Filter Jobs

Skills:

Project Management, Linux, UNIX, English

Job type:

Full-time

• Manage CCII (Cloud, Cyber Security, IOT, ICT) project for single and multi-tower solution for Property, Retail, Conglomerate, and international customer segments.
• Be a committee of AIS bid management for validating large projects at TCV > 10MB.
• Manage project stakeholders to meet expectation and requirement.
• Communicate project progress to stakeholders.
• Plan and manage project issue and risk with proper actions.
• Plan and manage project to meet project objective, within timeline, project budget, scope and give customer satisfied.
• Manage project resource both internal delivery and external suppliers.
• Bachelor's degree or higher in computer science, business, or a related field.
• 8-15 years of project management and related experience.
• Strong in communication and stakeholder management.
• Project Management Professional certification preferred.
• Proven ability to solve problems creatively.
• Strong familiarity with project management software tools, methodologies, and best practices.
• Experience seeing projects through the full life cycle.
• Excellent analytical skills.
• Strong interpersonal skills and extremely resourceful.
• Proven ability to complete projects according to outlined scope, budget, and timeline.
• Engineering Specialist (Cyber Security).
• Oversee the implementation of cyber security solutions and services to ensure customer satisfaction and security effectiveness.
• Plan and establish procedures and systems that enhance operational efficiency.
• Delegate tasks effectively to team members to achieve organizational objectives.
• Strategically allocate resources to optimize project outcomes.
• Monitor and support staff in their work progress to ensure timely delivery of services.
• Evaluate staff performance through regular assessments and feedback mechanisms.
• Foster professional development among team members to enhance their skills and capabilities.
• Drive productivity and maintain high quality standards within the division.
• Provide guidance and coaching to staff to support exceptional service delivery.
• Bachelor s degree in Computer Science, Information Technology, Cybersecurity, or a related field. Some positions may require a master s degree.
• Relevant work experience in cybersecurity roles, typically ranging from 3-7 years, depending on the seniority of the position. Hands-on experience with security technologies and methodologies is essential.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), CompTIA Security+, Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA) may be preferred or required.
• Proficiency in network security, firewalls, intrusion detection systems, and VPN.
• Knowledge of operating systems (Windows, Linux, UNIX) and databases.
• Experience with security protocols (SSL, IPsec, etc.) and encryption.
• Familiarity with security frameworks and standards (NIST, ISO 27001, etc.).
• Knowledge of Compliance: Understanding of regulatory requirements and compliance standards (e.g., GDPR, HIPAA, PCI-DSS).
• Ability to work both independently and collaboratively in a team environment.
• Strong attention to detail and the ability to prioritize tasks effectively.
• Engineering/IT Specialist (Cyber Security)
• Design/Implement Cyber Security project for Private Cloud and Global Cloud (AWS and MS Azure).
• Solution integration and migration.
• Control suppliers in the assigned project.
• Do project quality control.
• Do project risk assessment and management.
• Do project UAT with customer.
• Create final project document.
• Do customer project training (OJT).
• At least 4 years of Cyber Security experience.
• Bachelor s degree in Computer Engineering, Information Technology, Computer Science or related fields.
• Experience in installation and operation Security product e.g. Firewall, IPS, SIEM, NAC, Anti-Virus, Endpoint.
• Knowledge on network security and cloud technology.
• Knowledge of monitoring tools (What s up gold, Zabbix, Nagios).
• Has valid Security product Certification e.g. Fortinet NSE3-7, Palo Alto PCNSA, PCNSE, Cisco CCNA, CCNP Security.
• Experienced in ITIL framework.
• Senior Engineer (System Infrastructure)
• Implement Server, Storage, Virtualization, Backup system for Enterprise customer.
• Hypervisor and Operating system configuration and customization.
• Network and firewall integration for Cloud infrastructure.
• Hand-over completed solution to related team.
• At least 3 years experience on Server, Storage, VMware and Veeam delivery.
• Strong knowledge of Cloud environment and Operating system. (Windows and Linux).
• Basic skill of Database and Middleware installation.
• Strong organizational skills and ability to take on multiple assignments.
• Experienced firewall and cloud network implementation.
• Ability to occasionally work or assign work during nights/weekends during critical incidents per on-call rotation or major project implementations.
• Good command of English.
• VMware VCP or Linux certificate knowledge is an advantage.

Experience:

7 years required

Skills:

System Security, Windows Server, Linux

Job type:

Full-time

• Identify and evaluate areas for improvement in detection, prevention, and cyber incident response.
• Work closely with stakeholders to develop and follow up on remediation plans.
• Provide expert consultation on mitigating strategies and actionable remediation plans to asset owners.
• Collaborate with various teams to create, implement, and monitor effective remediation strategies.
• Apply knowledge of IT infrastructure, with experience as a system administrator or system engineer, to enhance cybersecurity measures.
• Utilize an understanding of offensive and defensive cybersecurity strategies (e.g., red and blue teams).
• Perform penetration testing or demonstrate a strong understanding of penetration testing methodologies to assess the security of IT systems.
• Use computer forensic tools to examine and analyze electronic media in suspected hacking cases.
• Conduct tasks related to malware analysis and reverse engineering to identify and mitigate threats.
• Define a course of action if a security problem exists and explain in detailed technical reports what occurred when an incident happens, including the reasons it occurred, and the response taken.
• Document incidents thoroughly, providing detailed technical reports that include the cause of the incident, and the response measures implemented.
• Build relationships with other entities responsible for conducting cyber threat analyses, ensuring effective collaboration and information sharing.
• Bachelor s degree / master s degree or higher in Computer Engineering, Information Technology, Computer science or related field.
• Proficiency with SIEM, UBA, and SOAR tools.
• Experience with system monitoring tools.
• Coding ability in C, C++, C#, Java, ASM, PERL, PHP, and PowerShell.
• Knowledge of backup and archiving techniques.
• Use of enterprise system monitoring tools.
• Understanding of cloud computing.
• Proficiency in UNIX.
• Knowledge of network communication (IP/TCP).
• Familiarity with computer hardware systems.
• Experience with web-based application security.
• Strong knowledge of Windows and Linux Operating Systems.
• Experience in identifying and evaluating cybersecurity risks and providing actionable insights.
• Previous experience as a penetration tester (pentester) is highly beneficial.
• Experience as a system administrator/system engineer is advantageous.
• Familiarity with computer forensic tools and techniques.
• Experience in malware analysis and reverse engineering.
• Ability to work well under pressure while handling multiple tasks.
• Remark: The Bank requires the verification of criminal records prior consideration for employment to ensure secured and maintain standards of the organization.

Experience:

3 years required

Skills:

System Security, Windows Server

Job type:

Full-time

• Provide input and security consultation in a project-based environment as well as assisting operational of IT Security components with functional security requirements.
• Evaluate new projects and applications as they relate to security architecture and design; audit existing deployments and analyse gaps against security practices and standards.
• Conduct application vulnerability assessment, secure code review, and security penetration testing for new projects, enhancement projects, and periodic assurance to com ...
• Implement and operate DevSecOps on projects/applications that use DevOps process.
• Track, enforce, and consult to resolution the closure of security risks including review plans and monitor progress or remedial actions according to security requirements, security design, application vulnerability, and penetration testing issues.
• Periodically review security requirements to align with Bank s policies and regulations.
• Support periodic security audits.
• Manage third parties involved in IT Security Advisory and Assurance.
• Bachelor's or Master s Degree in Computer Science, Engineering, Information Systems or equivalent.
• Minimum 3 years in IT Security Advisory, Security Assurance, Threat Hunting plus experience working in or closely with IT Application, Enterprise Architect, and IT Risk management.
• Knowledge of Security Framework and Concepts, Compliance, Risk and Regulations, PCI DSS, OWASP, COBIT.
• Experience in performing comprehensive and authoritative technical analysis of the security readiness and compliance of applications.
• The ability to oversee pentesting to find vulnerabilities in all elements of a security system, understand security vulnerabilities, secure code review and remediation.
• Data and information management, including classification, retention and destruction. It also means keeping corporate and personal data both private and secure while needed, and destroyed when it is no longer needed.
• Knowledge of all applicable laws and compliance frameworks to enforce compliance.
• Remark: The Bank requires the verification of criminal records prior consideration for employment to ensure secured and maintain standards of the organization.

Skills:

Research, Automation

Job type:

Full-time

• Lead the Cyber Security Incident Response (CSIR) team in day-to-day operations, managing complex incidents, and communicating progress to senior management.
• Ensure clear incident documentation and oversee the implementation and follow-up of realistic remediation plans.
• Detect and independently respond to security incidents across the organization.
• Assume the role of an Incident Manager during major security events.
• Collaborate with management to execute and iterate on the incident response process.
• Develop the threat-response matrix, incident-response playbook, and processes. Design and implement metrics for incident response, continually improving efficiency and effectiveness.
• Stay informed of emerging threats, security technologies, and relevant research for continuous improvement.
• Identify and mitigate complex security threats before exploitation.
• Implement and monitor security measures for infrastructure protection.
• Utilize log analysis platforms for security analytics and threat detection.
• Perform root cause analysis (RCA) and incident reviews.
• Mentor other members of the Security Incident Response Team.
• Help the team grow their skills and experience.
• Provide security recommendations to security architecture, issues, and features.
• Create a supportive environment for team members.
• Build strong partnerships with the other departments as a supporter of the cyber security incident response team. (CSIRT).
• Train team members to prioritize efforts and ensure alignment with company direction.
• Be a role model for positive thinking, and conflict resolution.
• Draft and successfully deliver on quarterly OKRs (Objectives and Key Results).
• Bachelor's degree or higher in Computer Engineering, Computer Science, IT, or related fields.
• A minimum of 5 years of working experience in Security Operations (SecOps), incident response, threat analysis, incident management, or relevant investigations during medium and large-scale security events.
• Robust understanding of security issues, mitigations, and a solid grasp of the current global threat landscape.
• Experience in security solutions, secure network design, firewalls, authentication, authorization systems, log analysis platforms, security incident response, monitoring, and intrusion detection.
• Profound knowledge of attacks, mitigation methods, and threat modeling.
• Experience in digital forensics, SOAR automation, and cloud providers like GCP, AWS, and Azure is advantageous.
• Strong written and verbal communication skills are required, including conducting presentations and creating security reports. Experience with executive-level communications is a plus.
• Substantial engineering mindset.
• Capability to build working relationships with key stakeholders.
• Capability to make concrete progress in the face of ambiguity and imperfect knowledge.
• Hold the certificate of CompTIA Security +, CompTIA CySA+, and others would be an added advantage.

Skills:

ISO 27001, English

Job type:

Full-time

• รับผิดชอบการ Monitoring ควบคุมและจัดการระบบพื้นฐานเกี่ยวกับ ไฟฟ้า และระบบปรับอากาศ ระบบเครือข่าย เพื่อสนับสนุนการจัดการ.
• ตอบสนองความต้องการของลูกค้า และประสานงาน การติดตั้งและการแก้ไขปัญหาระบบของผู้บริการ (vendor) เพื่อให้ถูกต้องและสมบูรณ์ตามหลักปฎิบัติ.
• ควบคุมและประสานงานการบำรุงรักษาและการซ่อมแซม (Preventive Maintenance) ระบบพื้นฐานต่างๆ เครื่องกำเนิดไฟฟ้า Generator, เครื่องสำรองไฟฟ้า UPS, ระบบตู้ไฟฟ้า, ระบบปรับอากาศ และการติดตั้งอุปกรณ์ระบบเครือข่าย (Network) เป็นต้น.
• เป็น 1st level support & troubleshooting ของระบบ Facility ใน Data Center เช่น ระบบ Network, ระบบไฟฟ้า, ระบบปรับอากาศ เป็นต้น.
• จัดทำกระบวนการปฎิบัติงาน และคู่มือการทำงานในการดูแลระบบพื้นฐาน โดยอิงตามมาตราฐาน ISO หรือมาตรฐานอื่นที่เกี่ยวข้องกับการปฏิบัติงาน (เช่น ISO 20000 ด้านบริการ, ISO 27001 ด้านความปลอดภัย,ISO 50001 ด้านบริหารพลังงาน และอื่นๆ เช่น ISO22301, PCIDSS, TCOS) รวมทั้งรูปแบบใบบันทึก, รายงานต่าง ๆ.
• สรุปและรายงานผลสำหรับปัญหาวิกฤติใด ๆ ต่อหัวหน้าทีม รวมทั้ง การจัดทำรายงานสถิติ,รายงานวิเคราะห์แบบรายวัน, รายเดือน รายไตรมาส ด้วย.
• Bachelor s degree in electrical power, mechanic or related fields.
• Thai nationality, Male, Age 20 - 25 years old.
• Have basic technical knowledge in Data Center facilities (Electrical/Mechanical).
• Able to work under pressure.
• Able to work with a team.
• Fair communication in English.

Experience:

3 years required

Skills:

English

Job type:

Full-time

• Responsible for planning preventive maintenance schedules for air condition & Fire protection systems.
• Responsible for coordinating and managing vendors and suppliers to preventive maintenance and payment plans.
• 2nd Level support to Data Center Operation (FOC), on site to solve Incident and Problem management.
• 2nd Level support to engineer team all site, Data Center (TT1, TT2, MTG, BNA).
• To create & update reports and documents to comply with ISO 20k, 22k, 27k, 50k & TCOS standards.
• Review PUE, cost saving energy and report.
• Measured Efficiency air system and record annual report.
• Responsible for implementation of Mechanical such as comfort air, precision air.
• Responsible for implementation of Fire suppression such as FM200, NOVEC, CO2, Fire Sprinkler, Fire Pump, Fire alarm, and Vesda.
• Working period office time 9:00 - 18:00 and able to standby on call or onsite to work on holiday.
• Bachelor degree of Engineering, Mechanical engineering or related field.
• At Least 3 years experience in maintenance air conditioning such as comfort air, precision air, chiller air cool, water cool, pump motor: implement and support for mechanics-air condition systems in buildings or Data Centers.
• At least 1 years experience in designing air conditioners such as comfort air, precision air, chiller air cool, water cool, pump motor: implement, and support for mechanics-air condition systems in building.
• Able to Air - Diagram and Psychrometric chart knowledge.
• Able to work as a team and work in and standby on call on holiday.
• Able to work overtime if required and a hotline arrives (Less than 1 hour on site from your home).
• Proficiency in English communication is beneficial.
• Work Location: TrueIDC - Bangna Site (KM26).

Skills:

Cloud Computing, SAP, Linux

Job type:

Full-time

• Acting as the key of Cloud technical aspect for the consulting team to provide the technical consulting to both internal and external customers.
• Design Cloud solution architecture in response to the client s requirement.
• Provide advisory consulting service to the client regarding the True IDC Consulting practices.
• Create Cloud technical requirements to the client s migration plan.
• Experience of designing and implementing comprehensive Cloud computing solutions on various Cloud technologies e.g. AWS, GCP.
• Experience in building multi-tier Service Oriented Architecture (SOA) applications.
• Experience in SAP Cloud Infrastructure in term of architecture & design in AWS, GCP public cloud.
• Knowledge of Linux, Windows, Apache, IIS, NoSQL operations as its architecture toth e Cloud.
• Knowledge of Containerization administrative for both Windows and Linux technologies.
• Knowledge of key concerns and how they are addressed in Cloud Computing such as security, performance and scalability.
• Good in customer objective handling & Good in customer presentation skill.
• Nice to have.
• UNIX shell scripting.
• AWS Certified Solution Architect - Associate.
• GCP Certified Solution Architect - Associate.

Experience:

4 years required

Skills:

Finance, Accounting, Business Development

Job type:

Full-time

• Act as internal consultant to support strategy development and lead execution of key strategic projects.
• Take ownership of new partnership development, identify, develop and execute plan to align with company strategy.
• Work with head of department to plan and allocate partnership budget across channels.
• Develops and maintains productive working relationships with team members.
• Tracking business performance and create monthly summary report.
• Bachelor s degree in finance, Accounting, Business, IT, Engineer or any related field.
• At least 4 years experience in Business development, Strategic Planning, Financial Planning or related field.
• Experience in consultancy companies Big4 is a plus.
• Customer orientation, self-driven, strong negotiation skills and excellent interpersonal.
• Creative problem solver.
• High proficiency with Microsoft Excel, PowerPoint, understanding of financial.
• report is a plus.
• Location: True Digital Park, Punnawithi.

Skills:

DevOps, Automation, Kubernetes

Job type:

Full-time

• Managing 7-8 Professional Service Engineers in responsible for AWS cloud solution architecting and implementation/migration according to the project requirements.
• Team resources management.
• Acting as the key of Cloud technical aspect for the consulting team to provide the technical of AWS cloud consulting to customers.
• Design AWS Cloud solution architecture in response to the client s requirement.
• Define the scope of work & estimate mandays for cloud implementation.
• Managing cloud project delivery to meet the customer requirements timeline.
• Support AWS, GCP cloud partner competency building e.g. AWS Certification and delivery professional service process and documentation.
• Speaker of AWS technical side for True IDC webinar, online event for CloudTalk.
• Key Driving for building team competency expansion to meet the competency roadmap yearly strategy e.g. DevOps, IaC, Automation, Kubernetes, App modernization on AWS cloud.
• Experience in leading cloud AWS implementation and delivery team.
• Experience of designing and implementing comprehensive Cloud computing solutions on various Cloud technologies for AWS, GCP is plus.
• Experience in infra as a code in cloud native (Cloud Formation) or other e.g. Terraform, Ansible implementation.
• Experience in building multi-tier Service Oriented Architecture (SOA) applications.
• Knowledge of Linux, Windows, Apache, IIS, NoSQL operations as its architecture to the Cloud.
• Knowledge of OS administrative for both Windows and UNIX technologies.
• Knowledge of key concerns and how they are addressed in Cloud Computing such as security, performance and scalability.
• Knowledge of Kubernetes, Containers and CI/CD, DevOps.
• Experience with RDBMS designing and implementing over the Cloud.
• Prior experience with application development on the various development solutions as Java,.Net, Python etc.
• Experience in,.Net and/or Spring Framework and RESTful web services.
• UNIX shell scripting.
• AWS Certified Solution Architect - Associate, Prefer Professional level.

Experience:

5 years required

Skills:

AutoCAD, Visio, English

Job type:

Full-time

• Responsible for planning preventive maintenance schedules for the electrical system.
• Responsible for coordinating and managing vendors and suppliers to preventive maintenance and payment plans.
• 2nd Level support to Data Center Operation (FOC), on site to solve Incident and Problem management.
• 2nd Level support to engineer team all site, Data Center (TT1, TT2, MTG, BNA).
• To create & update reports and documents to comply with ISO 20k, 22k, 27k, 50k & TCOS standards.
• Review PUE, cost saving energy and report.
• Measured Efficiency air system and record annual report.
• Responsible for implementing Electrical such as MU, TR, MDB, GEN, UPS, RECT, BATT, ATS.
• Bachelor degree of Engineering, Electrical engineering or related field.
• More than 5 years of experience in maintenance of electrical systems such as RMU, TR, MDB, GEN, UPS, RECT, BATT, ATS: implement and support electrical systems in buildings or Data Centers.
• At least 1 years experience in designing electrical systems (such as RMU, TR, MDB, GEN, UPS, RECT, BATT, ATS). implement, and support for electrical systems in building.
• Able to use the program AutoCAD, Visio.
• Able to work as a team and work in and standby on call on holiday.
• Able to work overtime if required and a hotline arrives (Less than 1 hour on site from your home).
• Proficiency in English communication is beneficial for both reading and writing.
• Work Location: TrueIDC - Bangna Site (KM26).

Experience:

4 years required

Skills:

Compliance, English

Job type:

Full-time

• Establish and maintain IT security standards and guidelines in compliance with the security regulations from regulators, and the security best practices, that governs new technology adoption.
• Advise business units and technology group on how to comply with IT security policy, standards, guidelines and best practices.
• Keep abreast of the knowledge in cybersecurity, new digital technology.
• Support on Cyber-drill program management and BCP coordinator across different Technology security units.
• Provide security awareness to the employee and service providers.
• Manage security supervision programs to track on non-compliance items to security policies, standards and guidelines.
• Inspecting and assessing the security of IT third parties that will access the organization s data or systems.
• Ensuring compliance with security requirements for IT third parties.
• Analyzing security risks and establishing preventive measures in case of incidents involving IT third parties.
• Qualification Bachelor s or Master degree in computer science, Computer Engineering, Information Technology, or related field.
• At least 4 years of experience in Information Security or a related field.
• Knowledge in new Banking Technology and associated security control is a plus.
• Relevant security certification is a plus, e.g. CISSP, CISM.
• Strong security advisory, analytical, and problem-solving skill.
• Good command in English.
• We're committed to bringing passion and customer focus to the business. If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us.

Skills:

Research, System Administration, Android

Job type:

Full-time

• Implements IT security improvements by assessing current situation; evaluating trends; anticipating requirements.
• Protects IT system by defining access privileges, control structures, and required resources.
• Process & analyze to gain insights on past IT areas on, current or potential attacks and threats that pose a risk to the organization.
• Primary point of contact with Internal Audit. Periodically review, update, implement and communicate changes to IT policies and procedures and General IT Controls. Facilitate internal and external audit processes by participating in scoping discussions and walk-throughs, delivering evidence that controls are operating as defined, remediating deficiencies, and acting on recommendations.
• Safeguards IT infrastructure and system as well as information system assets by identifying and solving potential and actual security problems.
• Research cyber security topics and promote Cyber security awareness throughout Thaioil.
• EDUCATION.
• Bachelor s degree in computer science, Information Systems, or equivalent education or work experience.
• EXPERIENCE.
• Relevant experience, especially in IT working environment.
• Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.
• Hands-on experience analyzing high volumes of logs, network data (e.g., Netflow, FPC), and other attack artifacts in support of incident investigations.
• Experience with vulnerability scanning solutions.
• Familiarity with Vulnerability Management program.
• Proficiency with any of the following: Anti-Virus, HIPS, ID/PS, Full Packet Capture, Host-Based Forensics, Network Forensics, and RSA Security.
• Have knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform.
• Understanding of mobile technology and OS (i.e., Android, iOS, Windows), VMware technology, and Unix and basic Unix commands.
• OTHER REQUIREMENTS.

Experience:

3 years required

Skills:

Compliance, Project Management, Business Development

Job type:

Full-time

• Design, Implement, and Optimize Secure Landing Zones: Lead the creation and enhancement of secure landing zones across multiple cloud service providers (CSPs) such as AWS, Azure, and Google Cloud for clients in Southeast Asia.
• DevSecOps Pipelines: Architect and implement DevSecOps pipelines, integrating security controls into CI/CD processes to automate security and compliance testing.
• Infrastructure as Code (IaC): Design and deploy infrastructure as code using tools like Terraform, AWS CloudFormation, and Azure Resource Manager (ARM) templates to aut ...
• High Availability Architectures: Implement multi-region and high availability architectures to meet performance, scalability, and disaster recovery requirements.
• Security Configurations: Configure Web Application Firewalls (WAFs), DDoS protection (e.g., AWS Shield, Azure DDoS Protection), and network firewalls (e.g., AWS Network Firewall, Azure Firewall).
• Access Control: Implement role-based access control (RBAC), least privilege principles, and multi-factor authentication (MFA) across cloud environments.
• Cloud-Native Security Expertise: Provide subject matter expertise in cloud-native security technologies, including identity and access management (IAM), encryption, security monitoring, and vulnerability management.
• Project Management and Leadership: Ensure the successful delivery of cloud security solutions through strong project management and leadership.
• Business Development: Assist in business development efforts, including proposal creation and identifying opportunities to grow cloud security service offerings.
• Client Relationships: Build and nurture positive working relationships with clients, aiming to exceed their expectations.
• Engagement Profitability: Identify opportunities to improve engagement profitability.
• Mentorship: Mentor and develop junior staff, promoting knowledge sharing and skills development within the team.
• Your role as a leader At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We connect our purpose and shared values to identify issues as well as to make an impact that matters to our clients, people and the communities. Additionally, Assistant Managers across our Firm are expected toDevelop diverse, high-performing people and teams through new and meaningful development opportunities.
• Collaborate effectively to build productive relationships and networks.
• Understand and lead the execution of key objectives and priorities for internal as well as external stakeholders.
• Influence stakeholders, teams, and individuals positively - leading by example and providing equal opportunities for our people to grow, develop and succeed.
• Deliver superior value and high-quality results to stakeholders while driving high performance from people across Deloitte.
• Apply their understanding of disruptive trends and competitor activity to recommend changes, in line with leading practices.
• Enough about us, let's talk about you.3+ years of experience in cloud security implementations across multiple CSPs (AWS, Azure, GCP).
• Extensive hands-on experience in designing and implementing Security Landing Zones, cloud security architectures, and securing hybrid/multi-cloud environments.
• Relevant certifications such as AWS Certified Security - Specialty, Microsoft Certified: Azure Security Engineer, Google Cloud Professional Cloud Security Engineer, or CISSP, CCSP are highly desirable.
• Proven experience managing cloud security projects, including landing zone implementations and security automation.
• Expertise in cloud-native security controls, including IAM, key management, network security, and security monitoring tools (e.g., AWS Security Hub, Azure Security Center).
• Strong knowledge of compliance frameworks such as NIST,CSA CCM, and CIS Benchmarks and how to apply them to cloud security implementations.
• Ability to travel 25-50%, on average, based on the work you do and the clients and industries/sectors you serve.
• Bachelor s degree in Computer Science, Information Security, or a related field; Master s degree preferred.
• Limited immigration sponsorship may be available.
• Excellent problem-solving skills and proven ability to lead a team of engineers.
• Ability to optimally communicate and advocate key security requirements to senior stakeholders.
• Strong critical-thinking and problem-solving skills with clear communication.
• Due to volume of applications, we regret that only shortlisted candidates will be notified.
• Please note that Deloitte will never reach out to you directly via messaging platforms to offer you employment opportunities or request for money or your personal information. Kindly apply for roles that you are interested in via this official Deloitte website. #LI-AA1 Requisition ID: 106369In Thailand, the services are provided by Deloitte Touche Tohmatsu Jaiyos Co., Ltd. and other related entities in Thailand ("Deloitte in Thailand"), which are affiliates of Deloitte Southeast Asia Ltd. Deloitte Southeast Asia Ltd is a member firm of Deloitte Touche Tohmatsu Limited. Deloitte in Thailand, which is within the Deloitte Network, is the entity that is providing this Website.

Skills:

Compliance, Legal, English

Job type:

Full-time

• Driving PSMS (physical security management system) at local level within the framework of C/AUP governance (incl. Site Security Concept process & consulting of local management).
• Monitoring of adequate implementation of local risk mitigation measures (incl. security services delivered by GR/SES).
• Conducting security investigations at local level & support internal investigations (Compliance) on request.
• Implementing security awareness promotion activities along with other security stakeholders at site (e.g. DSO, GR).
• At Regional Level.
• Implementation/monitoring of the C/AUP regulatory framework in the region based on legal conditions.
• Serve as the primary contact point for physical security governance requirements for responsible region.
• Driving the regional int./ext. security network. Raise PSMS awareness among regional managers and employees.
• Support the continuous improvement process and share best practices within the worldwide security organization.
• Qualifications Bachelor s degree in related fields.
• 5-8 years' experience in an industrial/manufacturing company security or facilities experience are preferred.
• Excellent communication and presentation skills; demonstrated ability to interact with all levels of management with excellent analytical skills.
• Work independently and control own work priorities.
• Highly knowledgeable in all aspects of risk analysis.
• General knowledge of systems capability for security systems.
• Basic knowledge of investigation techniques and methods.
• A good understanding of risk and security issues facing office organization in Thailand.
• Good spoken and written English and Thai.
• Able to travel to Rayong province for work assignments as required.
• Additional InformationBy choice, we are committed to a diverse workforce and are an equal opportunity employer. Robert Bosch welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in the selection process.

Skills:

Linux, Good Communication Skills, English

Job type:

Full-time

• Conduct advanced penetration tests to identify vulnerabilities in computer systems, networks, and applications.
• Perform vulnerability assessments and security audits to evaluate the effectiveness of existing security measures.
• Develop and execute simulated cyber-attacks to assess the organization s readiness to defend against real-world threats.
• Employ various attack methodologies to test the resilience of systems against hacking attempts and security breaches.
• Perform threat modeling to anticipate potential attack vectors.
• Analyze risks associated with identified vulnerabilities and recommend appropriate mitigation strategies.
• Develop custom tools and scripts to automate penetration testing and exploit known vulnerabilities.
• Keep up to date with the latest exploitation techniques and security tools.
• Prepare detailed reports on findings from penetration tests and security assessments.
• Document and present risks and vulnerabilities to relevant stakeholders, along with recommended countermeasures.
• Collaborate with the Blue Team to enhance the organization s defensive strategies based on offensive findings.
• Share insights and knowledge on emerging threats and attack techniques with the cybersecurity team to continually improve defensive measures.
• Bachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 10 years of experience in penetration testing and vulnerability assessments or related roles.
• Strong knowledge of network and application security, ethical hacking, and cybersecurity principles.
• Familiarity with penetration testing tools (e.g., Metasploit, Burp Suite, Kali Linux).
• Excellent problem-solving skills and ability to think like an adversary.
• Good communication skills for effective reporting and stakeholder engagement.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, etc.
• Professional Certificated related to work e.g. (CISSP, OSCP, OSWE) is desirable.
• Location: True Digital Park, Punnawithi.

Experience:

5 years required

Skills:

Research, ISO 27001, Enthusiastic, English

Job type:

Full-time

• Collect and analyze threat intelligence reports covering new threats, vulnerabilities, products.
• Conduct technical and operational threat intelligence research, both independently and as part of a wider team.
• Identify emerging threats, techniques and trends, the means of protecting or defending against them, and articulate these in a range of report formats to relevant stakeholders.
• Conduct deep-level analysis of malware, including how it is developed, functions, and employed.
• Support the Consulting and Managed CTI teams, Vulnerability Management, Incident Response and CSOC team with up-to-date technical intelligence, detection logic and situational awareness on current and emerging threats.
• Support Cybersecurity Posture Management to guarantee that a good cybersecurity posture is consistently maintained at an acceptable level. Liaison with external audit, internal audit, financial crime and associated consultants, and the group firm.
• Assist technology security team leaders/others in responding to cybersecurity incidents that have an impact on cybersecurity posture, in order to guarantee quick reaction, tracking, and proper maintenance.
• Assist in R&D and innovation on cybersecurity technology and approaches for continuous cybersecurity uplift.
• Qualifications Bachelor s or Master degree in computer science, Computer Engineering, Information Technology, or related field.
• At least 5 years of experience in Information Security or a related field.
• Knowledge of security technology e.g. WAF, SIEM, EDR, IAM, CSOC and Vulnerability Management.
• Experience in cloud cybersecurity technologies and services.
• Exposure to malware reverse engineering, network intrusion analysis, host intrusion analysis, log analysis, vulnerability research or digital forensics is preferred.
• Strong understanding of industry best practices and standards, including ISO 27001, NIST, and CIS is preferred.
• Relevant certifications such as CISSP, CISM, or CISA are a plus.
• Excellent communication and problem-analytical skills, with the ability to communicate complex security issues to non-technical stakeholders.
• Effective English for verbal, written communication.
• Enthusiastic, thriving, good interpersonal skills.
• We're committed to bringing passion and customer focus to the business. If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us.

Experience:

7 years required

Skills:

English

Job type:

Full-time

• Encourage everyone to have a voice and invite opinion from all, including quieter members of the team.
• Deal effectively with ambiguous and unstructured problems and situations.
• Initiate open and candid coaching conversations at all levels.
• Move easily between big picture thinking and managing relevant detail.
• Anticipate stakeholder needs, and develop and discuss potential solutions, even before the stakeholder realises they are required.
• Contribute technical knowledge in area of specialism.
• Contribute to an environment where people and technology thrive together to accomplish more than they could apart.
• Navigate the complexities of cross-border and/or diverse teams and engagements.
• Initiate and lead open conversations with teams, clients and stakeholders to build trust.
• Uphold the firm's code of ethics and business conduct.
• Preferred skills.
• Security Operation Center (SOC).
• Minimum years experience required.
• 7 years of experiences and above.
• Additional application instructions.
• Good communication in english.
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified).
• Required Skills.
• Optional Skills.
• Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Coaching and Feedback, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Influence, Intellectual Curiosity, Learning Agility, Managed Services, Optimism, Privacy Compliance {+ 16 more}Desired Languages (If blank, desired languages not specified).
• Travel Requirements.
• Not Specified
• Available for Work Visa Sponsorship?.
• Yes
• Government Clearance Required?.
• No
• Job Posting End Date.
• April 30, 2025

Experience:

5 years required

Skills:

Problem Solving, English

Job type:

Full-time

• Design, implement and maintain the IT Security of the organization which involves developing and executing security strategies, standards and procedures to protect IT assets from cyber threats and vulnerabilities.
• Develops solution conceptual designs and solution blueprints for IT projects.
• Design security architecture elements to mitigate emerging threats.
• Reviewing security measures and recommending to implementing enhancements.
• Review and advise security solution architect for the proposed system such as: Network Segmentation, Application protection, Defense-in-depth, Remote Access, Encryption Technologies.
• Conducting security advisory consultancy and working with RED and BLUE team for security testing along the pipeline of the system delivery.
• Bachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 5 years of experience of IT Security Advisory, Penetration tester or Enterprise Architect or related role.
• Comprehensive understanding of the IT Security Concept, Security Architect, Risk assessment.
• Ability to analyst finding form Offensive and Defensive Security team.
• Ability to analyze end-to-end security processes and provide advice in order to reduce risk to acceptable levels.
• Strong analytical and problem solving.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, and etc.
• Professional Certificated related to work e.g. (CISSP, CSSLP, CDPSE, OSCP, TOGAF) is desirable.
• Location: True Digital Park, Punnawithi.

Experience:

3 years required

Skills:

Industry trends

Job type:

Full-time

• Risk Assessment & Analysis: Conduct comprehensive assessments of clients OT environments to identify vulnerabilities and recommend mitigation strategies.
• Security Strategy Development: Design and implement tailored OT security frameworks and policies in alignment with industry standards (NIST, ISA/IEC 62443, etc.).
• Stakeholder Engagement: Collaborate with cross-functional teams, including IT, operations, and management, to foster a culture of security awareness and resilience.
• Training & Mentorship: Provide training and mentorship to junior consultants and client teams on OT security best practices and emerging threats.
• Thought Leadership: Stay abreast of industry trends, emerging technologies, and regulatory changes; contribute to white papers, presentations, and client workshops.
• Your role as a leader
• At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We expect our people to embrace and live our purpose and shared values, challenging themselves everyday to identify issues that are most important to our clients, our people and the communities, and to make an impact that matters. In addition to living our purpose, Senior Consultants across our firm are expected to:Understand objectives for stakeholders, clients and Deloitte whilst aligning own performance to objectives and sets personal priorities.
• Develop themselves by actively seeking opportunities for growth, shares knowledge and experiences with others, and acts as a strong brand ambassador.
• Seek opportunities to challenge themselves, collaborate with others to deliver and takes accountability for results.
• Build relationships and communicates effectively in order to positively influence peers and stakeholders.
• Work effectively in diverse teams within a highly inclusive team culture where everyone is supported, respected and recognized for their contribution.
• Enough about us, let's talk about youBachelor s degree in Cybersecurity, Information Technology, Engineering, or a related field; a Master s degree is a plus.
• At least 3 years of experience in cybersecurity, with a focus on operational technology and industrial control systems (ICS).
• Relevant certifications such as CISSP, CISM or GICSP,.
• Deep understanding of relevant standards and guidelines.
• Proficiency in network security, vulnerability assessment tools, and incident response methodologies specific to OT environments.
• Strong knowledge of industrial control systems, SCADA systems, and PLCs.
• Experience with network segmentation, access control, and secure communication protocols.
• Exceptional verbal and written communication skills, with the ability to articulate complex concepts to technical and non-technical stakeholders alike.
• Strong analytical and problem-solving skills, with a proactive approach to identifying and addressing potential security issues.
• Due to volume of applications, we regret that only shortlisted candidates will be notified.
• Please note that Deloitte will never reach out to you directly via messaging platforms to offer you employment opportunities or request for money or your personal information. Kindly apply for roles that you are interested in via this official Deloitte website. #LI-AA1 Requisition ID: 106367In Thailand, the services are provided by Deloitte Touche Tohmatsu Jaiyos Co., Ltd. and other related entities in Thailand ("Deloitte in Thailand"), which are affiliates of Deloitte Southeast Asia Ltd. Deloitte Southeast Asia Ltd is a member firm of Deloitte Touche Tohmatsu Limited. Deloitte in Thailand, which is within the Deloitte Network, is the entity that is providing this Website.

Experience:

1 year required

Skills:

Risk Management, Compliance, English

Job type:

Full-time

• Invite and provide evidence-based feedback in a timely and constructive manner.
• Share and collaborate effectively with others.
• Work with existing processes/systems whilst making constructive suggestions for improvements.
• Validate data and analysis for accuracy and relevance.
• Follow risk management and compliance procedures.
• Keep up-to-date with technical developments for business area.
• Communicate confidently in a clear, concise and articulate manner - verbally and in written form.
• Seek opportunities to learn about other cultures and other parts of the business across the Network of PwC firms.
• Uphold the firm's code of ethics and business conduct.
• Preferred skills.
• Penetration Tester (Manual & Automate).
• Minimum years experience required.
• Over 1 years of Experience in related fields.
• Additional application instructions.
• Good Communication in English.
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified).
• Required Skills.
• Optional Skills.
• Desired Languages (If blank, desired languages not specified).
• Travel Requirements.
• Not Specified
• Available for Work Visa Sponsorship?.
• Yes
• Government Clearance Required?.
• No
• Job Posting End Date.
• April 30, 2025