Filter Jobs

Experience:

7 years required

Skills:

System Security, Windows Server, Linux

Job type:

Full-time

• Identify and evaluate areas for improvement in detection, prevention, and cyber incident response.
• Work closely with stakeholders to develop and follow up on remediation plans.
• Provide expert consultation on mitigating strategies and actionable remediation plans to asset owners.
• Collaborate with various teams to create, implement, and monitor effective remediation strategies.
• Apply knowledge of IT infrastructure, with experience as a system administrator or system engineer, to enhance cybersecurity measures.
• Utilize an understanding of offensive and defensive cybersecurity strategies (e.g., red and blue teams).
• Perform penetration testing or demonstrate a strong understanding of penetration testing methodologies to assess the security of IT systems.
• Use computer forensic tools to examine and analyze electronic media in suspected hacking cases.
• Conduct tasks related to malware analysis and reverse engineering to identify and mitigate threats.
• Define a course of action if a security problem exists and explain in detailed technical reports what occurred when an incident happens, including the reasons it occurred, and the response taken.
• Document incidents thoroughly, providing detailed technical reports that include the cause of the incident, and the response measures implemented.
• Build relationships with other entities responsible for conducting cyber threat analyses, ensuring effective collaboration and information sharing.
• Bachelor s degree / master s degree or higher in Computer Engineering, Information Technology, Computer science or related field.
• Proficiency with SIEM, UBA, and SOAR tools.
• Experience with system monitoring tools.
• Coding ability in C, C++, C#, Java, ASM, PERL, PHP, and PowerShell.
• Knowledge of backup and archiving techniques.
• Use of enterprise system monitoring tools.
• Understanding of cloud computing.
• Proficiency in UNIX.
• Knowledge of network communication (IP/TCP).
• Familiarity with computer hardware systems.
• Experience with web-based application security.
• Strong knowledge of Windows and Linux Operating Systems.
• Experience in identifying and evaluating cybersecurity risks and providing actionable insights.
• Previous experience as a penetration tester (pentester) is highly beneficial.
• Experience as a system administrator/system engineer is advantageous.
• Familiarity with computer forensic tools and techniques.
• Experience in malware analysis and reverse engineering.
• Ability to work well under pressure while handling multiple tasks.
• Remark: The Bank requires the verification of criminal records prior consideration for employment to ensure secured and maintain standards of the organization.

Experience:

3 years required

Skills:

System Security, Windows Server

Job type:

Full-time

• Provide input and security consultation in a project-based environment as well as assisting operational of IT Security components with functional security requirements.
• Evaluate new projects and applications as they relate to security architecture and design; audit existing deployments and analyse gaps against security practices and standards.
• Conduct application vulnerability assessment, secure code review, and security penetration testing for new projects, enhancement projects, and periodic assurance to com ...
• Implement and operate DevSecOps on projects/applications that use DevOps process.
• Track, enforce, and consult to resolution the closure of security risks including review plans and monitor progress or remedial actions according to security requirements, security design, application vulnerability, and penetration testing issues.
• Periodically review security requirements to align with Bank s policies and regulations.
• Support periodic security audits.
• Manage third parties involved in IT Security Advisory and Assurance.
• Bachelor's or Master s Degree in Computer Science, Engineering, Information Systems or equivalent.
• Minimum 3 years in IT Security Advisory, Security Assurance, Threat Hunting plus experience working in or closely with IT Application, Enterprise Architect, and IT Risk management.
• Knowledge of Security Framework and Concepts, Compliance, Risk and Regulations, PCI DSS, OWASP, COBIT.
• Experience in performing comprehensive and authoritative technical analysis of the security readiness and compliance of applications.
• The ability to oversee pentesting to find vulnerabilities in all elements of a security system, understand security vulnerabilities, secure code review and remediation.
• Data and information management, including classification, retention and destruction. It also means keeping corporate and personal data both private and secure while needed, and destroyed when it is no longer needed.
• Knowledge of all applicable laws and compliance frameworks to enforce compliance.
• Remark: The Bank requires the verification of criminal records prior consideration for employment to ensure secured and maintain standards of the organization.

Skills:

Project Management, Linux, UNIX, English

Job type:

Full-time

• Manage CCII (Cloud, Cyber Security, IOT, ICT) project for single and multi-tower solution for Property, Retail, Conglomerate, and international customer segments.
• Be a committee of AIS bid management for validating large projects at TCV > 10MB.
• Manage project stakeholders to meet expectation and requirement.
• Communicate project progress to stakeholders.
• Plan and manage project issue and risk with proper actions.
• Plan and manage project to meet project objective, within timeline, project budget, scope and give customer satisfied.
• Manage project resource both internal delivery and external suppliers.
• Bachelor's degree or higher in computer science, business, or a related field.
• 8-15 years of project management and related experience.
• Strong in communication and stakeholder management.
• Project Management Professional certification preferred.
• Proven ability to solve problems creatively.
• Strong familiarity with project management software tools, methodologies, and best practices.
• Experience seeing projects through the full life cycle.
• Excellent analytical skills.
• Strong interpersonal skills and extremely resourceful.
• Proven ability to complete projects according to outlined scope, budget, and timeline.
• Engineering Specialist (Cyber Security).
• Oversee the implementation of cyber security solutions and services to ensure customer satisfaction and security effectiveness.
• Plan and establish procedures and systems that enhance operational efficiency.
• Delegate tasks effectively to team members to achieve organizational objectives.
• Strategically allocate resources to optimize project outcomes.
• Monitor and support staff in their work progress to ensure timely delivery of services.
• Evaluate staff performance through regular assessments and feedback mechanisms.
• Foster professional development among team members to enhance their skills and capabilities.
• Drive productivity and maintain high quality standards within the division.
• Provide guidance and coaching to staff to support exceptional service delivery.
• Bachelor s degree in Computer Science, Information Technology, Cybersecurity, or a related field. Some positions may require a master s degree.
• Relevant work experience in cybersecurity roles, typically ranging from 3-7 years, depending on the seniority of the position. Hands-on experience with security technologies and methodologies is essential.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), CompTIA Security+, Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA) may be preferred or required.
• Proficiency in network security, firewalls, intrusion detection systems, and VPN.
• Knowledge of operating systems (Windows, Linux, UNIX) and databases.
• Experience with security protocols (SSL, IPsec, etc.) and encryption.
• Familiarity with security frameworks and standards (NIST, ISO 27001, etc.).
• Knowledge of Compliance: Understanding of regulatory requirements and compliance standards (e.g., GDPR, HIPAA, PCI-DSS).
• Ability to work both independently and collaboratively in a team environment.
• Strong attention to detail and the ability to prioritize tasks effectively.
• Engineering/IT Specialist (Cyber Security)
• Design/Implement Cyber Security project for Private Cloud and Global Cloud (AWS and MS Azure).
• Solution integration and migration.
• Control suppliers in the assigned project.
• Do project quality control.
• Do project risk assessment and management.
• Do project UAT with customer.
• Create final project document.
• Do customer project training (OJT).
• At least 4 years of Cyber Security experience.
• Bachelor s degree in Computer Engineering, Information Technology, Computer Science or related fields.
• Experience in installation and operation Security product e.g. Firewall, IPS, SIEM, NAC, Anti-Virus, Endpoint.
• Knowledge on network security and cloud technology.
• Knowledge of monitoring tools (What s up gold, Zabbix, Nagios).
• Has valid Security product Certification e.g. Fortinet NSE3-7, Palo Alto PCNSA, PCNSE, Cisco CCNA, CCNP Security.
• Experienced in ITIL framework.
• Senior Engineer (System Infrastructure)
• Implement Server, Storage, Virtualization, Backup system for Enterprise customer.
• Hypervisor and Operating system configuration and customization.
• Network and firewall integration for Cloud infrastructure.
• Hand-over completed solution to related team.
• At least 3 years experience on Server, Storage, VMware and Veeam delivery.
• Strong knowledge of Cloud environment and Operating system. (Windows and Linux).
• Basic skill of Database and Middleware installation.
• Strong organizational skills and ability to take on multiple assignments.
• Experienced firewall and cloud network implementation.
• Ability to occasionally work or assign work during nights/weekends during critical incidents per on-call rotation or major project implementations.
• Good command of English.
• VMware VCP or Linux certificate knowledge is an advantage.

Experience:

3 years required

Skills:

Industry trends

Job type:

Full-time

• Risk Assessment & Analysis: Conduct comprehensive assessments of clients OT environments to identify vulnerabilities and recommend mitigation strategies.
• Security Strategy Development: Design and implement tailored OT security frameworks and policies in alignment with industry standards (NIST, ISA/IEC 62443, etc.).
• Stakeholder Engagement: Collaborate with cross-functional teams, including IT, operations, and management, to foster a culture of security awareness and resilience.
• Training & Mentorship: Provide training and mentorship to junior consultants and client teams on OT security best practices and emerging threats.
• Thought Leadership: Stay abreast of industry trends, emerging technologies, and regulatory changes; contribute to white papers, presentations, and client workshops.
• Your role as a leader
• At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We expect our people to embrace and live our purpose and shared values, challenging themselves everyday to identify issues that are most important to our clients, our people and the communities, and to make an impact that matters. In addition to living our purpose, Senior Consultants across our firm are expected to:Understand objectives for stakeholders, clients and Deloitte whilst aligning own performance to objectives and sets personal priorities.
• Develop themselves by actively seeking opportunities for growth, shares knowledge and experiences with others, and acts as a strong brand ambassador.
• Seek opportunities to challenge themselves, collaborate with others to deliver and takes accountability for results.
• Build relationships and communicates effectively in order to positively influence peers and stakeholders.
• Work effectively in diverse teams within a highly inclusive team culture where everyone is supported, respected and recognized for their contribution.
• Enough about us, let's talk about youBachelor s degree in Cybersecurity, Information Technology, Engineering, or a related field; a Master s degree is a plus.
• At least 3 years of experience in cybersecurity, with a focus on operational technology and industrial control systems (ICS).
• Relevant certifications such as CISSP, CISM or GICSP,.
• Deep understanding of relevant standards and guidelines.
• Proficiency in network security, vulnerability assessment tools, and incident response methodologies specific to OT environments.
• Strong knowledge of industrial control systems, SCADA systems, and PLCs.
• Experience with network segmentation, access control, and secure communication protocols.
• Exceptional verbal and written communication skills, with the ability to articulate complex concepts to technical and non-technical stakeholders alike.
• Strong analytical and problem-solving skills, with a proactive approach to identifying and addressing potential security issues.
• Due to volume of applications, we regret that only shortlisted candidates will be notified.
• Please note that Deloitte will never reach out to you directly via messaging platforms to offer you employment opportunities or request for money or your personal information. Kindly apply for roles that you are interested in via this official Deloitte website. #LI-AA1 Requisition ID: 106367In Thailand, the services are provided by Deloitte Touche Tohmatsu Jaiyos Co., Ltd. and other related entities in Thailand ("Deloitte in Thailand"), which are affiliates of Deloitte Southeast Asia Ltd. Deloitte Southeast Asia Ltd is a member firm of Deloitte Touche Tohmatsu Limited. Deloitte in Thailand, which is within the Deloitte Network, is the entity that is providing this Website.

Skills:

ISO 27001

Job type:

Full-time

• Protect the organization's computer networks and systems against a range of cyber threats, such as hacking attempts, data breaches, and different types of cyber attacks. The
• responsibilities of this role include creating, deploying, and overseeing security strategies and technologies to defend the organization IT security.
• Lead the strategic direction, development, and implementation of cybersecurity solutions and practices to protect the organization from sophisticated cyber threats and ...
• Serve as the foremost cybersecurity expert within the organization, providing deep technical expertise and leadership in the design, evaluation, and optimization of complex security architectures.
• Develop comprehensive cybersecurity frameworks that align with industry best practices and regulatory standards, ensuring the organization's resilience against cyber attacks.
• Conduct sophisticated risk assessments and threat modeling exercises to identify potential security gaps and develop advanced strategies for mitigation and prevention.
• Lead the incident response and crisis management efforts for high-impact security breaches, coordinating with cross-functional teams to ensure rapid containment and recovery.
• Drive the adoption of cutting-edge security technologies and methodologies, including artificial intelligence and machine learning, to enhance detection and response capabilities.
• Establish and maintain strong relationships with external cybersecurity agencies, industry groups, and technology partners to stay abreast of emerging threats and trends.
• Develop and manage the cybersecurity budget, ensuring strategic allocation of resources to high-priority projects and initiatives.
• Advanced degree in Computer Science, Information Security, or a related field, with specialized knowledge in cybersecurity.
• A minimum of 5 years of experience in Infrastructure, 3 years of cybersecurity, with at least 2 years in a strategic leadership or management role overseeing cybersecurity functions.
• Professional cybersecurity certifications, such as CISSP, CISM, CCSP, or similar, are required.
• Proven expertise in developing and implementing cybersecurity strategies and architectures to protect complex enterprise environments.
• Other: Deep knowledge of the cybersecurity landscape, including emerging threats, advanced persistent threats (APT), regulatory requirements, and industry best practices.
• Other: ISO 27001.

Skills:

Oracle, SQL, MySQL

Job type:

Full-time

• Perform DBA activities for Oracle Retail applications including MOM, Store, Planning, and middleware (RIB).
• Administer Oracle WebLogic middleware and manage multiple Oracle Retail environments.
• Install, configure, patch, upgrade, and maintain Oracle Retail applications and their interfaces.
• Monitor and support Oracle Retail applications, including RIB and related systems.
• Perform performance tuning, indexing, and partitioning for Oracle Retail and database systems.
• Install, configure, and maintain security applications (OID, OIM) and replication software (e.g., GoldenGate).
• Maintain Oracle database systems, including managing replication, backup, and disaster recovery setups (Oracle RAC, Data Guard, RMAN).
• Create and manage database objects, shell scripts, and PL/SQL files required by Oracle Retail applications.
• Schedule and monitor batch jobs using UC4, Cron jobs, and Oracle database.
• Troubleshoot and resolve complex database issues, ensuring high availability, security, and performance.
• Use Oracle support (Metalink) for service request creation, follow-up, and resolution.
• Install and maintain reporting and BI applications like OBIEE, BI Publisher, MicroStrategy.
• Administer cloud platforms (Oracle, AWS, Azure) and Oracle Exadata environments.
• RequirementsBachelor s degree or higher in Computer Science or a related field.
• Minimum of 5 years as a Database Administrator (Oracle, MSSQL, MySQL, etc.).
• Proficiency in system administration of Oracle Exadata, Cloud platforms (Oracle, AWS, Azure), and PaaS (Oracle Autonomous/AWS RDS).
• Experience with Oracle multitenant (Container/Pluggable DBs), RAC (Active-Active environments), and database performance tuning.
• Knowledge of Oracle ASM, Oracle security applications (OID, OIM), and replication tools (GoldenGate).
• Familiarity with Linux or UNIX environments and disaster recovery solutions (Oracle RAC, Data Guard and RMAN).
• Performs upgrades of databases (Patch, Export-Import Data Pump and Data Guard).
• Experience with virtualization technologies both on-premises and on the cloud.
• Strong knowledge of database installation, partitioning, performance tuning, and backup/recovery strategies.
• Ability to diagnose, troubleshoot, and resolve complex issues with Oracle databases and cloud services.
• Familiarity with automation and scripting (PL/SQL, Shell, Pro*C).
• Experience with cloud database environments (AWS RDS, Oracle Autonomous).
• Strong communication skills with the ability to collaborate with both technical and non-technical stakeholders.
• Excellent interpersonal skills and ability to work well in a team environment.

Experience:

1 year required

Skills:

Risk Management, Compliance

Job type:

Full-time

• Invite and provide evidence-based feedback in a timely and constructive manner.
• Share and collaborate effectively with others.
• Work with existing processes/systems whilst making constructive suggestions for improvements.
• Validate data and analysis for accuracy and relevance.
• Follow risk management and compliance procedures.
• Keep up-to-date with technical developments for business area.
• Communicate confidently in a clear, concise and articulate manner - verbally and in written form.
• Seek opportunities to learn about other cultures and other parts of the business across the Network of PwC firms.
• Uphold the firm's code of ethics and business conduct.
• referred skills.
• Cyber Security and Data Privacy.
• Minimum years experience required.
• 1-3 years of Experiences.
• Additional application instructions.
• N/A.
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified).
• Required Skills.
• Optional Skills.
• Desired Languages (If blank, desired languages not specified).
• Travel Requirements.
• Not Specified
• Available for Work Visa Sponsorship?.
• Yes
• Government Clearance Required?.
• No

Experience:

1 year required

Skills:

Management, Property Management / Development, English

Job type:

Full-time

• บริหารจัดการ แก้ไขปัญหาต่างๆ ภายในในโครงการ พร้อมทั้งเสนอทางเลือกในการแก้ไขปัญหาให้แก่เจ้าของร่วม.
• บริหารความสัมพันธ์อันดีแก่เจ้าของร่วม สื่อสารประชาสัมพันธ์กิจกรรมต่าง ๆ รวมถึงรับฟังปัญหา ข้อร้องเรียน ข้อเสนอแนะ และแก้ไขปัญหาตามระยะเวลาที่กำหนด.
• ตรวจสอบและอนุมัติการแก้ไขตกแต่ง ต่อเติมให้เป็นไปตามระเบียบข้อบังคับและมาตรฐานของโครงการ.
• ตรวจสอบ ดูแล และพัฒนาสภาพโครงการให้เป็นไปตามมาตรฐาน และควบคุมการปฏิบัติงานของแม่บ้าน พนักงานรักษาความปลอดภัย และคนสวน.
• วางแผนการจัดเตรียมอุปกรณ์ภายในกล่องโอนและส่งมอบกล่องโอนให้แก่เจ้าของร่วม.
• จัดทำ ควบคุม ตรวจสอบ บริหารจัดการงบการเงินของโครงการเพื่อให้เกิดประโยชน์สูงสุดแก่ลูกบ้าน รวมถึงสื่อสารรายรับ-รายจ่ายของโครงการแก่ลูกบ้าน.
• ตรวจสอบการรับชำระเงิน และนำเงินฝากเข้าบัญชีนิติบุคคล รวมถึงติดตามหนี้ค้างชำระ.
• จัดเตรียมการประชุม และสรุปรายงานการประชุมคณะกรรมการ ประชุมสามัญ ประชุมวิสามัญ และประชุมภายในต่าง ๆ ตามช่วงระยะเวลาที่กำหนด รวมถึงติดดามมติที่ประชุมให้บรรลุวัตถุประสงค์.
• สื่อสาร และทำความเข้าใจกับทีมงานถึงวิธีการแก้ไขข้อร้องเรียน วิธีการป้องกันปัญหาหรือข้อร้องเรียน และระงับไม่ให้เกิดข้อร้องเรียนเดิมซ้ำอีก.
• บริหารจัดการทีม พัฒนาความรู้ความสามารถ และสนับสนุนช่วยเหลือผู้ใต้บังคับบัญชา เพื่อให้ปฏิบัติงานได้อย่างมีประสิทธิภาพ.
• ให้คำแนะนำเพื่อการพัฒนาบริการและการบูรณาการใช้แอปพลิเคชัน เพื่อตอบสนองการให้บริการ.
• วุฒิการศึกษาปริญญาตรี ขึ้นไป ทุกสาขาวิชา.
• มีประสบการณ์ตรงด้านการบริหารโครงการหมู่บ้านหรืออาคาร อย่างน้อย 1 ปี.
• หรือมีประสบการณ์ผู้จัดการในสายงานบริการ อย่างน้อย 3 ปี.
• บุคลิกภาพดี มนุษย์สัมพันธ์ดี สามารถแก้ไขปัญหาเฉพาะหน้าได้เป็นอย่างดี.
• มีภาวะผู้นำ และมีทักษะในการบริหารจัดการให้มีประสิทธิภาพ.
• สามารถใช้โปรแกรมคอมพิวเตอร์พื้นฐานได้ (MS.Word, MS.Excel).
• สามารถปฏิบัติงาน 6 วัน/ สัปดาห์ (หยุดวันธรรมดา) และประจำโครงการที่ได้รับมอบหมายได้.
• หากสามารถสื่อสารภาษาอังกฤษได้ จะพิจารณาเป็นพิเศษ.
• หากมีรถยนต์ส่วนตัว หรือเดินทางได้ทุกโซน(กรุงเทพฯและปริมณฑล) จะพิจารณาเป็นพิเศษ.

Job type:

Full-time

Greenline Synergy provides the information security governance to the BDMS hospitals which is a framework of policies, practices, and strategies that align organizational resources toward protecting information through cybersecurity measures.

Experience:

3 years required

Skills:

Property Management / Development, Management, English

Job type:

Full-time

• บริหารจัดการ แก้ไขปัญหาต่างๆ ภายในในโครงการ พร้อมทั้งเสนอทางเลือกในการแก้ไขปัญหาให้แก่เจ้าของร่วม.
• บริหารความสัมพันธ์อันดีแก่เจ้าของร่วม สื่อสารประชาสัมพันธ์กิจกรรมต่าง ๆ รวมถึงรับฟังปัญหา ข้อร้องเรียน ข้อเสนอแนะ และแก้ไขปัญหาตามระยะเวลาที่กำหนด.
• ตรวจสอบและอนุมัติการแก้ไขตกแต่ง ต่อเติมให้เป็นไปตามระเบียบข้อบังคับและมาตรฐานของโครงการ.
• ตรวจสอบ ดูแล และพัฒนาสภาพโครงการให้เป็นไปตามมาตรฐาน และควบคุมการปฏิบัติงานของแม่บ้าน พนักงานรักษาความปลอดภัย และคนสวน.
• วางแผนการจัดเตรียมอุปกรณ์ภายในกล่องโอนและส่งมอบกล่องโอนให้แก่เจ้าของร่วม.
• จัดทำ ควบคุม ตรวจสอบ บริหารจัดการงบการเงินของโครงการเพื่อให้เกิดประโยชน์สูงสุดแก่ลูกบ้าน รวมถึงสื่อสารรายรับ-รายจ่ายของโครงการแก่ลูกบ้าน.
• ตรวจสอบการรับชำระเงิน และนำเงินฝากเข้าบัญชีนิติบุคคล รวมถึงติดตามหนี้ค้างชำระ.
• จัดเตรียมการประชุม และสรุปรายงานการประชุมคณะกรรมการ ประชุมสามัญ ประชุมวิสามัญ และประชุมภายในต่าง ๆ ตามช่วงระยะเวลาที่กำหนด รวมถึงติดดามมติที่ประชุมให้บรรลุวัตถุประสงค์.
• สื่อสาร และทำความเข้าใจกับทีมงานถึงวิธีการแก้ไขข้อร้องเรียน วิธีการป้องกันปัญหาหรือข้อร้องเรียน และระงับไม่ให้เกิดข้อร้องเรียนเดิมซ้ำอีก.
• บริหารจัดการทีม พัฒนาความรู้ความสามารถ และสนับสนุนช่วยเหลือผู้ใต้บังคับบัญชา เพื่อให้ปฏิบัติงานได้อย่างมีประสิทธิภาพ.
• ให้คำแนะนำเพื่อการพัฒนาบริการและการบูรณาการใช้แอปพลิเคชัน เพื่อตอบสนองการให้บริการ.
• วุฒิการศึกษาปวช. ขึ้นไป ทุกสาขาวิชา.
• ต้องมีประสบการณ์ตรงด้านการบริหารอาคาร อย่างน้อย 3 ปี ขึ้นไป.
• บุคลิกภาพดี มนุษย์สัมพันธ์ดี สามารถแก้ไขปัญหาเฉพาะหน้าได้เป็นอย่างดี.
• มีภาวะผู้นำ และมีทักษะในการบริหารจัดการให้มีประสิทธิภาพ.
• สามารถใช้โปรแกรมคอมพิวเตอร์พื้นฐานได้.
• สามารถปฏิบัติงาน 6 วัน/ สัปดาห์ และประจำโครงการที่ได้รับมอบหมายได้.
• สื่อสารภาษาอังกฤษได้จะพิจารณาทันที.
• มีรถยนต์ส่วนตัว หรือเดินทางได้ทุกโซน กรุงเทพฯ และปริมณฑล.

Skills:

Research, System Administration, Android

Job type:

Full-time

• Implements IT security improvements by assessing current situation; evaluating trends; anticipating requirements.
• Protects IT system by defining access privileges, control structures, and required resources.
• Process & analyze to gain insights on past IT areas on, current or potential attacks and threats that pose a risk to the organization.
• Primary point of contact with Internal Audit. Periodically review, update, implement and communicate changes to IT policies and procedures and General IT Controls. Facilitate internal and external audit processes by participating in scoping discussions and walk-throughs, delivering evidence that controls are operating as defined, remediating deficiencies, and acting on recommendations.
• Safeguards IT infrastructure and system as well as information system assets by identifying and solving potential and actual security problems.
• Research cyber security topics and promote Cyber security awareness throughout Thaioil.
• EDUCATION.
• Bachelor s degree in computer science, Information Systems, or equivalent education or work experience.
• EXPERIENCE.
• Relevant experience, especially in IT working environment.
• Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.
• Hands-on experience analyzing high volumes of logs, network data (e.g., Netflow, FPC), and other attack artifacts in support of incident investigations.
• Experience with vulnerability scanning solutions.
• Familiarity with Vulnerability Management program.
• Proficiency with any of the following: Anti-Virus, HIPS, ID/PS, Full Packet Capture, Host-Based Forensics, Network Forensics, and RSA Security.
• Have knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform.
• Understanding of mobile technology and OS (i.e., Android, iOS, Windows), VMware technology, and Unix and basic Unix commands.
• OTHER REQUIREMENTS.

Skills:

Compliance, Legal, English

Job type:

Full-time

• Driving PSMS (physical security management system) at local level within the framework of C/AUP governance (incl. Site Security Concept process & consulting of local management).
• Monitoring of adequate implementation of local risk mitigation measures (incl. security services delivered by GR/SES).
• Conducting security investigations at local level & support internal investigations (Compliance) on request.
• Implementing security awareness promotion activities along with other security stakeholders at site (e.g. DSO, GR).
• At Regional Level.
• Implementation/monitoring of the C/AUP regulatory framework in the region based on legal conditions.
• Serve as the primary contact point for physical security governance requirements for responsible region.
• Driving the regional int./ext. security network. Raise PSMS awareness among regional managers and employees.
• Support the continuous improvement process and share best practices within the worldwide security organization.
• Qualifications Bachelor s degree in related fields.
• 5-8 years' experience in an industrial/manufacturing company security or facilities experience are preferred.
• Excellent communication and presentation skills; demonstrated ability to interact with all levels of management with excellent analytical skills.
• Work independently and control own work priorities.
• Highly knowledgeable in all aspects of risk analysis.
• General knowledge of systems capability for security systems.
• Basic knowledge of investigation techniques and methods.
• A good understanding of risk and security issues facing office organization in Thailand.
• Good spoken and written English and Thai.
• Able to travel to Rayong province for work assignments as required.
• Additional InformationBy choice, we are committed to a diverse workforce and are an equal opportunity employer. Robert Bosch welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in the selection process.

Skills:

Project Management

Job type:

Full-time

• Responsible for the protection of Celestica assets and to respond to alarms, emergency situations and to assist employees with security issue as part of our mission to provide a safe work environment.
• Responsible for maintaining appropriate access to all areas of the facility for both employees and customers.
• Controlling daily security operations including incident investigation, property passes, loss prevention, and all administrative duties required at the site.
• Knowledge/Skills/Competencies.
• In-depth knowledge of facilities management and operations.
• Understanding of environmental, health and safety regulations (local and government).
• Good organization and project management skills.
• Ability to evaluate, diagnose and troubleshoot problems.
• Ability to gather and analyze data and determine root cause of problems.
• Ability to effectively communicate with a variety of internal and external customers.
• Typical Experience.
• Two to Four years relevant experience.
• Typical Education.
• Bachelor's degree in a related field, or an equivalent combination of education and experience.
• Educational requirements may vary by geography.
• Notes.
• This job description is not intended to be an exhaustive list of all duties and responsibilities of the position. Employees are held accountable for all duties of the job. Job duties and the % of time identified for any function are subject to change at any time.
• Celestica is an equal opportunity employer. All qualified applicants will receive consideration for employment and will not be discriminated against on any protected status (including race, religion, national origin, gender, sexual orientation, age, marital status, veteran or disability status or other characteristics protected by law).
• At Celestica we are committed to fostering an inclusive, accessible environment, where all employees and customers feel valued, respected and supported. Special arrangements can be made for candidates who need it throughout the hiring process. Please indicate your needs and we will work with you to meet them.
• Celestica (NYSE, TSX: CLS) enables the world s best brands. Through our recognized customer-centric approach, we partner with leading companies in Aerospace and Defense, Communications, Enterprise, HealthTech, Industrial, Capital Equipment and Energy to deliver solutions for their most complex challenges. As a leader in design, manufacturing, hardware platform and supply chain solutions, Celestica brings global expertise and insight at every stage of product development - from drawing board to full-scale production and after-market services for products from advanced medical devices, to highly engineered aviation systems, to next-generation hardware platform solutions for the Cloud. Headquartered in Toronto, with talented teams spanning 40+ locations in 13 countries across the Americas, Europe and Asia, we imagine, develop and deliver a better future with our customers.
• Celestica would like to thank all applicants, however, only qualified applicants will be contacted.
• Celestica does not accept unsolicited resumes from recruitment agencies or fee based recruitment services.

Skills:

Procurement, Cost Estimation, Budgeting

Job type:

Full-time

• Work under supervision to support engineering works in every asset life cycle including but not limited to concept selection, basic / detailed engineering, construction engineering, procurement support, operations and maintenance support, and decommissioning.
• Be present onsite or at the vendor/contractor premise to perform investigation, troubleshooting, audit, site survey, commissioning and/or acceptance test.
• Perform engineering studies which involves engineering calculation, cost estimation, ...
• Practice and learn to apply engineering concepts, methods, and technical knowledges to carry out the work assignment.
• Carry out engineering works adhering to cooperate/department standards, guidelines, work procedures, and practices.
• Practice and assist in technical administration of related service contracts / procurement of simple package/ well-defined contracts.
• To be trained intensively on the necessary fundamental E&P engineering concepts / methodologies.
• Participate in team discussion to build up the fundamental knowledge / capability of technical.
• Follow the company s SSHE policy and regulations in all works under his/her responsibilities.
• Undertake other duties as assigned including special projects.
• Bachelor s Degree in Engineering (Chemical Engineering, Mechanical Engineering and Instrumentation Engineering).
• Good command of both written and spoken English.
• Required TOEIC score 650 and up.

Experience:

1 year required

Skills:

Risk Management, Compliance, English

Job type:

Full-time

• Invite and provide evidence-based feedback in a timely and constructive manner.
• Share and collaborate effectively with others.
• Work with existing processes/systems whilst making constructive suggestions for improvements.
• Validate data and analysis for accuracy and relevance.
• Follow risk management and compliance procedures.
• Keep up-to-date with technical developments for business area.
• Communicate confidently in a clear, concise and articulate manner - verbally and in written form.
• Seek opportunities to learn about other cultures and other parts of the business across the Network of PwC firms.
• Uphold the firm's code of ethics and business conduct.
• Preferred skills.
• Penetration Tester (Manual & Automate).
• Minimum years experience required.
• Over 1 years of Experience in related fields.
• Additional application instructions.
• Good Communication in English.
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified).
• Required Skills.
• Optional Skills.
• Desired Languages (If blank, desired languages not specified).
• Travel Requirements.
• Not Specified
• Available for Work Visa Sponsorship?.
• Yes
• Government Clearance Required?.
• No
• Job Posting End Date.
• April 30, 2025

Experience:

8 years required

Skills:

Business Development, Assurance, Software Development, English

Job type:

Full-time

• Provide integrated services focused on IT security related to help clients develop a vision for their cybersecurity and privacy program.
• Design and build a sustainable and agile Cybersecurity program in responding to changes as a part of economic and business development where IT and Cyber are catalyst.
• Operate aspects of the program and provide an independent review and assurance of their program to Management or 3rd party stakeholders.
• Provide thought leadership and direction and contribute to the firm s intellectual property by driving the development of toolkits, methodologies, accelerators, and training.
• Build, retain, coach, and develop the team through superior leadership skills.
• Bachelor s or Master s degree in Management Information Systems, Computer Engineering, Computer Science and any related fields.
• Minimum 5-8 years of working experiences in Cyber Security or Technical Implementation experience working with Commercial Off the Shelf (COTS) products (IAM, SIEM, and other security products) leading sizable teams in development lifecycle.
• Strong knowledge of IT Security Domain concepts (e.g. Identity and Access Management, Asset Security, Network Security, Security Operations, Software Development Security).
• Strong project management, interpersonal, influencing, and advisory skills.
• Strong presentation and communication skill through leading or delivering a high impact presentation to senior executives.
• Flexibility to travel and work on out-of-town engagements and overseas assignments.
• Clear, articulate, and confident written and verbal communication in Thai and English.
• Professional Certificate (e.g. CISSP, CISA, CIPP, CEH, PMP).
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified).
• Desired Languages (If blank, desired languages not specified).
• English, Thai
• Travel Requirements.
• Up to 80%
• Available for Work Visa Sponsorship?.
• No
• Government Clearance Required?.
• No

Experience:

7 years required

Skills:

English

Job type:

Full-time

• Encourage everyone to have a voice and invite opinion from all, including quieter members of the team.
• Deal effectively with ambiguous and unstructured problems and situations.
• Initiate open and candid coaching conversations at all levels.
• Move easily between big picture thinking and managing relevant detail.
• Anticipate stakeholder needs, and develop and discuss potential solutions, even before the stakeholder realises they are required.
• Contribute technical knowledge in area of specialism.
• Contribute to an environment where people and technology thrive together to accomplish more than they could apart.
• Navigate the complexities of cross-border and/or diverse teams and engagements.
• Initiate and lead open conversations with teams, clients and stakeholders to build trust.
• Uphold the firm's code of ethics and business conduct.
• Preferred skills.
• Security Operation Center (SOC).
• Minimum years experience required.
• 7 years of experiences and above.
• Additional application instructions.
• Good communication in english.
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified).
• Required Skills.
• Optional Skills.
• Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Coaching and Feedback, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Influence, Intellectual Curiosity, Learning Agility, Managed Services, Optimism, Privacy Compliance {+ 16 more}Desired Languages (If blank, desired languages not specified).
• Travel Requirements.
• Not Specified
• Available for Work Visa Sponsorship?.
• Yes
• Government Clearance Required?.
• No
• Job Posting End Date.
• April 30, 2025

Skills:

Linux, Good Communication Skills, English

Job type:

Full-time

• Conduct advanced penetration tests to identify vulnerabilities in computer systems, networks, and applications.
• Perform vulnerability assessments and security audits to evaluate the effectiveness of existing security measures.
• Develop and execute simulated cyber-attacks to assess the organization s readiness to defend against real-world threats.
• Employ various attack methodologies to test the resilience of systems against hacking attempts and security breaches.
• Perform threat modeling to anticipate potential attack vectors.
• Analyze risks associated with identified vulnerabilities and recommend appropriate mitigation strategies.
• Develop custom tools and scripts to automate penetration testing and exploit known vulnerabilities.
• Keep up to date with the latest exploitation techniques and security tools.
• Prepare detailed reports on findings from penetration tests and security assessments.
• Document and present risks and vulnerabilities to relevant stakeholders, along with recommended countermeasures.
• Collaborate with the Blue Team to enhance the organization s defensive strategies based on offensive findings.
• Share insights and knowledge on emerging threats and attack techniques with the cybersecurity team to continually improve defensive measures.
• Bachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 10 years of experience in penetration testing and vulnerability assessments or related roles.
• Strong knowledge of network and application security, ethical hacking, and cybersecurity principles.
• Familiarity with penetration testing tools (e.g., Metasploit, Burp Suite, Kali Linux).
• Excellent problem-solving skills and ability to think like an adversary.
• Good communication skills for effective reporting and stakeholder engagement.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, etc.
• Professional Certificated related to work e.g. (CISSP, OSCP, OSWE) is desirable.
• Location: True Digital Park, Punnawithi.

Skills:

Risk Management, Software Development, Kubernetes

Job type:

Full-time

• Design, develop, and maintain security systems, tools, and best practices across the stack (frontend, backend, mobile, and infrastructure).
• Identify, assess, and mitigate security vulnerabilities through proactive risk management and threat modeling.
• Collaborate with product managers and developers to embed security into the software development lifecycle (SDLC).
• Develop and enforce policies for secure coding, data protection, and incident response.
• Implement robust authentication and authorization mechanisms.
• Conduct regular security assessments, including penetration testing and code reviews.
• Monitor, detect, and respond to security incidents using advanced tools and methodologies.
• Enhance infrastructure security using Kubernetes, Docker, and cloud platforms (GCP, AWS).
• Stay current on emerging threats, vulnerabilities, and security trends, and recommend actionable insights to improve defenses.
• Champion security awareness across the organization, including training sessions and knowledge-sharing activities.
• Ensure compliance with relevant security standards and regulations such as ISO 27001, PDPA, GDPR, SOC 2, or PCI DSS.
• Basic QualificationsProven expertise in application security, cloud security, and infrastructure security.
• Proficiency in securing systems built with technologies such as Node.js, Golang, Elixir, Python, React, Svelte, or Flutter.
• Experience with tools like Docker, Kubernetes, and cloud services (GCP, AWS).
• Strong understanding of cryptographic principles and secure communication protocols.
• Familiarity with CI/CD pipelines and secure DevOps practices.
• Hands-on experience with security tools for vulnerability scanning, penetration testing, and threat detection.
• Deep understanding of database security, especially with PostgreSQL or other relational or non-relational databases.
• Strong analytical and problem-solving skills with a security-first mindset.
• Excellent communication skills and the ability to collaborate effectively in Agile teams.
• Self-motivation, adaptability, and a strong work ethic.
• Preferred Qualifications We re especially excited if you bring:Experience leading security initiatives or mentoring other engineers in security best practices.
• Expertise in compliance frameworks such as ISO 27001, PDPA, GDPR, SOC 2, or PCI DSS.
• Advanced knowledge of security monitoring and incident response systems.
• Strong system design skills with a focus on secure architectures and long-term trade-offs.
• A proven track record of securing fast-paced, high-growth tech environments.
• A passion for securing user-centric products and contributing to their success.
• Perks & Benefits Flat Structure As we continue to grow fast, we strive to retain our culture where everyone is heard, contributes, and grows with the company..
• Work-life Harmony We believe that quality time outside of work is important to sustaining a healthy and happy lifestyle.
• Remote Work Hybrid-mode activated! It comes with the package: flexibility, focus and productivity!.
• Urban Office One breath from Phrom Phong BTS. No sweat whatsoever! The office should also feel like a second home so we dedicated a lot of care and resources into building the best environment for you to wake up to every morning.
• Fun Workshop The best relationships are built over new experiences, that s why we have workshops filled with a range of activities for you to look forward to and enjoy.
• Game Tournament It s getting fun and competitive! Challenge doesn t only have to come from work. Own the championship and show the peeps how great of a gamer (and player) you are.
• Group Insurance Health comes first, we know, don t worry, we ve got you covered.
• Health & Wellness Only a healthy army wins the war. We invest to take care of you from physical, mental and happiness-level. Adopted health & wellness applications plus activities to make sure everyone here is on cloud nine

Experience:

3 years required

Skills:

Compliance, Legal, Risk Management

Job type:

Full-time

• Develop data security policy review, data security policy exceptions, and control risk mitigation processes.
• Define the security controls for access management lifecycle (i.e., requirement for creation, deletion, transfer and review).
• Operate:Advice on technology relating to Data Privacy and Protection (i.e., PDPA) related security controls implementation.
• Drive and support data security controls such as Data Loss Prevention (DLP), Data Masking, Data Encryption capabilities to protect sensitive data.
• Drive compliance (or collaborate with compliance team) to organization security policies, standards, metrics, and legal requirements.
• Communicate and enforce security policies, rules, and standards.
• Conduct impact assessment of data initiatives from a security point of view.
• Ensure the cryptographic keys and related components are safety and protection of confidential information.
• Resolve data security audit and risk findings.
• Review and develop security controls to current access controls policies and procedures.
• Provide requirements for create and manage roles, access rights (includes privileged access), authentication and identity within the environment.
• Conduct periodic review of user access.
• Review, approve and monitor the usage of privileged access.
• EDUCATION.
• Bachelor s degree in computer science, Information Systems, or equivalent education or work experience.
• EXPERIENCE.
• Work experience in privacy, compliance, information security, auditing or a related field may also be an accepted alternative, according to Cybersecurity.
• Minimum 3 years of experience in and strong knowledge of privacy, data, operational risk management, information security, or related areas in IT.
• OTHER REQUIREMENTS.