Cybersecurity Defensive Engineer (Ascend Money)
atAscend Group Co., Ltd.Job Description
- Executes cybersecurity engineer tasks including, but not limited to, security patch management, security vulnerability management, and security configuration management.
- Tests, implements, deploys, maintains, reviews, and administers the cybersecurity tools.
- Assist in identifying, prioritizing, and coordinating the protection of critical cyber defense infrastructure and key resources.
- Coordinate with Cyber Defense Analysts to manage and administer the updating of rules and signatures (e.g., intrusion detection/protection systems, antivirus, and content blacklists) for specialized cyber defense applications.
- Identify potential conflicts with the implementation of any cyber defense tools (e.g., tool and signature testing and optimization).
- Operates and maintains production information security systems.
- Ensures proper cybersecurity documentation is in place regarding standard operating procedures.
- Monitors the industry and external environment for emerging threats and advises relevant stakeholders on appropriate courses of action.
- Oversees incident response planning and the investigation of security breaches and assists with any associated disciplinary, public relations, and legal matters.
- Applies expert knowledge and skills to resolve problems, including support concepts and methods, problem isolation and troubleshooting procedures, system and file recovery processes, and operating system and network configurations.
- Prepares and presents cogent and cohesive analyses and briefings advising management on new technological developments, techniques, and enhancements that result in increased time and cost efficiencies.
- Provides advice and assistance to troubleshoot the most complex problems in a manner that minimizes interruptions in the ability to carry out critical business activities.
- Supports rapid response teams in response to customer service problems resulting from catastrophic events such as virus infections or widespread power outages.
- Supports the development of a formal cyber security risk assessment program.
- Supports and assists in maintaining a vulnerability/gap/response assessment program.
- Supports the ongoing maintenance of the cyber–Kill Chain for the company, focusing on phases of cyber-attack and remediation/mitigation for each phase.
- Supports ongoing activities to develop, communicate, and support appropriate standards and risk controls associated with digital data.
- Supports the development and maintenance of a company Data Protection program.
- Responds to cybersecurity alerts
- Cascade and leverage cybersecurity control and practice to the entire company group.
Qualifications
- Bachelor’s or Master’s degree in Computer Engineering, MIS, IT, or a related field.
- At least 2 years experience in computer security and 5 years in IT infrastructure.
- Have a foundation in good information security practices.
- Knowledge of International Security frameworks, Standards, and Guidelines, e.g., COBIT, NIST-800, ISO 27001, PCI-DSS, OWASP, etc.
- Experience in Security tools, e.g., EDR, ATP, WAF, IPS/IDS, Deception, TI/TIP, Anti DDoS
- Experience in Cloud Environments, e.g., Google Cloud, AWS, Microsoft Azure.
- Experience with system and application security management and control.
- Experience with system, network, and OS hardening techniques. (e.g., remove unnecessary services, password policies, network segmentation, enable logging, least privilege, etc.).
- Experience with facilitating information security risk assessments.
- Technical writing, documentation development, process mapping, and visual communication skills.
- Hands-on experience with computer programming languages and/or scripting languages such as Python, Java, and Shell for automation.
- Professional certificates related to work (e.g., CISSP, CISM, AWS Certified Security, or similar general security certification) are desirable
- Talent to identify and create a broad vision for a security solution and to execute it;
- Systems Thinking – the ability to see how parts interact with the whole (big picture thinking)
- Proven experience of acting as an expert in project teams.
- A positive, can-do attitude who naturally expresses a high degree of empathy to others.
- Ability to explain your thoughts or findings also to non-technical professionals
- Strong problem-solving and analytical abilities Able to work under minimal supervision, detail oriented
- Excellent English (Spoken and Written).
Location: True Digital Park, Punnawithi
Experience required
- 2 years
Salary
- Negotiable
Job function
- Engineering
Job type
- Full-time
Company overview
Size:1000-2000 employees
Industry:Information Technology
Location:Bangkok
Website:www.ascendcorp.com
Founded in:2015
Ranking:4.5/5
Ascend Corporation, a spin-off from True Corporation under C.P. Group, is driving digital innovation across Southeast Asia. We’re transforming everyday life with our range of tech-driven services—spanning e-commerce, digital payments, cloud solutions, and more. Our Key B ...
Why join us: Ascend Group isn’t just about digital innovation—we’re creating a vibrant space where you can truly thrive, right in the heart of Bangkok. Our Workspace • Central Location: Our headquarters spans two floors in t ...
Head office: AIA Capital Center Building, 18-19 th Floor, 89 Ratchadaphisek Road, Dindaeng, Bangkok 10400
Benefits
- Five-day work week
- Annual bonus
- Dental Insurance
- Employee discount
- Health Insurance
- Life Insurance
- Maternity leave
- Provident fund
- Social Security
Jobs you may like
WorkVenture gives you an inside look at what it's like to work at Ascend Group Co., Ltd., office & team photos, reviews and more. This is the Ascend Group Co., Ltd. Company Page. All content is posted anonymously by employees currently or previously working at Ascend Group Co., Ltd..Apply to SiS DistributionApply to HAKO VentureApply to Bravo BKKApply to WV