เงื่อนไขการค้นหา

ประสบการณ์:

2 ปีขึ้นไป

ทักษะ:

Risk Management, Compliance, English

ประเภทงาน:

งานประจำ

• Invite and give in the moment feedback in a constructive manner.
• Share and collaborate effectively with others.
• Identify and make suggestions for improvements when problems and/or opportunities arise.
• Handle, manipulate and analyse data and information responsibly.
• Follow risk management and compliance procedures.
• Keep up-to-date with developments in area of specialism.
• Communicate confidently in a clear, concise and articulate manner - verbally and in the materials I produce.
• Build and maintain an internal and external network.
• Seek opportunities to learn about how PwC works as a global network of firms.
• Uphold the firm's code of ethics and business conduct.
• Bachelor s degree in Computer Engineering, Computer Science, Information Systems or a related field.
• 0-2 years of experience.
• Be able to utilize your well-rounded skills and experience related to industries to steer your projects to a successful outcome.
• Team player with strong interpersonal, communication skills.
• Be able to work both independently and as part of a team with professionals at all levels.
• Proficiency in spoken and written English & Thai.
• We thank all applicants. Please note that only short-listed candidates will be contacted for interviews.
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified).
• Required Skills.
• Optional Skills.
• Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Azure Data Factory, Communication, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture, Security Compliance Management, Security Control, Security Incident Management, Security Monitoring {+ 3 more}Desired Languages (If blank, desired languages not specified).
• Travel Requirements.
• Available for Work Visa Sponsorship?.
• Government Clearance Required?.
• Job Posting End Date.

ประสบการณ์:

3 ปีขึ้นไป

ทักษะ:

Legal, Financial Analysis, Project Management, English

ประเภทงาน:

งานประจำ

• Direct and manage contract guard force to run daily data center operations.
• Handle site security incidents, escalations or any other security related issues.
• Provide after-hours on-call management support and participate in emergent, large scale event response when needed.
• Participate in re-occurring data center security audits and reviews.
• Executes established compliance processes with AWS policies, standards, guidelines and relevant legal and regulatory requirements.
• Provides input on, and may develop security methodologies, policies and procedures.
• Write reports and communicate with management on the status of physical security operations.
• Oversee new security construction or retrofit projects.
• Manage the security P&L for assigned site(s), assist management with financial analysis and contribute to financial decisions for security requirements.
• Collaborate with other teams to protect AWS Data Center personnel, information and assets.
• A day in the life
• Mission: Deliver pioneering physical security by working vigorously to earn and keep customer trust; providing a safe and secure environment for our people, assets, and customer data.
• Vision: Develop exceptional security professionals, consistently apply security processes, and pioneer new technologies that effectively balance security requirements with operational needs.
• Diverse Experiences
• AWS values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn t followed a traditional path, or includes alternative experiences, don t let it stop you from applying.
• Why AWS?
• Amazon Web Services (AWS) is the world s most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating that s why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.
• Inclusive Team Culture
• AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
• Mentorship & Career Growth
• We re continuously raising our performance bar as we strive to become Earth s Best Employer. That s why you ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
• Work/Life Balance
• We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there s nothing we can t achieve.
• BASIC QUALIFICATIONS.
• 3+ year s experience managing contract security and physical security operation programs such as Access Control/Intrusion Detection and CCTV Surveillance systems.
• 3+ years in Project Management experience and creating process improvement procedure.
• Experience in managing vendors/vendor teams.
• PREFERRED QUALIFICATIONS.
• Bachelor s degree and or equivalent professional experience in corporate or government security environment.
• 3+ years experience creating and implementing emergency planning programs, physical security countermeasures.
• Excellent oral and written communication skills.
• Proficiency in both Thai and English language.
• Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you re applying in isn t listed, please contact your Recruiting Partner.

ประสบการณ์:

1 ปีขึ้นไป

ทักษะ:

Express

ประเภทงาน:

งานประจำ

• Apply a learning mindset and take ownership for your own development.
• Appreciate diverse perspectives, needs, and feelings of others.
• Adopt habits to sustain high performance and develop your potential.
• Actively listen, ask questions to check understanding, and clearly express ideas.
• Seek, reflect, act on, and give feedback.
• Gather information from a range of sources to analyse facts and discern patterns.
• Commit to understanding how the business works and building commercial awareness.
• Learn and apply professional and technical standards (e.g. refer to specific PwC tax and audit guidance), uphold the Firm's code of conduct and independence requirements.
• Minimum years experience required.
• 1-2 years of experiences in Cyber - Penetration tester.
• Additional application instructions.
• N/A.
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified).
• Required Skills.
• Optional Skills.
• Accepting Feedback, Accepting Feedback, Active Listening, Cloud Security, Communication, Conducting Research, Cyber Defense, Cyber Threat Intelligence, Emotional Regulation, Empathy, Encryption, Inclusion, Information Security, Intellectual Curiosity, Intelligence Analysis, Intelligence Report, Intrusion Detection, Intrusion Detection System (IDS), IT Operations, Malware Analysis, Malware Detection Tools, Malware Intelligence Gathering, Malware Research, Malware Reverse Engineering, Malware Sandboxing {+ 11 more}Desired Languages (If blank, desired languages not specified).
• Travel Requirements.
• Not Specified
• Available for Work Visa Sponsorship?.
• Yes
• Government Clearance Required?.
• No
• Job Posting End Date.

ประเภทงาน:

งานประจำ

• Respond effectively to the diverse perspectives, needs, and feelings of others.
• Use a broad range of tools, methodologies and techniques to generate new ideas and solve problems.
• Use critical thinking to break down complex concepts.
• Understand the broader objectives of your project or role and how your work fits into the overall strategy.
• Develop a deeper understanding of the business context and how it is changing.
• Use reflection to develop self awareness, enhance strengths and address development areas.
• Interpret data to inform insights and recommendations.
• Uphold and reinforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance), the Firm's code of conduct, and independence requirements.
• Minimum years experience required.
• n/a.
• Additional application instructions.
• n/a.
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified).
• Required Skills.
• Optional Skills.
• Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Learning Agility, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture {+ 8 more}Desired Languages (If blank, desired languages not specified).
• Travel Requirements.
• Available for Work Visa Sponsorship?.
• Government Clearance Required?.
• Job Posting End Date.

ประสบการณ์:

1 ปีขึ้นไป

ทักษะ:

Express, Risk Management, Microsoft Office

ประเภทงาน:

งานประจำ

• Act as the central coordinator for planning, implementing, and managing security measures across all hubs, including communication and data consolidation related to security incidents and cases.
• Prepare and present reports to management, highlighting hubs that require special attention regarding Security & Fraud issues.
• Conduct on-site assessments to identify problems and vulnerabilities arising from work processes or security equipment.
• Design and propose solutions to resolve or reduce identified security risks.
• Serve as the Main Point of Contact (POC) when government officials visit the hub area.
• Serve as the Main Point of Contact (POC) during security-related emergencies.
• Oversee and manage special projects related to hub security and internal investigations.
• Supervise, monitor, and evaluate the performance of security guards stationed at each hub.
• Design and plan the deployment of security personnel in alignment with changing hub conditions and operational needs.
• Other security-related assigned tasks.
• Requirements: Bachelor's degree in a related field.
• Minimum of 1-2 years of experience in Fraud Investigation, Fraud Prevention, Loss Prevention, Government Affairs, Government Relations, or Risk Management-related positions.
• Experience in the logistics industry is a plus.
• Previous experience as a Police/Military Official or other government official is advantageous.
• Familiarity with the Physical Security setting and investigations field.
• Skills in offender interrogation or interviewing.
• Strong analytical and problem-solving abilities.
• Excellent interpersonal skills.
• Proficient in GSuite or Microsoft Office.
• Must have a private vehicle and a valid driver's license.
• Able to travel and work at various hubs both in Bangkok and upcountry.
• Availability to be on-call for emergency issues.

ทักษะ:

ISO 27001

ประเภทงาน:

งานประจำ

• Assists in conducting security assessments, vulnerability scans, and penetration tests to identify weaknesses in client systems.
• Analyzes security data, logs, and reports to detect and investigate security incidents or anomalies.
• Prepares and maintains documentation, including security assessment reports, findings, and recommendations.
• Collaborates with senior consultants to provide advice and support to clients on security best practices and risk mitigation strategies.
• Learns and uses various security tools and technologies for assessments and monitoring.
• Stays updated on the latest cybersecurity threats, vulnerabilities, and industry best practices.
• Assists in evaluating client systems for compliance with industry standards (e.g., ISO 27001, NIST) and regulatory requirements.
• Communicates effectively with clients to understand their security needs and concerns.
• Participates in training programs and certifications to develop expertise in cybersecurity.
• To thrive in this role, you need to have: Strong interest in cybersecurity and a desire to learn and grow in the field.
• Knowledge of basic cybersecurity concepts, principles, and best practices.
• Familiarity with common security tools and technologies is a plus.
• Excellent analytical and problem-solving skills.
• Effective communication skills, both written and verbal.
• Ability to work collaboratively in a team environment.
• Eagerness to stay up to date with the evolving cybersecurity landscape.
• Academic qualifications and certifications: Bachelor's degree or equivalent in Information Technology or Computer Science or Engineering or related field.
• Industry relevant certifications such as CISSP, CISM, CEH, GSEC or CompTIA Security+ essential.
• Required experience: Moderate level of demonstrable experience in the Information Technology Security Industry or relevant experience in similar role within a related environment.
• Moderate level of experience with security architecture design principles.
• Moderate level of experience with industry compliance and standards such as ISO 27000, PCI:DSS, NIST, HIPAA or others.
• Moderate level of experience with security tools and techniques to cover SANS Top 25, OWASP or others.
• On-site Working About NTT DATA
• NTT DATA is a $30+ billion business and technology services leader, serving 75% of the Fortune Global 100. We are committed to accelerating client success and positively impacting society through responsible innovation. We are one of the world s leading AI and digital infrastructure providers, with unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and application services. Our consulting and industry solutions help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more than 50 countries. We also offer clients access to a robust ecosystem of innovation centers as well as established and start-up partners. NTT DATA is part of NTT Group, which invests over $3 billion each year in R&D.
• Equal Opportunity Employer
• NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
• Third parties fraudulently posing as NTT DATA recruiters.
• NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters whether in writing or by phone in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an @nttdata.com email address. If you suspect any fraudulent activity, please contact us.

ประสบการณ์:

5 ปีขึ้นไป

ประเภทงาน:

งานประจำ

• Liaise with business application owners and system owners to gather requirements and support the implementation of Role-Based Access Control (RBAC) projects.
• Analyze identity lifecycle processes, defining roles and access rights aligned with business and security requirements.
• Apply documented security frameworks, methods, and best practices to support project delivery and operational efficiency.
• Contribute to ISO 27001 implementation and follow up on cybersecurity non-compliance issues.
• Prepare project status reports and security documentation to support management decision-making.
• Support and lead security awareness initiatives for internal stakeholders.
• Coordinate with business users, internal IT teams, and regional stakeholders to enhance cybersecurity and compliance.
• ABOUT YOU
• Bachelor's or Master's degree in IT, Cybersecurity, MIS, or a related field.
• 5+ years of experience in Cybersecurity, Identity and Access Management, or related domains.
• Strong knowledge of IAM concepts, including RBAC and identity lifecycle management.
• Experience with ISO 27001 standards and cybersecurity compliance.
• Exposure to security awareness or training programs.
• Structured and analytical mindset with strong project management skills.
• Good command of Microsoft tools (Office, Project, Visio).
• Strong communication and interpersonal skills; ability to work under time constraints.
• Professional proficiency in English.
• WHY AMARIS?
• Global Diversity: Be part of an international team of 110+ nationalities, celebrating diverse perspectives and collaboration.
• Trust and Growth: With 70% of our leaders starting at entry-level, we're committed to nurturing talent and empowering you to reach new heights.
• Continuous Learning: Unlock your full potential with our internal Academy and over 250 training modules designed for your professional growth.
• Vibrant Culture: Enjoy a workplace where energy, fun, and camaraderie come together through afterworks, networking events, and more.
• Meaningful Impact: Join us in making a difference through our CSR initiatives, including the WeCare Together program, and be part of something bigger.
• Equal Opportunity
• At our company, we are committed to creating an inclusive workplace that promotes and values diversity. All qualified applicants will be considered for employment without regard to gender, sexual orientation, race, ethnicity, beliefs, age, marital status, disability, or any other characteristic protected by applicable laws.
• Who are we?
• Amaris Consulting is an independent technology consulting firm providing guidance and solutions to businesses. With more than 1000 clients across the globe, we have been rolling out solutions in major projects for over a decade - this is made possible by an international team of 7,600 people spread across 5 continents and more than 60 countries. Our solutions focus on four different Business Lines: Information System & Digital, Telecom, Life Sciences and Engineering. We're focused on building and nurturing a top talent community where all our team members can achieve their full potential. Amaris is your steppingstone to cross rivers of change, meet challenges and achieve all your projects with success.
• Brief Call: Our process typically begins with a brief virtual/phone conversation to get to know you! The objective? Learn about you, understand your motivations, and make sure we have the right job for you!
• Interviews (the average number of interviews is 3 - the number may vary depending on the level of seniority required for the position). During the interviews, you will meet people from our team: your line manager of course, but also other people related to your future role. We will talk in depth about you, your experience, and skills, but also about the position and what will be expected of you. Of course, you will also get to know Amaris: our culture, our roots, our teams, and your career opportunities!
• Case study: Depending on the position, we may ask you to take a test. This could be a role play, a technical assessment, a problem-solving scenario, etc.
• As you know, every person is different and so is every role in a company. That is why we have to adapt accordingly, and the process may differ slightly at times. However, please know that we always put ourselves in the candidate's shoes to ensure they have the best possible experience.
• We look forward to meeting you!

ทักษะ:

Risk Management, Kubernetes, Docker

ประเภทงาน:

งานประจำ

• Design, develop, and maintain security systems, tools, and best practices across the stack (frontend, backend, mobile, and infrastructure).
• Identify, assess, and mitigate security vulnerabilities through proactive risk management and threat modeling.
• Collaborate with product managers and developers to embed security into the software development lifecycle (SDLC).
• Develop and enforce policies for secure coding, data protection, and incident response.
• Implement robust authentication and authorization mechanisms.
• Conduct regular security assessments, including penetration testing and code reviews.
• Monitor, detect, and respond to security incidents using advanced tools and methodologies.
• Enhance infrastructure security using Kubernetes, Docker, and cloud platforms (GCP, AWS).
• Stay current on emerging threats, vulnerabilities, and security trends, and recommend actionable insights to improve defenses.
• Champion security awareness across the organization, including training sessions and knowledge-sharing activities.
• Ensure compliance with relevant security standards and regulations such as ISO 27001, PDPA, GDPR, SOC 2, or PCI DSS.
• Basic QualificationsProven expertise in application security, cloud security, and infrastructure security.
• Proficiency in securing systems built with technologies such as Node.js, Golang, Elixir, Python, React, Svelte, or Flutter.
• Experience with tools like Docker, Kubernetes, and cloud services (GCP, AWS).
• Strong understanding of cryptographic principles and secure communication protocols.
• Familiarity with CI/CD pipelines and secure DevOps practices.
• Hands-on experience with security tools for vulnerability scanning, penetration testing, and threat detection.
• Deep understanding of database security, especially with PostgreSQL or other relational or non-relational databases.
• Strong analytical and problem-solving skills with a security-first mindset.
• Excellent communication skills and the ability to collaborate effectively in Agile teams.
• Self-motivation, adaptability, and a strong work ethic.
• Preferred Qualifications We re especially excited if you bring:Experience leading security initiatives or mentoring other engineers in security best practices.
• Expertise in compliance frameworks such as ISO 27001, PDPA, GDPR, SOC 2, or PCI DSS.
• Advanced knowledge of security monitoring and incident response systems.
• Strong system design skills with a focus on secure architectures and long-term trade-offs.
• A proven track record of securing fast-paced, high-growth tech environments.
• A passion for securing user-centric products and contributing to their success.
• Perks & Benefits Flat Structure As we continue to grow fast, we strive to retain our culture where everyone is heard, contributes, and grows with the company..
• Work-life Harmony We believe that quality time outside of work is important to sustaining a healthy and happy lifestyle.
• Remote Work Hybrid-mode activated! It comes with the package: flexibility, focus and productivity!.
• Urban Office One breath from Phrom Phong BTS. No sweat whatsoever! The office should also feel like a second home so we dedicated a lot of care and resources into building the best environment for you to wake up to every morning.
• Fun Workshop The best relationships are built over new experiences, that s why we have workshops filled with a range of activities for you to look forward to and enjoy.
• Game Tournament It s getting fun and competitive! Challenge doesn t only have to come from work. Own the championship and show the peeps how great of a gamer (and player) you are.
• Group Insurance Health comes first, we know, don t worry, we ve got you covered.
• Health & Wellness Only a healthy army wins the war. We invest to take care of you from physical, mental and happiness-level. Adopted health & wellness applications plus activities to make sure everyone here is on cloud nine

ทักษะ:

ISO 27001, Negotiation

ประเภทงาน:

งานประจำ

• Extensive understanding of security principles, concepts, and technologies, including knowledge of NIST CSF, ISO 27001, and cybersecurity solutions.
• A proven track record in achieving and exceeding sales and financial goals.
• Skill in delivering engaging sales presentations and elevator pitches.
• Meticulousness in maintaining up-to-date, accurate sales forecasts and close plans.
• Experience in a team-selling approach and knowledge of competitors and competing sales strategies.
• Strong negotiation skills to craft solutions beneficial to customers, partners, and our organization.
• The ability to develop and maintain meaningful customer relationships up to the C-level.
• A client-centric mindset with the capability to understand customer problems and find best-fit solutions.
• Flexibility and adaptability to meet urgent deadlines and short missions.
• A bachelor's degree or equivalent in a technical or sales field or related area.
• Industry/Vendor sales certifications required.
• On-site Working About NTT DATA
• NTT DATA is a $30+ billion business and technology services leader, serving 75% of the Fortune Global 100. We are committed to accelerating client success and positively impacting society through responsible innovation. We are one of the world s leading AI and digital infrastructure providers, with unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and application services. Our consulting and industry solutions help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more than 50 countries. We also offer clients access to a robust ecosystem of innovation centers as well as established and start-up partners. NTT DATA is part of NTT Group, which invests over $3 billion each year in R&D.
• Equal Opportunity Employer
• NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
• Third parties fraudulently posing as NTT DATA recruiters.
• NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters whether in writing or by phone in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an @nttdata.com email address. If you suspect any fraudulent activity, please contact us.

ประสบการณ์:

5 ปีขึ้นไป

ทักษะ:

English

ประเภทงาน:

งานประจำ

• Oversee the planning, execution, and monitoring of security-related projects.
• Coordinate with cross-functional teams to ensure successful project delivery.
• Develop project plans, schedules, and budgets, and track progress against established objectives.
• Communicate project status, risks, and issues to relevant stakeholders.
• Identify, assess, and prioritize security risks across the organization.
• Develop and implement risk mitigation strategies and controls.
• Monitor and report on the effectiveness of risk management activities.
• Collaborate with stakeholders to ensure a consistent approach to risk management across the organization.
• Develop, review, and maintain security policies, standards, and procedures.
• Ensure alignment with regulatory requirements and industry best practices.
• Collaborate with stakeholders to promote the adoption and enforcement of security policies and standards.
• Provide guidance and support to the organization in the interpretation and implementation of security policies and procedures.
• Effectively communicate security issues and concerns to the technology team.
• Collaborate with the technology team to develop and implement solutions to address identified security issues.
• Provide ongoing support and guidance to the technology team regarding security best practices and risk mitigation.
• Foster a strong working relationship between the security governance function and the technology team to promote a culture of security awareness and collaboration.
• Positive, can-do attitude, who naturally expresses a high degree of empathy to others.
• Bachelor s degree in Information Security, Computer Science, or a related field.
• A minimum of 5 years of experience in information security, with a focus on security governance.
• Professional certifications such as CISSP, CISM, or CRISC are preferred.
• Strong understanding of information security principles, frameworks, and best practices.
• Experience in audit management, risk assessment, and policy development.
• Excellent project management and organizational skills.
• Strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and communicate complex security issues in a clear and concise manner.
• Demonstrated ability to work independently and deliver results under tight deadlines.
• Talent to identify and create a broad vision for a security solution and to execute it.
• Systems Thinking - the ability to see how parts interact with the whole (big picture thinking).
• Proven experience of acting as an expert in project teams.
• Ability to explain your thoughts or findings also to non- technical professionals.
• Good command in written and spoken Thai and English language.
• Location: True Digital Park, Punnawithi.

ทักษะ:

Linux, Good Communication Skills, English

ประเภทงาน:

งานประจำ

• Conduct advanced penetration tests to identify vulnerabilities in computer systems, networks, and applications.
• Perform vulnerability assessments and security audits to evaluate the effectiveness of existing security measures.
• Develop and execute simulated cyber-attacks to assess the organization s readiness to defend against real-world threats.
• Employ various attack methodologies to test the resilience of systems against hacking attempts and security breaches.
• Perform threat modeling to anticipate potential attack vectors.
• Analyze risks associated with identified vulnerabilities and recommend appropriate mitigation strategies.
• Develop custom tools and scripts to automate penetration testing and exploit known vulnerabilities.
• Keep up to date with the latest exploitation techniques and security tools.
• Prepare detailed reports on findings from penetration tests and security assessments.
• Document and present risks and vulnerabilities to relevant stakeholders, along with recommended countermeasures.
• Collaborate with the Blue Team to enhance the organization s defensive strategies based on offensive findings.
• Share insights and knowledge on emerging threats and attack techniques with the cybersecurity team to continually improve defensive measures.
• Bachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 10 years of experience in penetration testing and vulnerability assessments or related roles.
• Strong knowledge of network and application security, ethical hacking, and cybersecurity principles.
• Familiarity with penetration testing tools (e.g., Metasploit, Burp Suite, Kali Linux).
• Excellent problem-solving skills and ability to think like an adversary.
• Good communication skills for effective reporting and stakeholder engagement.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, etc.
• Professional Certificated related to work e.g. (CISSP, OSCP, OSWE) is desirable.
• Location: True Digital Park, Punnawithi.

ประสบการณ์:

5 ปีขึ้นไป

ทักษะ:

English

ประเภทงาน:

งานประจำ

• Oversee the planning, execution, and monitoring of security-related projects.
• Coordinate with cross-functional teams to ensure successful project delivery.
• Develop project plans, schedules, and budgets, and track progress against established objectives.
• Communicate project status, risks, and issues to relevant stakeholders.
• Security Risk Management: Identify, assess, and prioritize security risks across the organization.
• Develop and implement risk mitigation strategies and controls.
• Monitor and report on the effectiveness of risk management activities.
• Collaborate with stakeholders to ensure a consistent approach to risk management across the organization.
• Establishment of Policies, Standards, and Procedures:Develop, review, and maintain security policies, standards, and procedures.
• Ensure alignment with regulatory requirements and industry best practices.
• Collaborate with stakeholders to promote the adoption and enforcement of security policies and standards.
• Provide guidance and support to the organization in the interpretation and implementation of security policies and procedures.
• Communication and Collaboration with Technology Team:Effectively communicate security issues and concerns to the technology team.
• Collaborate with the technology team to develop and implement solutions to address identified security issues.
• Provide ongoing support and guidance to the technology team regarding security best practices and risk mitigation.
• Foster a strong working relationship between the security governance function and the technology team to promote a culture of security awareness and collaboration.
• Essential Skills & PrerequisitesA positive, can-do attitude, who naturally expresses a high degree of empathy to others.
• Bachelor s degree in Information Security, Computer Science, or a related field.
• A minimum of 5 years of experience in information security, with a focus on security governance.
• Professional certifications such as CISSP, CISM, or CRISC are preferred.
• Strong understanding of information security principles, frameworks, and best practices.
• Experience in audit management, risk assessment, and policy development.
• Excellent project management and organizational skills.
• Strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and communicate complex security issues in a clear and concise manner.
• Demonstrated ability to work independently and deliver results under tight deadlines.
• Talent to identify and create a broad vision for a security solution and to execute it.
• Systems Thinking - the ability to see how parts interact with the whole (big picture thinking).
• Proven experience of acting as the expert in project teams. PERSONAL SKILLS: Ability to explain your thoughts or findings also to non- technical professionals.
• Good command in written and spoken Thai and English language.
• Why Ascend Money?Contribute to a safer digital world.
• Gain hands-on experience with cutting-edge cybersecurity challenges.
• Grow your career in a dynamic, fast-moving environment.
• Don t miss this opportunity to be part of something big! Apply now and take the next step with Ascend Money.
• Apply Now: CLICK

ประสบการณ์:

5 ปีขึ้นไป

ทักษะ:

Problem Solving, English

ประเภทงาน:

งานประจำ

• Design, implement and maintain the IT Security of the organization which involves developing and executing security strategies, standards and procedures to protect IT assets from cyber threats and vulnerabilities.
• Develops solution conceptual designs and solution blueprints for IT projects.
• Design security architecture elements to mitigate emerging threats.
• Reviewing security measures and recommending to implementing enhancements.
• Review and advise security solution architect for the proposed system such as: Network Segmentation, Application protection, Defense-in-depth, Remote Access, Encryption Technologies.
• Conducting security advisory consultancy and working with RED and BLUE team for security testing along the pipeline of the system delivery.
• Bachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 5 years of experience of IT Security Advisory, Penetration tester or Enterprise Architect or related role.
• Comprehensive understanding of the IT Security Concept, Security Architect, Risk assessment.
• Ability to analyst finding form Offensive and Defensive Security team.
• Ability to analyze end-to-end security processes and provide advice in order to reduce risk to acceptable levels.
• Strong analytical and problem solving.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, and etc.
• Professional Certificated related to work e.g. (CISSP, CSSLP, CDPSE, OSCP, TOGAF) is desirable.
• Location: True Digital Park, Punnawithi.

ทักษะ:

Compliance

ประเภทงาน:

งานประจำ

• Validates, classifies, priorities and opens ticket.
• Acting as focal contact point for report security incidents.
• Document and escalate incidents (including event's history, status, and potential impact for further action) that may cause ongoing and immediate impact to the environment.
• Provide daily summary reports of security incidents.
• Responds to security alerts generate within the SLA time window.
• Follow-up and tracking security incidents base on team process.
• Examine network topologies to understand data flows through the network.
• Validate security incidents alerts against network traffic using packet analysis tools.
• Isolate or remove malware.
• Identify applications and operating systems of a network device based on network traffic.
• Assist in the construction of signatures which can be implemented on cyber defense network tools in response to new or observed threats within the network environment or enclave.
• Notify cybersecurity service provider team members of suspected cyber incidents, status, and potential impact for further action in accordance with the organization's cyber incident response plan.
• Work with stakeholders to resolve computer security incidents and vulnerability compliance.
• Who are we looking for?.
• Knowledge of computer networking concepts and protocols, and network security methodologies.
• Analytical and problem-solving skills are required.
• Knowledge of network traffic analysis methods.
• Knowledge of cyber defense and information security policies, procedures, and regulations.
• Experience in IT Security, Network Security or Security Compliance.
• Knowledge of common security tools such as anti-virus, firewall and intrusion detection system.
• Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services. Able to work in shift.
• Location: Head Office: Chatuchak, SJ Infinite One Business Complex

ประสบการณ์:

5 ปีขึ้นไป

ทักษะ:

ISO 27001, Legal, Finance

ประเภทงาน:

งานประจำ

• Design and implement a cybersecurity strategy that aligns with the organization's overall business objectives.
• Conduct regular security risk assessments, vulnerability assessments, and penetration testing to evaluate the organization s cyber defenses; subsequently, develop and implement security risk mitigation strategies and programs.
• Lead and coordinate response efforts in the event of security incidents, overseeing investigation, mitigation, and post-incident analysis.
• Compliance & Regulatory ManagementEnsure adherence to relevant laws, regulations, and standards (e.g., PDPA).
• Implement and lead initiatives for security and compliance audit certifications, including ISO 27001, NIST, the Cyber Resilience Assessment Framework (C-RAF), and other applicable standards and best practices.
• Recommend, implement, and manage continuous monitoring of IT security systems and tools.
• Collaborate with legal and data protection teams to establish policies and safeguards for sensitive and personal data.
• IT GovernanceEstablish and maintain an IT governance framework, policies, and processes that align with the organization s business goals while ensuring compliance with legal, regulatory, corporate, and industry requirements.
• Work in partnership with management, legal, finance, and external auditors to promote transparency and alignment in governance practices.
• Generate and present reports on IT governance performance, compliance status, and the risk landscape to stakeholders.
• Data GovernanceDevelop and implement data governance policies that ensure data quality, security, and compliance.
• Manage the data lifecycle, align data strategies with business objectives, and collaborate with cross-functional teams to enhance data integrity.
• Oversee data stewardship, regulatory compliance, and provide best practices for data management to support effective decision-making.
• Team Leadership and DevelopmentLead and mentor a small team of IT governance, compliance, and security professionals.
• Foster a culture of continuous improvement and knowledge sharing within the team and across business units.
• Requirements:Bachelor s or Master s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• A minimum of 5 years of experience in IT governance, cybersecurity, and compliance, with at least 2 years in a managerial role.
• Strong understanding of IT governance frameworks (e.g., ITIL, COBIT), cybersecurity standards (e.g., ISO 27001, NIST), and regulatory requirements (e.g., PDPA).
• Possession of basic IT governance and cybersecurity certifications (e.g., CISSP, CISM) is advantageous.
• Proficient in common technical team/project management tools (e.g., JIRA, Asana, Github). Collaborative team player with strong interpersonal skills, capable of working effectively with both internal and external teams.
• Working-level fluency in English and Thai. Proficient in English equivalent to IELTS 5.5, CEFR B2, or TOEFL 72; excellent spoken and written communication to effectively work with a global management team.
• Familiarity with local regulatory bodies (e.g., OIC, SEC, BOT) is a plus.
• Experience in the insurance industry will be an added advantage.

ทักษะ:

Statistics, Industry trends, Meet Deadlines

ประเภทงาน:

งานประจำ

• Provides operational leadership team to a team of individuals accountable for service offer management.
• Sets the standard for client satisfaction and assists with the development of client service policies, procedures and standards that will ensure the continued satisfaction of our clients.
• Investigates and solves client problems which have been escalated by the team.
• Assists with the preparation of bids and proposals to clients and remains up to date with deals in the pipeline to ensure a smooth transition from Sales to Delivery.
• Ensures that assigned infrastructure at the client site is configured, installed, tested and operational.
• Investigates all line support calls and identifies the root cause of incidents, events and problems to ensure proactive future management.
• Takes full ownership for managing the escalated incidents, requests, events and/or problems to resolution within the service level conditions.
• Provides continuous feedback to clients and affected parties and updates all systems and/or portals as prescribed by company procedures.
• Follows the required handover procedures for shift changes to ensure service continuity and manages resource allocation to achieve service level agreements.
• Assists with the analysis of statistics and other data to determine the level of client service provided.
• Contributes to and assists with the maintenance of the information technology site plan.
• Assists with the identification of user and employee training requirements.
• To thrive in this role, you need to have: Seasoned knowledge of technical services, IT service management, and related technologies.
• Ability to stay up to date with industry trends, emerging technologies, and best practices.
• Seasoned knowledge of technical services concepts, IT service management (ITSM) practices, and industry best practices.
• Seasoned understanding of various information technology domains, including infrastructure, cloud services, cybersecurity, application management, networks, data center and collaboration.
• Good client-facing and communication skills, with the ability to build and maintain strong client relationships.
• Developing management qualities, including the ability to learn the skills to inspire and mentor a team.
• Displays the ability to facilitate presentation of technical and complex matters to a diverse audience.
• Ability to analyze data and produce reports on issues and recommend resolutions.
• Ability to multi-task, set priorities and meet deadlines.
• Seasoned knowledge of ITIL (Information Technology Infrastructure Library) practices is desirable.
• Ability to work collaboratively with cross-functional teams and stakeholders.
• Academic qualifications and certifications: Bachelor's degree or equivalent in Business or Information Technology or related field.
• Master s degree or equivalent in Information Technology or Business Administration preferred.
• ITIL certification is desirable.
• Relevant technical certifications as required.
• Required experience: Solid experience in similar role within a related global technology environment.
• Moderate level of experience operationally managing a technical team.
• Solid experience dealing with clients and managing service levels.
• Solid stakeholder engagement experience at all levels in the organization.
• Hybrid Working About NTT DATA
• NTT DATA is a $30+ billion business and technology services leader, serving 75% of the Fortune Global 100. We are committed to accelerating client success and positively impacting society through responsible innovation. We are one of the world s leading AI and digital infrastructure providers, with unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and application services. Our consulting and industry solutions help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more than 50 countries. We also offer clients access to a robust ecosystem of innovation centers as well as established and start-up partners. NTT DATA is part of NTT Group, which invests over $3 billion each year in R&D.
• Equal Opportunity Employer
• NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
• Third parties fraudulently posing as NTT DATA recruiters.
• NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters whether in writing or by phone in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an @nttdata.com email address. If you suspect any fraudulent activity, please contact us.

ทักษะ:

Teamwork, Compliance, Problem Solving, English

ประเภทงาน:

งานประจำ

• IT Solutions & Services.
• Work with Passion, Professional and Teamwork.
• Work in Shift.
• We are looking for a highly proficient Cyber Security Consultant who has the professional knowledge and skill to drive and enhance our security solutions in any field at MFEC Cyber Security Operation Center (CSOC) for our large enterprise customers.
• What we want?.
• To find the most efficient way to create and to manage every cyber security solution for multiple clients.
• To propose improvement to infrastructure and security systems and may present them to customer s upper management.
• Plan and carry out a customer s information security strategy to be the healthy security architectures for any IT project.
• To implement security system and ensure compliance with corporate cyber security policies and procedures.
• To provide professional supervision and guidance to security teams.
• Works with other business units, partners, and customers to maintain secure methods of security management.
• Work in Shift.
• Who are we looking for?.
• 1-3 Years or experience in Cyber Security field.
• Great awareness of Cyber Security trends and new technology update.
• Strong knowledge and experience with various IT security such as Incident Handler, Forensic Examiner, Forensic Analyst is a plus.
• Excellent knowledge in Security Product (Firewall/VPN, IPS/IDS), Security Platform, Endpoint Solution, and Network Security solution.
• Excellent problem solving and analytical skill, planning and organizing skill and customer oriented.
• Proficiency in English both written and spoken.
• Security Profession Certification is a plus.
• Knowledge in AI and the ability to use AI-related tools and technologies.
• MFEC OKR:- As MFEC People, you will be a part of our talent team. Besides your main responsibilities, you do have special projects as part of OKR. However, the percentages will be different according to the positions and teams.
• Location: Branch: Chatuchak, Lao Peng Nguan Building

ทักษะ:

Oracle

ประเภทงาน:

งานประจำ

• Ensures that the assigned infrastructure at the client site is configured, installed, tested and operational.
• Ensures that any software that is part of the solution is installed and configured according to client requirements.
• Proactively identifies problems and errors as they occur and logs such incidents in a timely manner with the required level of detail.
• Liaises with all stakeholders including client IT environments, carriers and colleagues to expediate diagnosis of errors and problems and to identify a resolution.
• Investigates second line support calls assigned and identifies the root cause of incidents and problems following knowledge articles.
• Responds to and diagnoses all alerts, escalate to L3 Field Engineer when unable to resolve within the stipulated time.
• Ensures incidents are updated with progress and resolution details in a timely manner using the required platform.
• Ensures the efficient and comprehensive resolution of incidents and requests.
• Applies tools, techniques and processes to track, log, report on and correct configuration items, components and changes.
• Investigates problems in systems, processes and services and assists with the implementation of agreed remedies and preventative measures.
• Provides second line remote and onsite technical support to clients.
• Provides second line field engineering services to clients.
• Reports and escalates issues to 3rd party vendors if necessary.
• Follows the required handover procedures for shift changes to ensure service continuity.
• To thrive in this role, you need to have: Good communicate skills, both verbal and written.
• Ability to plan activities and projects well in advance and take into account possible changing circumstances.
• Ability to maintain a positive outlook at work.
• Ability to work well in a pressurized environment.
• Ability to work hard and put in longer hours when it is necessary.
• Ability to apply active listening techniques such as paraphrasing the message to confirm understanding, probing for further relevant information and refraining from interrupting.
• Ability to adapt to changing circumstances.
• Ability to place client at the forefront of all interactions, understanding their requirements and creating a positive client experience throughout the total client journey.
• Academic qualifications and certifications: Bachelor's degree or equivalent in Information Technology or Computing or related field.
• Professional level certification in different Data Centre technologies such as Cisco, NetApp, EMC- Ex: CCNP (DC), ONTApp etc.
• Professional level certification in different Networking technologies such as Cisco, Juniper, Aruba, F5, CCNP, JNCIP, ACMP etc.
• Collaboration certifications such as - Valid CCNP Collaboration Certification required; Microsoft Voice certification (MS700 & MS720) advantageous; Valid Webex Calling & Webex Contact Centre certification.
• Required experience: Moderate level experience in Collaboration technologies such as Call managers, Voice Gateways, Call recording, Scripting, Messaging, VOIP, IP Telephony.
• Moderate level experience in technical support to clients.
• Moderate level experience in diagnosis and troubleshooting.
• Moderate level experience providing remote support in Collaboration technologies.
• Moderate level experience in relevant technology (Cisco and its product stack, SBC's such as AudioCodes and Oracle, CUBE's, Webex calling etc.).
• Basic understanding of Network routing and switching.
• Hybrid Working About NTT DATA
• NTT DATA is a $30+ billion business and technology services leader, serving 75% of the Fortune Global 100. We are committed to accelerating client success and positively impacting society through responsible innovation. We are one of the world s leading AI and digital infrastructure providers, with unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and application services. Our consulting and industry solutions help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more than 50 countries. We also offer clients access to a robust ecosystem of innovation centers as well as established and start-up partners. NTT DATA is part of NTT Group, which invests over $3 billion each year in R&D.
• Equal Opportunity Employer
• NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
• Third parties fraudulently posing as NTT DATA recruiters.
• NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters whether in writing or by phone in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an @nttdata.com email address. If you suspect any fraudulent activity, please contact us.

ทักษะ:

Teamwork, Compliance, Problem Solving

ประเภทงาน:

งานประจำ

• IT Solutions & Services.
• Work with Passion, Professional and Teamwork.
• Grow up in Career path.
• We are looking for talented Cyber Security Engineer to find the most efficient way to create and to manage every cyber security solution for multiple clients.
• What we want?.
• To propose improvement to infrastructure and security systems and may present them to customer s upper management.
• Plan and carry out a customer s information security strategy to be the healthy security architectures for any IT project.
• To implement security system and ensure compliance with corporate cyber security policies and procedures.
• To provide professional supervision and guidance to security teams.
• Works with other business units, partners, and customers to maintain secure methods of security management.
• Who are we looking for?.
• Experience in IT infrastructure or Cyber Security field.
• Great awareness of Cyber Security trends and new technology update.
• Knowledge in Security Management is advantage. Excellent knowledge in Security Product (Antivirus/Firewall/VPN, IPS/IDS), Security Platform, Endpoint Solution, and Network Security solution is a plus.
• Excellent problem solving and analytical skill, planning and organizing skill and customer oriented.
• Security Profession Certification is a plus.
• Knowledge in AI and the ability to use AI-related tools and technologies.
• MFEC OKR:- As MFEC People, you will be a part of our talent team. Besides your main responsibilities, you do have special projects as part of OKR. However, the percentages will be different according to the positions and teams.
• Location: Branch: Chatuchak

ทักษะ:

Network Infrastructure, Analytical Thinking, Teamwork

ประเภทงาน:

งานประจำ

• Install, configure, and maintain network infrastructure tools (proxies and reverse-proxies), to ensure a secure and reliable access to corporate resources while following the security policies.
• Implement configuration changes.
• Provide timely subject matter expertise for incidents and requests related to remote access tools.
• Maintain the procedures for these tools.
• Collaborate with internal technical teams, customers, and external strategic partners to deliver and improve high-quality secure networks supporting Accor s global Information System.
• Engage with the whole Cyber Security team to develop security policies, protocols, and procedures.
• Qualifications Bachelor's degree or higher in technology field.
• At least 5 years as a security engineer or architect (if run activities where part of the position), or network engineer - with hands on experience in security solutions.
• Security industry certifications and/or security vendors specific trainings are a plus.
• Mandatory experience with Zscaler, McAfee,.
• Mandatory experience with Imperva, F5.
• Strong knowledge of networking technologies, network security, and network monitoring solutions as well as Zero Trust approach.
• In-depth knowledge of security protocols and principles.
• Knowledge of cloud security principles, such as AWS or Azure.
• Knowledge of security systems, including EPP and EDR, content filtering, authentication systems, and reverse proxies.
• Analytical Thinking: Ability to analyze complex issues and quickly devise effective solutions fitting the business context. Attention to details.
• Communication: Excellent communication skills to convey technical information to both technical and non-technical stakeholders.
• Proactive Approach: A problem-solving mindset with a proactive approach to identify and address security challenges.
• Collaboration: Strong teamwork and collaboration skills to work effectively across departments.
• Continuous Learning: Eagerness to stay updated with the latest security trends and technologies.
• Additional Information This position is based in Bangkok reporting to management in France.
• Worldwide interaction with time zone difference to manage.