In joining Marriott Hotels, you join a portfolio of brands with Marriott International. Be where you can do your best work, begin your purpose, belong to an amazing global team, and become the best version of you.
• JW Marriott is part of Marriott International's luxury portfolio and consists of more than 100 beautiful properties in gateway cities and distinctive resort locations around the world. JW believes our associates come first. Because if you re happy, our guests will be happy. JW Marriott associates are confident, innovative, genuine, intuitive, and carry on the legacy of the brand s namesake and company founder, J.Willard Marriott. Our hotels offer a work experience unlike any other, where you ll be part of a community and enjoy true camaraderie with a diverse group of co-workers. JW creates opportunities for training, development, recognition and most importantly, a place where you can pursue your passions in a luxury environment with a focus on holistic well-being. Treating guests exceptionally starts with the way we take care of our associates. That s The JW Treatment&trade. In joining JW Marriott, you join a portfolio of brands with Marriott International. Be where you can do your best work, begin your purpose, belong to an amazing global team, and become the best version of you.

Job type:

Full-time

• ลดความเสี่ยง ป้องกัน บรรเทา และสกัดกั้นการทุจริต รวมถึงการขยายผลตรวจสอบที่มีแนวโน้มทุจริต เพื่อมิให้เกิดความเสียหายแก่ธนาคารและลูกค้าในประเด็นอาชญากรรมทางการเงิน.
• วุฒิการศึกษา ระดับปริญญาตรีขึ้นไป ด้านบริหารธุรกิจ การบัญชี การเงิน เศรษฐศาสตร์ นิติศาสตร์ หรือสาขาที่เกี่ยวข้อง.
• ประสบการณ์ ด้าน Fraud Application ทั้งในด้าน Retail และ Non-Retail.
• มีความละเอียดรอบคอบ และสามารถตรวจสอบข้อมูลเชิงลึกได้อย่างมีประสิทธิภาพ.
• ทักษะการใช้คอมพิวเตอร์ อยู่ในเกณฑ์ดี.
• ทักษะภาษาอังกฤษ อยู่ในเกณฑ์ดี.
• อนึ่ง ธนาคารขอสงวนสิทธิ์ในการพิจารณาคัดเลือกผู้ที่มีคุณสมบัติเหมาะสมตรงตามที่ธนาคารต้องการ ทั้งนี้เพื่อประโยชน์โดยรวมของธนาคาร และเพื่อใช้ทรัพยากรบุคคลให้เกิดประโยชน์สูงสุดต่อไป.
• ท่านได้อ่านและศึกษานโยบายความเป็นส่วนตัวของธนาคารกรุงไทย จำกัด (มหาชน) ที่ https://krungthai.com/th/content/privacy-policy ทั้งนี้ ธนาคารไม่มีเจตนาหรือความจำเป็นใดๆ ที่จะประมวลผลข้อมูลส่วนบุคคลที่มีความอ่อนไหว รวมถึงข้อมูลที่เกี่ยวข้องศาสนาและ/หรือหมู่โลหิต ซึ่งอาจปรากฏอยู่ในสำเนาบัตรประจำตัวประชาชนของท่านแต่อย่างใด ดังนั้น กรุณาอย่าอัปโหลดเอกสารใดๆ รวมถึงสำเนาบัตรประจำตัวประชาชน หรือกรอกข้อมูลส่วนบุคคลที่มีความอ่อนไหวหรือข้อมูลอื่นใด ซึ่งไม่เกี่ยวข้องหรือไม่จำเป็นสำหรับวัตถุประสงค์ในการสมัครงานไว้บนเว็บไซต์ นอกจากนี้ กรุณาดำเนินการให้แน่ใจว่าได้ดำเนินการลบข้อมูลส่วนบุคคลที่มีความอ่อนไหว (ถ้ามี) ออกจากเรซูเม่และเอกสารอื่นใดก่อนที่จะอัปโหลดเอกสารดังกล่าวไว้บนเว็บไซต์แล้วด้วย ทั้งนี้ ธนาคารมีความจำเป็นต้องเก็บรวบรวมข้อมูลส่วนบุคคลเกี่ยวกับประวัติอาชญากรรมของท่านเพื่อบรรลุวัตถุประสงค์ในการพิจารณารับบุคคลเข้าทำงาน หรือการตรวจสอบคุณสมบัติ ลักษณะต้องห้าม หรือพิจารณาความเหมาะสมของบุคคลที่จะให้ดำรงตำแหน่ง ซึ่งการให้ความยินยอมเพื่อเก็บรวบรวม ใช้ หรือเปิดเผยข้อมูลส่วนบุคคลเกี่ยวกับประวัติอาชญากรรมของท่านมีความจำเป็นสำหรับการเข้าทำสัญญาและการได้รับการพิจารณาตามวัตถุประสงค์ดังกล่าวข้างต้น ในกรณีที่ท่านไม่ให้ความยินยอมในการเก็บรวบรวม ใช้ หรือเปิดเผยข้อมูลส่วนบุคคลเกี่ยวกับประวัติอาชญากรรม หรือมีการถอนความยินยอมในภายหลัง ธนาคารอาจไม่สามารถดำเนินการเพื่อบรรลุวัตถุประสงค์ดังกล่าวข้างต้นได้ และอาจ ทำให้ท่านสูญเสียโอกาสในการได้รับการพิจารณารับเข้าทำงานกับธนาคาร.

Experience:

5 years required

Skills:

English

Job type:

Full-time

• Oversee the planning, execution, and monitoring of security-related projects.
• Coordinate with cross-functional teams to ensure successful project delivery.
• Develop project plans, schedules, and budgets, and track progress against established objectives.
• Communicate project status, risks, and issues to relevant stakeholders.
• Security Risk Management: Identify, assess, and prioritize security risks across the organization.
• Develop and implement risk mitigation strategies and controls.
• Monitor and report on the effectiveness of risk management activities.
• Collaborate with stakeholders to ensure a consistent approach to risk management across the organization.
• Establishment of Policies, Standards, and Procedures:Develop, review, and maintain security policies, standards, and procedures.
• Ensure alignment with regulatory requirements and industry best practices.
• Collaborate with stakeholders to promote the adoption and enforcement of security policies and standards.
• Provide guidance and support to the organization in the interpretation and implementation of security policies and procedures.
• Communication and Collaboration with Technology Team:Effectively communicate security issues and concerns to the technology team.
• Collaborate with the technology team to develop and implement solutions to address identified security issues.
• Provide ongoing support and guidance to the technology team regarding security best practices and risk mitigation.
• Foster a strong working relationship between the security governance function and the technology team to promote a culture of security awareness and collaboration.
• Essential Skills & PrerequisitesA positive, can-do attitude, who naturally expresses a high degree of empathy to others.
• Bachelor s degree in Information Security, Computer Science, or a related field.
• A minimum of 5 years of experience in information security, with a focus on security governance.
• Professional certifications such as CISSP, CISM, or CRISC are preferred.
• Strong understanding of information security principles, frameworks, and best practices.
• Experience in audit management, risk assessment, and policy development.
• Excellent project management and organizational skills.
• Strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and communicate complex security issues in a clear and concise manner.
• Demonstrated ability to work independently and deliver results under tight deadlines.
• Talent to identify and create a broad vision for a security solution and to execute it.
• Systems Thinking - the ability to see how parts interact with the whole (big picture thinking).
• Proven experience of acting as the expert in project teams. PERSONAL SKILLS: Ability to explain your thoughts or findings also to non- technical professionals.
• Good command in written and spoken Thai and English language.
• Why Ascend Money?Contribute to a safer digital world.
• Gain hands-on experience with cutting-edge cybersecurity challenges.
• Grow your career in a dynamic, fast-moving environment.
• Don t miss this opportunity to be part of something big! Apply now and take the next step with Ascend Money.
• Apply Now: CLICK

Skills:

Linux, Good Communication Skills, English

Job type:

Full-time

• Conduct advanced penetration tests to identify vulnerabilities in computer systems, networks, and applications.
• Perform vulnerability assessments and security audits to evaluate the effectiveness of existing security measures.
• Develop and execute simulated cyber-attacks to assess the organization s readiness to defend against real-world threats.
• Employ various attack methodologies to test the resilience of systems against hacking attempts and security breaches.
• Perform threat modeling to anticipate potential attack vectors.
• Analyze risks associated with identified vulnerabilities and recommend appropriate mitigation strategies.
• Develop custom tools and scripts to automate penetration testing and exploit known vulnerabilities.
• Keep up to date with the latest exploitation techniques and security tools.
• Prepare detailed reports on findings from penetration tests and security assessments.
• Document and present risks and vulnerabilities to relevant stakeholders, along with recommended countermeasures.
• Collaborate with the Blue Team to enhance the organization s defensive strategies based on offensive findings.
• Share insights and knowledge on emerging threats and attack techniques with the cybersecurity team to continually improve defensive measures.
• Bachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 10 years of experience in penetration testing and vulnerability assessments or related roles.
• Strong knowledge of network and application security, ethical hacking, and cybersecurity principles.
• Familiarity with penetration testing tools (e.g., Metasploit, Burp Suite, Kali Linux).
• Excellent problem-solving skills and ability to think like an adversary.
• Good communication skills for effective reporting and stakeholder engagement.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, etc.
• Professional Certificated related to work e.g. (CISSP, OSCP, OSWE) is desirable.
• Location: True Digital Park, Punnawithi.

Skills:

Legal, Safety Management, Excel

Job type:

Full-time

• Serve as the primary contact for employee emergency cases across APAC, coordinating directly with the GP&S SOC.
• Manage escalations from Employee Relations, HR, Workplace, and other internal partners.
• Lead crisis readiness initiatives, including training and Behavioral Threat Assessment Team (BTAT) operations.
• Build strong partnerships with ER, Legal, HR, Workplace, IT, and Travel to ensure effective crisis response.
• Maintain accurate incident reporting and identify trends requiring additional support or resources.
• Work closely with Regional Protective Services Managers to support employee-related crises and related security implications.
• Ensure all actions align with Accenture policies and standards.
• QualificationsBachelor s degree in Security/Safety Management, Risk or Crisis Management, Behavioral Science, or related field.
• 10+ years of crisis/emergency response experience, including 5+ years in behavioral threat assessment.
• 3+ years working with corporate support functions (HR, ER, Legal, Workplace).
• Proficient in Microsoft Word, Excel, and PowerPoint.

Skills:

Network Infrastructure, SAP, Assurance

Job type:

Full-time

• Participate in the development of IT Audit Programs within assigned areas, covering IT security, applications, and IT processes (e.g., network infrastructure, operating systems, data centers, SAP, and retail systems). Assess whether security risks and vulnerabilities are properly identified and mitigated. Coordinate audit scope and effectiveness with business units and external IT/security specialists..
• Contribute to the design of detailed audit testing procedures in alignment with the approved Audit Program, including the definition of audit scope, sample sizes, audit ...
• Execute audit assignments as assigned by supervisors, performing detailed testing in accordance with established audit methodologies and procedures..
• Review and consolidate audit results, working papers, and supporting evidence prepared by team members in order to analyze audit findings and determine whether further audit procedures or expanded testing are required..
• Evaluate and analyze audit findings, including root causes and risks, and provide recommendations for improvement. Prepare and consolidate audit reports for submission to management for review and consideration..
• Bachelor s degree or higher in Management Information Systems, Information Technology, Computer Science, or other related fields..
• At least 5 years of experience in internal auditing, with a focus on IT audit, IT security controls, or IT-related assurance functions, or other relevant experience (e.g., information security, IT risk and control, IT governance, or IT quality assurance)..
• Strong leadership skills, with the ability to work effectively as part of a team and adapt to changing work environments..
• Strong analytical and systematic thinking skills..
• Proactive and innovative mindset, with the ability to initiate improvements..
• Effective communication and coordination skills..
• Proficiency in computer applications, including MS Office and SAP ERP..
• Professional certifications such as CISA, CISSP, CISM, or other relevant technical certifications will be considered an advantage..
• Working location: The Mall Ramkhamhaeng (Headquarter).

Experience:

3 years required

Skills:

System Security

Job type:

Full-time

• Participate in gathering and analyzing business and technical requirements to develop enterprise-wide Identity and Access Management (IAM) processes and procedures.
• Demonstrate a solid understanding of risk and change management, security policies and controls, user account lifecycle management, onboarding/offboarding, role-based access control (RBAC), access governance, and directory services.
• Translate business requirements into specific system, application, or process designs.
• Collaborate with cross-functional teams, including business units and technical stakeholders, to identify and define functional requirements, and contribute to or lead the design of IAM solutions.
• Engage in a broad range of IAM design activities from requirements analysis to implementation.
• Apply your knowledge of various IAM products and domains, with the ability to quickly adapt to new tools and technologies through self-learning or formal training.
• Provide support for identity provisioning, governance platforms, and privileged access management (PAM) tools.
• Lead and contribute to IAM-related projects to ensure successful delivery of objectives.
• Identify and communicate high-level functional gaps, risks, and potential issues, and propose effective solutions.
• Monitor service delivery against SLAs and escalate exceptions as needed.
• Perform IAM-related risk assessments and consult on project implementations to ensure alignment with RBAC frameworks and internal security policies.
• Drive improvements in RBAC processes, governance policies, and IAM lifecycle workflows.
• Lead or contribute to incident and problem management efforts, ensuring root cause analysis and future incident mitigation.
• Participate in on-call production support rotations and work with vendors to resolve technical issues.
• Influence the IAM strategy by making informed decisions on complex technical challenges.
• Support internal and external audit readiness by preparing and organizing required audit documentation.
• Design and implement key management controls to ensure encryption key security throughout the lifecycle.
• Conduct physical access control reviews and physical security assessments for restricted areas.
• Promote and extend secure access control practices across the organization and its affiliates.
• Essential Skills & PrerequisitesA positive, proactive mindset with strong empathy and team collaboration skills.
• Bachelor s or Master s degree in Computer Engineering, Information Security, MIS, or a related field.
• Minimum of 3 years of experience in cybersecurity or IAM domains.
• Solid foundation in information security principles and best practices.
• Knowledge of international security frameworks and standards, such as COBIT, NIST 800 series, ISO/IEC 27001, PCI-DSS, and OWASP.
• Familiarity with end-to-end security architecture including network, platform, and application layers.
• Experience with application/system security controls, IAM risk assessments, and access governance.
• Strong skills in technical writing, documentation, process mapping, and visual communication.
• Ability to develop and execute a clear vision for IAM and security solutions.
• Why Ascend Money?Contribute to a safer digital world.
• Gain hands-on experience with cutting-edge cybersecurity challenges.
• Grow your career in a dynamic, fast-moving environment.
• Don t miss this opportunity to be part of something big! Apply now and take the next step with Ascend Money.
• Apply Now: CLICK

Experience:

5 years required

Skills:

Problem Solving, English

Job type:

Full-time

• Design, implement and maintain the IT Security of the organization which involves developing and executing security strategies, standards and procedures to protect IT assets from cyber threats and vulnerabilities.
• Develops solution conceptual designs and solution blueprints for IT projects.
• Design security architecture elements to mitigate emerging threats.
• Reviewing security measures and recommending to implementing enhancements.
• Review and advise security solution architect for the proposed system such as: Network Segmentation, Application protection, Defense-in-depth, Remote Access, Encryption Technologies.
• Conducting security advisory consultancy and working with RED and BLUE team for security testing along the pipeline of the system delivery.
• Bachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 5 years of experience of IT Security Advisory, Penetration tester or Enterprise Architect or related role.
• Comprehensive understanding of the IT Security Concept, Security Architect, Risk assessment.
• Ability to analyst finding form Offensive and Defensive Security team.
• Ability to analyze end-to-end security processes and provide advice in order to reduce risk to acceptable levels.
• Strong analytical and problem solving.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, and etc.
• Professional Certificated related to work e.g. (CISSP, CSSLP, CDPSE, OSCP, TOGAF) is desirable.
• Location: True Digital Park, Punnawithi.

Experience:

5 years required

Skills:

English

Job type:

Full-time

• Oversee the planning, execution, and monitoring of security-related projects.
• Coordinate with cross-functional teams to ensure successful project delivery.
• Develop project plans, schedules, and budgets, and track progress against established objectives.
• Communicate project status, risks, and issues to relevant stakeholders.
• Identify, assess, and prioritize security risks across the organization.
• Develop and implement risk mitigation strategies and controls.
• Monitor and report on the effectiveness of risk management activities.
• Collaborate with stakeholders to ensure a consistent approach to risk management across the organization.
• Develop, review, and maintain security policies, standards, and procedures.
• Ensure alignment with regulatory requirements and industry best practices.
• Collaborate with stakeholders to promote the adoption and enforcement of security policies and standards.
• Provide guidance and support to the organization in the interpretation and implementation of security policies and procedures.
• Effectively communicate security issues and concerns to the technology team.
• Collaborate with the technology team to develop and implement solutions to address identified security issues.
• Provide ongoing support and guidance to the technology team regarding security best practices and risk mitigation.
• Foster a strong working relationship between the security governance function and the technology team to promote a culture of security awareness and collaboration.
• Positive, can-do attitude, who naturally expresses a high degree of empathy to others.
• Bachelor s degree in Information Security, Computer Science, or a related field.
• A minimum of 5 years of experience in information security, with a focus on security governance.
• Professional certifications such as CISSP, CISM, or CRISC are preferred.
• Strong understanding of information security principles, frameworks, and best practices.
• Experience in audit management, risk assessment, and policy development.
• Excellent project management and organizational skills.
• Strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and communicate complex security issues in a clear and concise manner.
• Demonstrated ability to work independently and deliver results under tight deadlines.
• Talent to identify and create a broad vision for a security solution and to execute it.
• Systems Thinking - the ability to see how parts interact with the whole (big picture thinking).
• Proven experience of acting as an expert in project teams.
• Ability to explain your thoughts or findings also to non- technical professionals.
• Good command in written and spoken Thai and English language.
• Location: True Digital Park, Punnawithi.

Experience:

5 years required

Skills:

Linux, Good Communication Skills, English

Job type:

Full-time

• Conduct advanced penetration tests to identify vulnerabilities in computer systems, networks, and applications.
• Perform vulnerability assessments and security audits to evaluate the effectiveness of existing security measures.
• Develop and execute simulated cyber attacks to assess the organization s readiness to defend against real-world threats.
• Employ various attack methodologies to test the resilience of systems against hacking attempts and security breaches.
• Perform threat modeling to anticipate potential attack vectors.
• Analyze risks associated with identified vulnerabilities and recommend appropriate mitigation strategies.
• Develop custom tools and scripts to automate penetration testing and exploit known vulnerabilities.
• Keep up-to-date with the latest exploitation techniques and security tools.
• Prepare detailed reports on findings from penetration tests and security assessments.
• Document and present risks and vulnerabilities to relevant stakeholders, along with recommended countermeasures.
• Collaborate with the Blue Team to enhance the organization s defensive strategies based on offensive findings.
• Share insights and knowledge on emerging threats and attack techniques with the cybersecurity team to continually improve defensive measures.
• Essential Skills & PrerequisitesBachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 5 years of experience in penetration testing and vulnerability assessments or related roles.
• Strong knowledge of network and application security, ethical hacking, and cybersecurity principles.
• Familiarity with penetration testing tools (e.g., Metasploit, Burp Suite, Kali Linux).
• Excellent problem-solving skills and ability to think like an adversary.
• Good communication skills for effective reporting and stakeholder engagement.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, and etc.
• Professional Certificated related to work e.g. (CISSP, OSCP, OSWE) is desirable.
• Why Ascend Money?Contribute to a safer digital world.
• Gain hands-on experience with cutting-edge cybersecurity challenges.
• Grow your career in a dynamic, fast-moving environment.
• Don t miss this opportunity to be part of something big! Apply now and take the next step with Ascend Money.
• Apply Now: CLICK

Experience:

5 years required

Skills:

Problem Solving, English

Job type:

Full-time

• Design, implement and maintain the IT Security of the organization which involves developing and executing security strategies, standards and procedures to protect IT assets from cyber threats and vulnerabilities.
• Develops solution conceptual designs and solution blueprints for IT projects.
• Design security architecture elements to mitigate emerging threats.
• Reviewing security measures and recommending to implementing enhancements.
• Review and advise security solution architect for the proposed system such as: Network Segmentation, Application protection, Defense-in-depth, Remote Access, Encryption Technologies.
• Conducting security advisory consultancy and working with RED and BLUE team for security testing along the pipeline of the system delivery.
• Essential Skills & PrerequisitesBachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 5 years of experience of IT Security Advisory, Penetration tester or Enterprise Architect or related role.
• Comprehensive understanding of the IT Security Concept, Security Architect, Risk assessment.
• Ability to analyst finding form Offensive and Defensive Security team.
• Ability to analyze end-to-end security processes and provide advice in order to reduce risk to acceptable levels.
• Strong analytical and problem solving.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, and etc.
• Professional Certificated related to work e.g. (CISSP, CSSLP, CDPSE, OSCP, TOGAF) is desirable.
• Why Ascend Money?Contribute to a safer digital world.
• Gain hands-on experience with cutting-edge cybersecurity challenges.
• Grow your career in a dynamic, fast-moving environment.
• Don t miss this opportunity to be part of something big! Apply now and take the next step with Ascend Money.
• Apply Now: CLICK

Job type:

Full-time

• Excellent organization, analytical, and communication skills.
• Calm under pressure with the ability to provide clear guidance in stressful situations.
• Strong stakeholder management and relationship building skills.
• High ethics, integrity, and ability to handle highly confidential information.
• Able to shift priorities quickly and meet time sensitive deadlines.
• Comfortable with ambiguity and able to drive clarity.
• ASIS CPP, PSP, and CPI are considered a plus.

Experience:

3 years required

Skills:

Risk Management, Big Data, Teamwork, English

Job type:

Full-time

• Providing effective 2nd line of defense on oversight of Technology related risk involving in assessing, in depth, the risks in IT Infrastructure, Cloud strategy, Data Management, IT Outsourcing, IT Operations, and Big Data.
• Assisting to update Ascend Money/True Money s risk appetite for approval by the board.
• Facilitating Risk and Control Self-Assessment (R&CSA) and monitoring the design and testing the operational effectiveness under Key Control Testing (KCT) and incident m ...
• Coordinating and supporting the Country Risk Management team for facilitating Risk and Control Self-Assessment (R&CSA), performing Key Control Testing (KCT), setting and reviewing Key Risk Indicators (KRIs) and Incident Management.
• Challenge business units in implementing a secured architecture aligned with the business goals and future plans, including company policy and regulatory requirements.
• Analysing IT incidents reported by staff and report lessons learned to the Head of International Risk and Fraud Management and the Committee.
• Delivering the oversight, advisory and guidance on new technology risk and emerging risk.
• Investigation, root-cause analysis, and coordination with relevant parties for data loss prevention monitoring and management.
• Assisting the Head of International Risk and Fraud Management to bring together a holistic picture of the technology risk across the company.
• Tracking progress status with the Country Risk Management team around remediation activities to close gaps from policy compliance assessments and various other risk assessments.
• Providing IT & Cyber Risk dashboard for Committee and Senior Management.
• Ad-hoc assignment.
• Bachelor s or Master s Degree in Economic, Finance, IT or related fields.
• Minimum 3 years of professional experience in the IT Risk Management, IT Security or IT Audit with relevant experience in the Financial Services Industry.
• Strong organization, good presentation, communication, writing, interpersonal and teamwork skills.
• Demonstrated ability to complete assigned projects in a timely manner and in a fast-paced, high pressure environment.
• Multiple industry recognized certifications like CISSP, CRISC, CSSP (Cloud), CPT, ISO27001 is a plus.
• Strong analytical and quantitative skills.
• Thorough knowledge of IT governance and control frameworks.
• Understanding of complex IT environments including legacy, hybrid cloud, virtualization, software defined networking is a plus.
• Good command in both oral and written in English communication.
• Able to travel in regional countries (i.e. Myanmar, Vietnam, Cambodia, Indonesia, Malaysia, the Philippines).

Job type:

Full-time

• ตรวจสอบข้อมูลและการทำรายการของลูกค้า.
• วิเคราะห์ความเสี่ยงจากการผูกบัญชีธนาคาร และ/หรือ ข้อมูลการยืนยันตัวตนของลูกค้า.
• ติดต่อสื่อสารกับลูกค้าเพื่อทำการยืนยันตัวตน และยืนยันรายการ.
• ประเมินและวิเคราะห์ความเสี่ยงจากพฤติกรรมการทำรายการของลูกค้า.
• ตรวจสอบและติดตามการทำรายการที่มีความเสี่ยง เพื่อตัดสินใจในการอนุมัติหรือปฏิเสธรายการ.
• ประสานงานภายในทีมเพื่อพัฒนาขั้นตอนการทำงาน สำหรับรายการหรือสินค้าที่มีความเสี่ยงจากการทุจริต.
• รายงานธุรกรรมที่น่าสงสัยลงระบบงาน.
• Requirements: สำเร็จการศึกษาขั้นตํ่าในระดับปริญญาตรี (เกรดเฉลี่ยไม่ตํ่ากว่า 2.50).
• ประสบการณ์ในการทำงาน 0 - 2 ปี.
• หากมีประสบการณด้านวิเคราะห์ความเสี่ยง งานธนาคาร หรือ Customer Service จะพิจารณาเป็นพิเศษ.
• ทำงาน 5 วัน ต่อสัปดาห์ (วันหยุดอาจไม่ตรงวันเสาร์หรือวันอาทิตย์).
• สามารถทำงานกะกลางคืนในช่วงเวลาประมาณ 21.00 น - 06.00 น. หรือ 22.00 น.- 07.00 น.ได้.
• สามารถทำงานเป็นกะ และวันหยุดได้.
• สามารถทำงานร่วมกับผู้อื่นได้ มีมนุษยสัมพันธ์ดี.
• สามารถสื่อสารภาษาอังกฤษได้จะพิจารณาเป็นพิเศษ.
• สามารถทำงานล่วงเวลาได้.

Skills:

Express, Risk Management

Job type:

Full-time

• Serve as the main point of contact for gathering evidence, CCTV footage, and relevant information for assigned fraud cases.
• Coordinate with other relevant teams to prepare for interrogation sessions.
• Participate in the interrogation sessions of offenders and culprits.
• Draft investigation reports for supervisor review.
• Act as a CCTV real-time monitor as requested or assigned by the supervisor.
• Participate in security-related projects as assigned.
• Manage other Security-Related tasks as assigned.
• 1-Year contract (with the possibility of extension)
• Working from Monday to Saturday, with Sundays off
• Requirements: Bachelor's degree in a related field.
• Experience in Fraud Investigation, Fraud Prevention, Loss Prevention, Government Affairs, Government Relations, or Risk Management-related positions.
• Previous experience as a Police/Military Official or other government official is advantageous.
• Familiarity with reviewing CCTV footage.
• Availability to be on-call for emergency issues.

Skills:

Industry trends, Cloud Computing, English

Job type:

Full-time

• Provide consultancy advice to business and project teams to ensure security standards and requirements are considered and implemented.
• Perform deep dive reviews focused on Cybersecurity Risk, Technology Risk, and Emerging Risk.
• Effective management of all technology risk and cybersecurity framework including technology policies and standards based on the Group's risk appetite.
• Closely monitor technology and cyber related KPIs, KRIs, KCIs and drive remediation actions as Group perspective.
• Timely update on all material technology risk and cybersecurity topics including a set of risk indicators to the relevant Group Risk Committees and forums.
• Oversight the result of control testing from subsidiaries to ensure Cybersecurity and technology controls meet internal and external compliance requirements.
• Conduct technology risk assessments: Identify and evaluate potential risks Management with the organization's technology systems, infrastructure, and processes. Assess the adequacy of controls, identify vulnerabilities, and recommend risk mitigation strategies.
• Develop and implement risk management strategies: Collaborate with stakeholders to develop comprehensive risk management strategies that align with business objectives and regulatory requirements. Implement controls and procedures to mitigate identified risks effectively.
• Monitor technology risk exposure: Continuously monitor technology systems, networks, and processes to identify emerging risks, vulnerabilities, and trends. Stay up-to-date with industry developments, emerging technologies, and regulatory changes to proactively address potential risks.
• Perform risk analysis and reporting: Analyze risk assessment findings, internal control evaluations, and audit reports to identify trends, root causes, and areas of improvement. Prepare detailed reports on risk exposure, mitigation strategies, and recommendations for management and relevant stakeholders.
• Collaborate with cross-functional teams: Work closely with IT teams, compliance officers, cybersecurity professionals, and other stakeholders to develop and implement risk management frameworks, policies, and procedures. Provide guidance and recommendations on technology-related risk management activities.
• Conduct technology risk training and awareness programs: Develop and deliver training programs to educate employees on technology risk management best practices, policies, and procedures. Raise awareness about emerging threats and provide guidance on incident response protocols.
• Assist in incident response and recovery: Support the organization in managing technology-related incidents, including data breaches, system failures, and cybersecurity threats. Coordinate response efforts, assist in recovery measures, and contribute to post-incident reviews and lessons learned.
• Stay updated on industry standards and regulations: Keep abreast of industry trends, emerging technologies, and regulatory requirements related to technology risk management. Provide recommendations on incorporating best practices into the organization's risk management framework.
• Minimum of 5 years experience in Technology and Cyber Risk.
• Bachelor s degree or above in related discipline.
• Working experience or familiar in a group public company.
• Understanding of regulatory requirements such as BOT, OIC, and SEC; industry standards such as COBIT, NIST, ISO27001, ITIL, and PCIDSS.
• Experience in one or more emerging technologies such as Artificial Intelligence, Machine Learning, Distributed Ledger Technology, Robotic Process Automation, Cloud computing.
• Excellent communication and relationship building skills; proven ability to influence senior management.
• Good command of written and spoken in English is preferable.