เงื่อนไขการค้นหา

ประสบการณ์:

ไม่จำเป็นต้องมีประสบการณ์ทำงาน

ประเภทงาน:

งานประจำ

• Monitor user behaviors to ensure compliance with enterprise security policies.
• Assess new laws and regulations related to government IT security requirements.
• Set security standards and guidelines according to the company's e-policy and privacy policy.
• Design and act as a trainer for data protection and privacy courses.
• Perform risk assessment and prepare security policy improvement periodically.
• คุณสมบัติ:Bachelor's degree in IT, computer science, computer engineering, or related field.
• Experienced in Digital Security positions and working with English-speaking people is a plus.
• Certificate in professional cybersecurity a plus.
• Strong IT skills including knowledge of software programming.
• Hands-on, able to work individually and manage administrative tasks.
• Good presentation and coordination skills.
• Problem-solving skills and ability to work under pressure.
• Passionate for new Technologies.

ประสบการณ์:

2 ปีขึ้นไป

ทักษะ:

Quality Assurance, Product Development, Product Testing, English

ประเภทงาน:

งานประจำ

• Looking for meaningful work? Wanting to make a real difference? Here is your chance! We are looking for new team members at one of Thailand's leading social enterprises!.
• Responsible for the quality assurance and quality control of Jasberry's healthy and delicious organic products from organic rice to other value-added products! Ensure that all processes are of the highest standard conforming to international certifications such as HACCP, GMP, IFS, EU & USDA organic standards, Gluten-free, Non-GMO, Fai ...
• Work closely with manufacturers and operations manager to achieve the desired quality and consistency of organic products.
• Create work instruction and monitor relevant paperwork to meet with international certification standards such as HACCP, GMP, EU & USDA organic standards, Gluten-free, etc.
• Learn and manage internationally certified organic system.
• Support customer in technical terms of standard, regulations, product specifications and quality control.
• Prior work experience in quality assurance (QA) or quality control (QC) of at least 1 year.
• Highly driven and self-motivated, passionate about social business and wanting to help create value for others.
• Comfortable with detailed work and preparing documents both in Thai and English.
• Excellent listener and observant with willingness to learn from others.
• Excellent in critical thinking, analytical skills, learning attitude and strong positive attitude.
• Good interpersonal skills, humble, responsible, and accountable.
• Can use MS Word, Excel, and PowerPoint.
• Can read, write, and communicate in English.

ประสบการณ์:

ไม่จำเป็นต้องมีประสบการณ์ทำงาน

ประเภทงาน:

งานประจำ

• BS level degree required, computer science, business or math background preferred;.
• Strong verbal and written communications skills.
• Aptitude for providing consulting services.
• Experience with the audit and logging requirements of large enterprises.
• Familiarity with archive, backup/recovery and business continuity processes in distributed operations.
• Experience implementing security controls around ERP packages including SAP, Oracle.
• Experience advising customers on architectures meeting industry standards such as SAS70, SOC1, FISMA, etc.
• Familiarity with industry compliance and security standards including PCI DSS, ISO 27001, HIPAA, and NIST.
• Implementation experience with enterprise security packages identity management and federation systems.
• 10+ years experience in IT security, compliance and risk management, including privacy, controls, etc.
• Fluent Thai and English.
• Are you a Security, Risk, and Compliance specialist who can address the challenges of migrating systems and workloads to the Cloud? Are you skilled at helping customers and partners address their information security requirements using Cloud computing architectures? Do you want to learn the very latest in Cloud services and apply that knowledge to some of the most interesting computing workloads in the world?
• Amazon aims to be the most customer centric company on earth. Amazon Web Services (AWS) provides a highly reliable, scalable, low-cost infrastructure platform in the cloud that powers critical applications for businesses around the world. At AWS, we are hiring highly technical Cloud Security, Risk, and Compliance Consultants.
• Your mandate will be to help our partners and our customers with their Cloud migrations. Our Security, Risk, and Compliance consultants will deliver architecture guidance, lead proof-of-concept projects, and conduct customer/partner workshops. AWS consultants will collaborate with customers and partners to address the security, risk, and compliance needs of their AWS migrations.
• This role will specialize in all aspects of information security management as well as business and regulatory compliance using cloud services in large-scale computing environments.
• Responsibilities include:Expertise - Collaborate with AWS field sales, pre-sales, training and support teams to help partners and customers learn and use AWS services such as Amazon Elastic Compute Cloud (EC2), Amazon Simple Storage Service (S3), Amazon RDS databases, AWS Identity and Access Management (IAM), etc.
• Solution Design - Define and deliver on-site technical engagements with partners and customers. Activities include participating in pre-sales, understanding customers' security, risk, and compliance requirements, and providing advice on solution design.
• Implementation - Working together with our partners, provide advisory services to our customers on the implementation of robust security, risk, and compliance solutions for their Cloud migrations.
• Insights - Work with AWS Engineering, Support and Business Development teams to convey partner and customer feedback as input to AWS technology roadmaps.
• Long term development of large, complex, and distributed enterprise organizations.
• Engage with customers to understand their business drivers and application portfolio.
• Development of long term Cloud Strategy for customers.
• Identify & develop specific opportunities and supporting business cases.
• Deal shaping, including estimations and deal pricing.
• Contract negotiations & closing.
• Planning and implementation of a portfolio of projects, including budget & deliverable responsibilities.
• Mitigation of delivery risks & issues.
• Overseeing delivery of projects in account, ensuring high quality delivery.
• Act as single person of contact for Customer executives, developing deep, trustful relations.
• Educate customers on AWS services and translate those into a clear business value proposition.
• Envision and inspire customers.
• Coaching Customer and Partner teams to be self-sufficient.
• About the team
• Inclusive Team Culture
• Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences. Amazon's culture of inclusion is reinforced within our 16 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.
• Work/Life Balance
• Our team puts a high value on work-life balance. It isn't about how many hours you spend at home or at work; it's about the flow you establish that brings energy to both parts of your life. We believe striking the right balance between your personal and professional life is critical to life-long happiness and fulfillment. We offer flexibility in working hours and encourage you to find your own balance between your work and personal lives.
• Mentorship & Career Growth
• Our team is dedicated to supporting new members. We have a broad mix of experience levels and tenures, and we're building an environment that celebrates knowledge sharing and mentorship. We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded professional and enable them to take on more complex tasks in the future.Strong Program Management capabilities.
• Demonstrated ability to think strategically about business, product, and technical challenges.
• Prior involvement in regulated industries and satisfying Risk and Compliance needs.
• Proven track record of successful consulting engagements.
• Experience with Internet-related business models.
• Implementation experience with AWS services.
• Deep understanding of cloud computing technologies and workload transition challenges.
• For more information on Amazon Web Services, please visit http://aws.amazon.com
• For more information about AWS Security and Compliance, please visit http://aws.amazon.com/security

ประสบการณ์:

ไม่จำเป็นต้องมีประสบการณ์ทำงาน

ประเภทงาน:

งานประจำ

• Provide integrated services focused on IT security related to help clients develop a vision for their cybersecurity and privacy program,.
• Design and build a sustainable and agile Cybersecurity program in responding to changes as a part of economic and business development where IT and Cyber are catalyst,.
• Operate aspects of the program and provide an independent review and assurance of their program to Management or 3rd party stakeholders.
• Growing teams.
• Provide thought leadership and direction and contribute to the firm's intellectual property by driving the development of toolkits, methodologies, accelerators, and training.
• Build, retain, coach, and develop the team through superior leadership skills.
• Bachelor's or master's degree in Management Information Systems, Computer Engineering, Computer Science and any related fields.
• Minimum 7 years of working experiences in Cyber Security or technical implementation experience working with Commercial Off the Shelf (COTS) products (IAM, SIEM, and other security products) leading sizable teams in development lifecycle.
• Strong knowledge of IT Security Domain concepts (e.g. Identity and Access Management, Asset Security, Network Security, Security Operations, Software Development Security).
• Strong project management, interpersonal, influencing, and advisory skills.
• Strong presentation and communication skill through leading or delivering a high impact presentation to senior executives.
• Flexibility to travel and work on out-of-town engagements and overseas assignments.
• Clear, articulate, and confident written and verbal communication in Thai and English.
• Professional Certificate (e.g. CISSP, CISA, CIPP, CEH, PMP).
• We thank all applicants. Only short-listed candidates will be contacted for interviews.
• Any questions, please feel free to contact Khun Bhavana, Human Resources Team on 02-844-1822.
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified).
• Desired Languages (If blank, desired languages not specified).
• Travel Requirements.
• Up to 80%
• Available for Work Visa Sponsorship?.
• No
• Government Clearance Required?.
• No
• Job Posting End Date.

ประสบการณ์:

ไม่จำเป็นต้องมีประสบการณ์ทำงาน

ประเภทงาน:

งานประจำ

• At least 3 years experience in similar position in security & safety operation.
• Basic knowledge of local laws, investigative methods and fire safety.
• Criminal-free record
• Have good English communication skills both in written and spoken
• Posses professional disposition with good communication and interpersonal skills.
• Minimum education of High Vocational diploma in any discipline. Bachelor degree holder is highly regarded
• At least 3 years experience in similar position in security & safety operation.
• Basic knowledge of local laws, investigative methods and fire safety.
• Criminal-free record
• Have good English communication skills both in written and spoken
• Posses professional disposition with good communication and interpersonal skills.

ประสบการณ์:

ไม่จำเป็นต้องมีประสบการณ์ทำงาน

ประเภทงาน:

งานประจำ

• Provide integrated services focused on IT security related to help clients develop a vision for their cybersecurity and privacy program.
• Design and build a sustainable and agile Cybersecurity program in responding to changes as a part of economic and business development where IT and Cyber are catalyst.
• Operate aspects of the program and provide an independent review and assurance of their program to Management or 3rd party stakeholders.
• Provide thought leadership and direction and contribute to the firm's intellectual property by driving the development of toolkits, methodologies, accelerators, and training.
• Build, retain, coach, and develop the team through superior leadership skills.
• Bachelor's or Master's degree in Management Information Systems, Computer Engineering, Computer Science and any related fields.
• Minimum 5-8 years of working experiences in Cyber Security or Technical Implementation experience working with Commercial Off the Shelf (COTS) products (IAM, SIEM, and other security products) leading sizable teams in development lifecycle.
• Strong knowledge of IT Security Domain concepts (e.g. Identity and Access Management, Asset Security, Network Security, Security Operations, Software Development Security).
• Strong project management, interpersonal, influencing, and advisory skills.
• Strong presentation and communication skill through leading or delivering a high impact presentation to senior executives.
• Flexibility to travel and work on out-of-town engagements and overseas assignments.
• Clear, articulate, and confident written and verbal communication in Thai and English.
• Professional Certificate (e.g. CISSP, CISA, CIPP, CEH, PMP).
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified).
• Desired Languages (If blank, desired languages not specified).
• English, Thai
• Travel Requirements.
• Up to 80%
• Available for Work Visa Sponsorship?.
• No
• Government Clearance Required?.
• No
• Job Posting End Date.

ประสบการณ์:

ไม่จำเป็นต้องมีประสบการณ์ทำงาน

ประเภทงาน:

งานประจำ

• Network and Cloud Security Operation [Configure, monitor, and maintain].
• Be able to support Business Team Projects.
• Be able to analyze problems, identify the cause of the problem.
• Support Incident Response and suggest improvements and changes.
• Research, document and solve complex relate security problems.
• Be able to write scripts to automate operations tasks and reduce manual work.
• Ensuring & maintain compliance on the network & cloud security infrastructure control / configuration.
• We're committed to bringing passion and customer focus to the business. If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us.

ประสบการณ์:

ไม่จำเป็นต้องมีประสบการณ์ทำงาน

ประเภทงาน:

งานประจำ

• Manage and supervise team members of Information Security.
• Establish and maintain IT security standards and guidelines in compliance with the security regulations from regulators, and the security best practices, that governs new technology adoption.
• Advise business units and technology group on how to comply with IT security policy, standards, guidelines and best practices.
• Keep abreast of the knowledge in cybersecurity, new digital technology.
• Support on Cyber-drill program management and BCP coordinator across different Technology security units.
• Provide security awareness to the employee and service providers.
• Manage security supervision programs to track on non-compliance items to security policies, standards and.
• Qualification Bachelor's Degree or higher in Computer Engineering, Computer Science, MIS, Information Security or IT related field.
• Knowledge in Security best practices and related Banking security regulations.
• Knowledge in new Banking Technology and associated security control is a plus.
• Relevant security certification is a plus, for example, CISSP, CISM, CISA, CRISC.
• Strong leadership, Strong security advisory, analytical, and problem-solving skill.
• Good command in English.
• We're committed to bringing passion and customer focus to the business. If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us.

ประสบการณ์:

ไม่จำเป็นต้องมีประสบการณ์ทำงาน

ประเภทงาน:

งานประจำ

• Establish and maintain DATAx's cyber and data security vision, strategy, and information security program to ensure assets are adequately protected and in line with the overall data security requirements of SCBX.
• Define and maintain cyber security standards and policies for DATAx.
• Act as an ambassador for cyber and data security, on behalf of DATAx, in relevant forums with external stakeholders and SCBX's subsidiaries.
• Understand and influence security legislation that affects DATAx's data business through regular interactions with the relevant regulators e.g. BOT.
• Engage in regular dialog with business stakeholders in DATAx to understand their needs, issues, and pipeline of planned new product/service development and provide guidance to comply with DATAx's security strategy.
• Balance information security needs with strategic business plans, identify risk factors, and determine solutions.
• Understand emerging information security threats, assess the potential degree of impacts and prioritize strategic focus areas to address these threats.
• Support the building of customer trust through transparent data practices and digital ethics.
• Devise measures/controls for DATAx to ensure compliance with security legislation.
• Serve the Board and garner confidence that DataX is making appropriate security decisions.
• Responsible for driving the strategic direction & rollout for security awareness/training programs to ensure secure behaviors.
• Define and approve KPIs for enterprise security governance.
• Ensure Security Operations function is appropriately servicing the enterprise.
• Collaborate with Internal Audit, Corporate Compliance, Information Technology, and Enterprise Risk to develop procedures for handling security breaches identified as enterprise-wide.
• Identify required skills for the organization, assess resource or skill gaps, and train or acquire talent to remediate knowledge gaps.
• Oversee the execution of initiatives to resolve cyber security incidents, providing regular updates to board, C-suite and others as required.
• Provide oversight of progress and effectiveness of Continuous Improvement plans.
• Qualifications Bachelor's or Master degree in information technology, computer science, management information systems, or related field.
• Relevant Professional certification essential: CISSP, CISA, CISM or CRISC.
• Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.
• Experience in setting up and managing information security team.
• Experience working in a fast-paced, technology-centric, and/or FinTech industry is an advantage.
• Proven experience in planning, organizing, and developing cyber and information security programs in large organizations.
• Experience serving as cyber and information security leadership in complex organizations.
• Core Competencies Business Acumen - demonstrate executive level business acumen.
• Security Acumen - have an in-depth knowledge of applicable laws and regulations as they relate to cyber and information security.
• Executive Communications - develop and clearly articulate a compelling cyber and information security vision that inspires and influences stakeholders and exhibit a strong executive presence with excellent written and oral communication and presentation skills.
• Analysis - demonstrate strong analytical and critical thinking skills,.
• Leadership - develop talent and assemble a highly effective team.
• Relationship Management - build strong internal and external networks.
• We're committed to bringing passion and customer focus to the business. If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us.

ประสบการณ์:

ไม่จำเป็นต้องมีประสบการณ์ทำงาน

ประเภทงาน:

งานประจำ

• Manage and supervise team members on Security Intelligence and Operation practice.
• Conduct Cybersecurity monitoring and event analysis.
• Improve Threat detection and protection model (ML, AI, Condition base) (depending on experience).
• Ensure all the identified anomaly event under responsibility are investigated and react promptly.
• Perform threat intelligence analysis and communicate the result to stakeholders in order to improve people, process and technology.
• Support the unit as one of the advisors in cybersecurity event collection, cybersecurity analysis and cybersecurity response.
• Perform Research and Development in the area of 'Defense Security' and assist the unit in development the practice roadmap.
• Qualification Bachelor's Degree or higher in Computer Engineering, Computer Science, MIS, Information Security or IT related field.
• Knowledge in Security Operation Center, Cybersecurity analysis.
• Knowledge in Digital forensic, Machine learning, Stat, Cloud technology is a plus.
• Relevant security certification is a plus, Cybersecurity incident handling, CISSP, CISM, CEH, GIAC.
• Strong leadership, security analytical and problem-solving skill.
• Good command in English.
• We're committed to bringing passion and customer focus to the business. If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us.

ประสบการณ์:

ไม่จำเป็นต้องมีประสบการณ์ทำงาน

ประเภทงาน:

งานประจำ

• Organizes and manages the activities and operations of the Unit.
• Inspects line-ups of officers to ensure that they are properly attired and equipped, as well as knowledgeable of the daily security requirements.
• Assigns officers to areas and maintains contact with supervisory personnel and officers.
• Directly supervises the Security Specialized Unit personnel.
• Ensures that all posts are properly and effectively manned.
• Assures the proper maintenance of all relevant equipment and records.
• Prepares and reviews incident reports of the Unit; guarantees that all incidents and complaints reported are effectively addressed.
• Reviews all meeting and special event schedules to determine staffing requirements. Recommends inter-unit redeployments to resolve temporary personnel shortages.
• Assumes command of emergency or heightened security situations until properly relieved.
• Replaces Security Inspector as required.
• Performs all other related duties as required.
• CompetenciesCore Competencies:
• Professionalism: Knowledge of United Nations Security policies, procedures and practices. Demonstrated sound judgment in applying United Nations Security policies, procedures and practices and in applying technical expertise to resolve a range of protection issues/problems. Ability to lead and motivate officers under command as well as manage and evaluate performance of officers under command. Demonstrated decision-making capacity. Shows pride in work and in achievements; demonstrates professional competence and mastery of subject matter; is conscientious and efficient in meeting commitments, observing deadlines and achieving results; is motivated by professional rather than personal concerns; shows persistence when faced with difficult problems or challenges; remains calm in stressful situations. Commitment to implementing the goal of gender equality by ensuring the equal participation and full involvement of women and men in all aspects of work.
• Teamwork: Works collaboratively with colleagues to achieve organizational goals; solicits input by genuinely valuing others' ideas and expertise; is willing to learn from others; places team agenda before personal agenda; supports and acts in accordance with final group decision, even when such decisions may not entirely reflect own position; shares credit for team accomplishments and accepts joint responsibility for team shortcomings.
• Planning & Organizing: Develops clear goals that are consistent with agreed strategies; identifies priority activities and assignments; adjusts priorities as required; allocates appropriate amount of time and resources for completing work; foresees risks and allows for contingencies when planning; monitors and adjusts plans and actions as necessary; uses time efficiently.
• Managerial Competencies:
• Managing Performance: Delegates the appropriate responsibility, accountability and decision-making authority; makes sure that roles, responsibilities and reporting lines are clear to each staff member; accurately judges the amount of time and resources needed to accomplish a task and matches task to skills; monitors progress against milestones and deadlines; regularly discusses performance and provides feedback and coaching to staff; encourages risk-taking and supports creativity and initiative; actively supports the development and career aspirations of staff; appraises performance fairly.
• EducationHigh school diploma or equivalent is required.
• Job - Specific QualificationPassing the Global General Service Test (GGST) is a prerequisite for recruitment consideration in the General Services and related categories in the United Nations Secretariat. Applicants who have not passed the GGST at the time of application may be invited for the test after submitting an application. Staff members who were granted a fixed-term, continuing or permanent as a result of having passed a predecessor test recognized by the Office of Human Resources Management, and who have continuously held such appointments, are not required to take the new test. Please indicate what year and duty station if you passed the test.
• Additional security or military training is required.
• Work ExperienceA minimum of seven years of progressively responsible experience in all areas of the security operation within the UN Security Service, including investigation, physical security, personal protection, strategic and operational planning, fire prevention and suppression, emergency medical and hazardous material response, video imaging badge systems and methods of instruction or related area is required.
• A minimum of seven years of experience in supervising security personnel in the United Nations Security Management System is desirable.
• LanguagesEnglish and French are the working languages of the United Nations Secretariat. For the post advertised, fluency in English is required. Knowledge of another UN official language is an advantage.
• AssessmentQualified applicants may be evaluated through a competency-based interview and/or other assessment methods.
• Special NoticeThis position is subject to local recruitment pursuant to staff rule 4.4 of the United Nations Staff Rules. All staff in the General Service and related categories shall be recruited in the country or within commuting distance of each office, irrespective of their nationality and of the length of time they may have been in the country. A staff member subject to local recruitment shall not be eligible for the allowances or benefits exclusively applicable to international recruitment.
• Applicants may apply and be considered for locally recruited positions no matter where they are currently located (including the current serving staff members at other duty stations), provided they are locally available upon appointment. Selected candidates/staff members will have to relocate at their own expense to report for duty. In accordance with SR 4.4(c), they shall not be eligible for the international allowances or benefits indicated under staff rule 4.5 (a). If they do not already have the right to work in the duty station, appointment is contingent on issuance of a visa from the local authorities.
• At the United Nations, the paramount consideration in the recruitment and employment of staff is the necessity of securing the highest standards of efficiency, competence and integrity, with due regard to geographic diversity. All employment decisions are made on the basis of qualifications and organizational needs. The United Nations is committed to creating a diverse and inclusive environment of mutual respect. The United Nations recruits and employs staff regardless of gender identity, sexual orientation, race, religious, cultural and ethnic backgrounds or disabilities. Reasonable accommodation for applicants with disabilities may be provided to support participation in the recruitment process when requested and indicated in the application.
• United Nations ConsiderationsAccording to article 101, paragraph 3, of the Charter of the United Nations, the paramount consideration in the employment of the staff is the necessity of securing the highest standards of efficiency, competence, and integrity. Candidates will not be considered for employment with the United Nations if they have committed violations of international human rights law, violations of international humanitarian law, sexual exploitation, sexual abuse, or sexual harassment, or if there are reasonable grounds to believe that they have been involved in the commission of any of these acts. The term "sexual exploitation" means any actual or attempted abuse of a position of vulnerability, differential power, or trust, for sexual purposes, including, but not limited to, profiting monetarily, socially or politically from the sexual exploitation of another. The term "sexual abuse" means the actual or threatened physical intrusion of a sexual nature, whether by force or under unequal or coercive conditions. The term "sexual harassment" means any unwelcome conduct of a sexual nature that might reasonably be expected or be perceived to cause offence or humiliation, when such conduct interferes with work, is made a condition of employment or creates an intimidating, hostile or offensive work environment, and when the gravity of the conduct warrants the termination of the perpetrator's working relationship. Candidates who have committed crimes other than minor traffic offences may not be considered for employment.
• Due regard will be paid to the importance of recruiting the staff on as wide a geographical basis as possible. The United Nations places no restrictions on the eligibility of men and women to participate in any capacity and under conditions of equality in its principal and subsidiary organs. The United Nations Secretariat is a non-smoking environment.
• The paramount consideration in the appointment, transfer, or promotion of staff shall be the necessity of securing the highest standards of efficiency, competence, and integrity. By accepting an offer of appointment, United Nations staff members are subject to the authority of the Secretary-General and assignment by him or her to any activities or offices of the United Nations in accordance with staff regulation 1.2 (c). In this context, all internationally recruited staff members shall be required to move periodically to discharge new functions within or across duty stations under conditions established by the Secretary-General.
• Applicants are urged to follow carefully all instructions available in the online recruitment platform, inspira. For more detailed guidance, applicants may refer to the Manual for the Applicant, which can be accessed by clicking on "Manuals" hyper-link on the upper right side of the inspira account-holder homepage.
• The evaluation of applicants will be conducted on the basis of the information submitted in the application according to the evaluation criteria of the job opening and the applicable internal legislations of the United Nations including the Charter of the United Nations, resolutions of the General Assembly, the Staff Regulations and Rules, administrative issuances and guidelines. Applicants must provide complete and accurate information pertaining to their personal profile and qualifications according to the instructions provided in inspira to be considered for the current job opening. No amendment, addition, deletion, revision or modification shall be made to applications that have been submitted. Candidates under serious consideration for selection will be subject to reference checks to verify the information provided in the application.
• Job openings advertised on the Careers Portal will be removed at 11:59 p.m. (New York time) on the deadline date.
• No FeeTHE UNITED NATIONS DOES NOT CHARGE A FEE AT ANY STAGE OF THE RECRUITMENT PROCESS (APPLICATION, INTERVIEW MEETING, PROCESSING, OR TRAINING). THE UNITED NATIONS DOES NOT CONCERN ITSELF WITH INFORMATION ON APPLICANTS' BANK ACCOUNTS.

ประสบการณ์:

ไม่จำเป็นต้องมีประสบการณ์ทำงาน

ประเภทงาน:

งานประจำ

• Accountable for ensuring all applications within their market are delivered and maintained secure and compliant with internal standards and external regulations, including privacy requirements, Business Continuity Plans etc.
• Supports the prompt deployment of global Security & Compliance solutions and processes in the market.
• Responsible for tracking the market security & compliance posture through relevant metrics and driving continuous improvement through the management system.
• Plan/execute the market's Information Security Management System (ISMS).
• Provide process, standard routines and control procedures to enable secure and compliant by design applications.
• Drive the continuous improvement of Security & Compliance posture by leading the Risk, Control & Applications owners through the ISMS Framework.
• Ensure the implementation of IT Standards and Global Controls.
• Track & report on Risk, Control & Remediation maturity.
• Support the adoption of the appropriate metrics for tracking risks & controls.
• Ensure Information Security risk & control posture is aligned with market management.
• Coordinates all the IT related audits requests in the market.
• Represents the market teams with the auditors, supports market in providing documentation required to meet regulatory requirements (e.g. PCI, GxP).
• Tracks and follows-up the market audit, internal review or regulatory findings as corrective & preventative actions through the management system.
• Validates root causes have been addressed prior to closure of corrective & preventative actions.
• Works with Risk, Compliance & Security function to identify required levels of documentation and evidence to support audit and regulatory requirements.
• Ensures market is trained in reporting Risk, Compliance & Security incidents and events to meet internal & external requirements.
• Supports market in the execution and follow-up of Partner Compliance Audits (including cloud).
• ARE YOU A FIT?.
• Bachelor's Degree in Computer Science, Computer Engineering or related field.
• 8+ years of experience in information technology or related function.
• 7+ years of experience in information security and compliance or data privacy is required.
• Good English and Thai communication skills.
• Stakeholder management experience with proven record of successfully managing complex stakeholder network.
• Experience working for or with a global matrixed organization including with virtual teams.
• Experience with and strong knowledge of common information security management frameworks, such as ISO 27001, ITIL, COBIT and NIST.
• Industry-related/Professional compliance, risk or security management certification is preferred. (e.g., Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), ISO27001 Lead Auditor/Implementer etc.).
• We are Nestlé, the largest food and beverage company. We are 308,000 employees strong driven by the purpose of enhancing the quality of life and contributing to a healthier future. Our values are rooted in respect: respect for ourselves, respect for others, respect for diversity and respect for our future. With more than CHF 91.4 billion sales in 2018, we have an expansive presence with 413 factories in more than 85 countries. We believe our people are our most important asset, so we'll offer you a dynamic inclusive international working environment with many opportunities across different businesses, functions and geographies, working with diverse teams and cultures. Want to learn more? Visit us at www.nestle.com.