Filter Jobs

Experience:

3 years required

Skills:

Industry trends

Job type:

Full-time

• Risk Assessment & Analysis: Conduct comprehensive assessments of clients OT environments to identify vulnerabilities and recommend mitigation strategies.
• Security Strategy Development: Design and implement tailored OT security frameworks and policies in alignment with industry standards (NIST, ISA/IEC 62443, etc.).
• Stakeholder Engagement: Collaborate with cross-functional teams, including IT, operations, and management, to foster a culture of security awareness and resilience.
• Training & Mentorship: Provide training and mentorship to junior consultants and client teams on OT security best practices and emerging threats.
• Thought Leadership: Stay abreast of industry trends, emerging technologies, and regulatory changes; contribute to white papers, presentations, and client workshops.
• Your role as a leader
• At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We expect our people to embrace and live our purpose and shared values, challenging themselves everyday to identify issues that are most important to our clients, our people and the communities, and to make an impact that matters. In addition to living our purpose, Senior Consultants across our firm are expected to:Understand objectives for stakeholders, clients and Deloitte whilst aligning own performance to objectives and sets personal priorities.
• Develop themselves by actively seeking opportunities for growth, shares knowledge and experiences with others, and acts as a strong brand ambassador.
• Seek opportunities to challenge themselves, collaborate with others to deliver and takes accountability for results.
• Build relationships and communicates effectively in order to positively influence peers and stakeholders.
• Work effectively in diverse teams within a highly inclusive team culture where everyone is supported, respected and recognized for their contribution.
• Enough about us, let's talk about youBachelor s degree in Cybersecurity, Information Technology, Engineering, or a related field; a Master s degree is a plus.
• At least 3 years of experience in cybersecurity, with a focus on operational technology and industrial control systems (ICS).
• Relevant certifications such as CISSP, CISM or GICSP,.
• Deep understanding of relevant standards and guidelines.
• Proficiency in network security, vulnerability assessment tools, and incident response methodologies specific to OT environments.
• Strong knowledge of industrial control systems, SCADA systems, and PLCs.
• Experience with network segmentation, access control, and secure communication protocols.
• Exceptional verbal and written communication skills, with the ability to articulate complex concepts to technical and non-technical stakeholders alike.
• Strong analytical and problem-solving skills, with a proactive approach to identifying and addressing potential security issues.
• Due to volume of applications, we regret that only shortlisted candidates will be notified.
• Please note that Deloitte will never reach out to you directly via messaging platforms to offer you employment opportunities or request for money or your personal information. Kindly apply for roles that you are interested in via this official Deloitte website. #LI-AA1 Requisition ID: 106367In Thailand, the services are provided by Deloitte Touche Tohmatsu Jaiyos Co., Ltd. and other related entities in Thailand ("Deloitte in Thailand"), which are affiliates of Deloitte Southeast Asia Ltd. Deloitte Southeast Asia Ltd is a member firm of Deloitte Touche Tohmatsu Limited. Deloitte in Thailand, which is within the Deloitte Network, is the entity that is providing this Website.

Skills:

Research, Automation

Job type:

Full-time

• Lead the Cyber Security Incident Response (CSIR) team in day-to-day operations, managing complex incidents, and communicating progress to senior management.
• Ensure clear incident documentation and oversee the implementation and follow-up of realistic remediation plans.
• Detect and independently respond to security incidents across the organization.
• Assume the role of an Incident Manager during major security events.
• Collaborate with management to execute and iterate on the incident response process.
• Develop the threat-response matrix, incident-response playbook, and processes. Design and implement metrics for incident response, continually improving efficiency and effectiveness.
• Stay informed of emerging threats, security technologies, and relevant research for continuous improvement.
• Identify and mitigate complex security threats before exploitation.
• Implement and monitor security measures for infrastructure protection.
• Utilize log analysis platforms for security analytics and threat detection.
• Perform root cause analysis (RCA) and incident reviews.
• Mentor other members of the Security Incident Response Team.
• Help the team grow their skills and experience.
• Provide security recommendations to security architecture, issues, and features.
• Create a supportive environment for team members.
• Build strong partnerships with the other departments as a supporter of the cyber security incident response team. (CSIRT).
• Train team members to prioritize efforts and ensure alignment with company direction.
• Be a role model for positive thinking, and conflict resolution.
• Draft and successfully deliver on quarterly OKRs (Objectives and Key Results).
• Bachelor's degree or higher in Computer Engineering, Computer Science, IT, or related fields.
• A minimum of 5 years of working experience in Security Operations (SecOps), incident response, threat analysis, incident management, or relevant investigations during medium and large-scale security events.
• Robust understanding of security issues, mitigations, and a solid grasp of the current global threat landscape.
• Experience in security solutions, secure network design, firewalls, authentication, authorization systems, log analysis platforms, security incident response, monitoring, and intrusion detection.
• Profound knowledge of attacks, mitigation methods, and threat modeling.
• Experience in digital forensics, SOAR automation, and cloud providers like GCP, AWS, and Azure is advantageous.
• Strong written and verbal communication skills are required, including conducting presentations and creating security reports. Experience with executive-level communications is a plus.
• Substantial engineering mindset.
• Capability to build working relationships with key stakeholders.
• Capability to make concrete progress in the face of ambiguity and imperfect knowledge.
• Hold the certificate of CompTIA Security +, CompTIA CySA+, and others would be an added advantage.

Skills:

Compliance, Assurance, Project Management

Job type:

Full-time

• Define the goal of IT risk and develop activities and action plans to achieve this goal.
• Builds strong relationships and interacts with the board and senior management.
• Possess leadership presence to promote risk culture, train and motivate staff to adopt new risk management practices.
• Ensure the organization s compliance with all relevant laws, regulations, and guidelines from a risk management perspective.
• Coordinate and Conduct regular technology risk assessments with the business team.
• For identified risk, risk mitigating controls, and produce reports to the board, committees, and senior management. Follow up with risk mitigation plan with risk owner.
• Conduct independent risk and scenario analysis from adopting new services, products, and partnerships.
• Perform assurance activities and discover opportunities to improve business operations. Present results to senior management and the board of directors.
• Develop and monitor key risk indicators (KRIs) to determine their effectiveness and for ongoing improvement.
• Advise the risk owner on any risks they would encounter and suggest courses of action to address these risks.
• Investigate loss events, report findings to management, and follow up on mitigating controls. For major incidents, prepare a report for submission to the committee.
• A bachelor s or master s degree in Risk Management, Information Technology, Business Administration, or a related field.
• 7-10+ years of experience in audit and risk management, specifically in financial services, e-payment, or technology sectors.
• In-depth knowledge of risk management frameworks, principles, and methodologies.
• Comprehensive understanding of audit procedures, control evaluation, and regulatory compliance.
• Strong skills in analysis, problem-solving, and project management.
• Excellent communication and interpersonal abilities, with a proven track record of leading teams and engaging senior stakeholders.
• Ability to effectively translate technical issues into business risks for clear communication with non-technical audiences.
• Enjoy working in a fast-paced environment, highly adaptive, and using a flexible approach to get things done.
• Eager to learn about the blockchain, web3, and cryptocurrency business.

Experience:

3 years required

Skills:

Compliance, Project Management, Business Development

Job type:

Full-time

• Design, Implement, and Optimize Secure Landing Zones: Lead the creation and enhancement of secure landing zones across multiple cloud service providers (CSPs) such as AWS, Azure, and Google Cloud for clients in Southeast Asia.
• DevSecOps Pipelines: Architect and implement DevSecOps pipelines, integrating security controls into CI/CD processes to automate security and compliance testing.
• Infrastructure as Code (IaC): Design and deploy infrastructure as code using tools like Terraform, AWS CloudFormation, and Azure Resource Manager (ARM) templates to aut ...
• High Availability Architectures: Implement multi-region and high availability architectures to meet performance, scalability, and disaster recovery requirements.
• Security Configurations: Configure Web Application Firewalls (WAFs), DDoS protection (e.g., AWS Shield, Azure DDoS Protection), and network firewalls (e.g., AWS Network Firewall, Azure Firewall).
• Access Control: Implement role-based access control (RBAC), least privilege principles, and multi-factor authentication (MFA) across cloud environments.
• Cloud-Native Security Expertise: Provide subject matter expertise in cloud-native security technologies, including identity and access management (IAM), encryption, security monitoring, and vulnerability management.
• Project Management and Leadership: Ensure the successful delivery of cloud security solutions through strong project management and leadership.
• Business Development: Assist in business development efforts, including proposal creation and identifying opportunities to grow cloud security service offerings.
• Client Relationships: Build and nurture positive working relationships with clients, aiming to exceed their expectations.
• Engagement Profitability: Identify opportunities to improve engagement profitability.
• Mentorship: Mentor and develop junior staff, promoting knowledge sharing and skills development within the team.
• Your role as a leader At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We connect our purpose and shared values to identify issues as well as to make an impact that matters to our clients, people and the communities. Additionally, Assistant Managers across our Firm are expected toDevelop diverse, high-performing people and teams through new and meaningful development opportunities.
• Collaborate effectively to build productive relationships and networks.
• Understand and lead the execution of key objectives and priorities for internal as well as external stakeholders.
• Influence stakeholders, teams, and individuals positively - leading by example and providing equal opportunities for our people to grow, develop and succeed.
• Deliver superior value and high-quality results to stakeholders while driving high performance from people across Deloitte.
• Apply their understanding of disruptive trends and competitor activity to recommend changes, in line with leading practices.
• Enough about us, let's talk about you.3+ years of experience in cloud security implementations across multiple CSPs (AWS, Azure, GCP).
• Extensive hands-on experience in designing and implementing Security Landing Zones, cloud security architectures, and securing hybrid/multi-cloud environments.
• Relevant certifications such as AWS Certified Security - Specialty, Microsoft Certified: Azure Security Engineer, Google Cloud Professional Cloud Security Engineer, or CISSP, CCSP are highly desirable.
• Proven experience managing cloud security projects, including landing zone implementations and security automation.
• Expertise in cloud-native security controls, including IAM, key management, network security, and security monitoring tools (e.g., AWS Security Hub, Azure Security Center).
• Strong knowledge of compliance frameworks such as NIST,CSA CCM, and CIS Benchmarks and how to apply them to cloud security implementations.
• Ability to travel 25-50%, on average, based on the work you do and the clients and industries/sectors you serve.
• Bachelor s degree in Computer Science, Information Security, or a related field; Master s degree preferred.
• Limited immigration sponsorship may be available.
• Excellent problem-solving skills and proven ability to lead a team of engineers.
• Ability to optimally communicate and advocate key security requirements to senior stakeholders.
• Strong critical-thinking and problem-solving skills with clear communication.
• Due to volume of applications, we regret that only shortlisted candidates will be notified.
• Please note that Deloitte will never reach out to you directly via messaging platforms to offer you employment opportunities or request for money or your personal information. Kindly apply for roles that you are interested in via this official Deloitte website. #LI-AA1 Requisition ID: 106369In Thailand, the services are provided by Deloitte Touche Tohmatsu Jaiyos Co., Ltd. and other related entities in Thailand ("Deloitte in Thailand"), which are affiliates of Deloitte Southeast Asia Ltd. Deloitte Southeast Asia Ltd is a member firm of Deloitte Touche Tohmatsu Limited. Deloitte in Thailand, which is within the Deloitte Network, is the entity that is providing this Website.

Experience:

3 years required

Skills:

System Security, Windows Server

Job type:

Full-time

• Provide input and security consultation in a project-based environment as well as assisting operational of IT Security components with functional security requirements.
• Evaluate new projects and applications as they relate to security architecture and design; audit existing deployments and analyse gaps against security practices and standards.
• Conduct application vulnerability assessment, secure code review, and security penetration testing for new projects, enhancement projects, and periodic assurance to com ...
• Implement and operate DevSecOps on projects/applications that use DevOps process.
• Track, enforce, and consult to resolution the closure of security risks including review plans and monitor progress or remedial actions according to security requirements, security design, application vulnerability, and penetration testing issues.
• Periodically review security requirements to align with Bank s policies and regulations.
• Support periodic security audits.
• Manage third parties involved in IT Security Advisory and Assurance.
• Bachelor's or Master s Degree in Computer Science, Engineering, Information Systems or equivalent.
• Minimum 3 years in IT Security Advisory, Security Assurance, Threat Hunting plus experience working in or closely with IT Application, Enterprise Architect, and IT Risk management.
• Knowledge of Security Framework and Concepts, Compliance, Risk and Regulations, PCI DSS, OWASP, COBIT.
• Experience in performing comprehensive and authoritative technical analysis of the security readiness and compliance of applications.
• The ability to oversee pentesting to find vulnerabilities in all elements of a security system, understand security vulnerabilities, secure code review and remediation.
• Data and information management, including classification, retention and destruction. It also means keeping corporate and personal data both private and secure while needed, and destroyed when it is no longer needed.
• Knowledge of all applicable laws and compliance frameworks to enforce compliance.
• Remark: The Bank requires the verification of criminal records prior consideration for employment to ensure secured and maintain standards of the organization.

Skills:

Project Management, Linux, UNIX, English

Job type:

Full-time

• Manage CCII (Cloud, Cyber Security, IOT, ICT) project for single and multi-tower solution for Property, Retail, Conglomerate, and international customer segments.
• Be a committee of AIS bid management for validating large projects at TCV > 10MB.
• Manage project stakeholders to meet expectation and requirement.
• Communicate project progress to stakeholders.
• Plan and manage project issue and risk with proper actions.
• Plan and manage project to meet project objective, within timeline, project budget, scope and give customer satisfied.
• Manage project resource both internal delivery and external suppliers.
• Bachelor's degree or higher in computer science, business, or a related field.
• 8-15 years of project management and related experience.
• Strong in communication and stakeholder management.
• Project Management Professional certification preferred.
• Proven ability to solve problems creatively.
• Strong familiarity with project management software tools, methodologies, and best practices.
• Experience seeing projects through the full life cycle.
• Excellent analytical skills.
• Strong interpersonal skills and extremely resourceful.
• Proven ability to complete projects according to outlined scope, budget, and timeline.
• Engineering Specialist (Cyber Security).
• Oversee the implementation of cyber security solutions and services to ensure customer satisfaction and security effectiveness.
• Plan and establish procedures and systems that enhance operational efficiency.
• Delegate tasks effectively to team members to achieve organizational objectives.
• Strategically allocate resources to optimize project outcomes.
• Monitor and support staff in their work progress to ensure timely delivery of services.
• Evaluate staff performance through regular assessments and feedback mechanisms.
• Foster professional development among team members to enhance their skills and capabilities.
• Drive productivity and maintain high quality standards within the division.
• Provide guidance and coaching to staff to support exceptional service delivery.
• Bachelor s degree in Computer Science, Information Technology, Cybersecurity, or a related field. Some positions may require a master s degree.
• Relevant work experience in cybersecurity roles, typically ranging from 3-7 years, depending on the seniority of the position. Hands-on experience with security technologies and methodologies is essential.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), CompTIA Security+, Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA) may be preferred or required.
• Proficiency in network security, firewalls, intrusion detection systems, and VPN.
• Knowledge of operating systems (Windows, Linux, UNIX) and databases.
• Experience with security protocols (SSL, IPsec, etc.) and encryption.
• Familiarity with security frameworks and standards (NIST, ISO 27001, etc.).
• Knowledge of Compliance: Understanding of regulatory requirements and compliance standards (e.g., GDPR, HIPAA, PCI-DSS).
• Ability to work both independently and collaboratively in a team environment.
• Strong attention to detail and the ability to prioritize tasks effectively.
• Engineering/IT Specialist (Cyber Security)
• Design/Implement Cyber Security project for Private Cloud and Global Cloud (AWS and MS Azure).
• Solution integration and migration.
• Control suppliers in the assigned project.
• Do project quality control.
• Do project risk assessment and management.
• Do project UAT with customer.
• Create final project document.
• Do customer project training (OJT).
• At least 4 years of Cyber Security experience.
• Bachelor s degree in Computer Engineering, Information Technology, Computer Science or related fields.
• Experience in installation and operation Security product e.g. Firewall, IPS, SIEM, NAC, Anti-Virus, Endpoint.
• Knowledge on network security and cloud technology.
• Knowledge of monitoring tools (What s up gold, Zabbix, Nagios).
• Has valid Security product Certification e.g. Fortinet NSE3-7, Palo Alto PCNSA, PCNSE, Cisco CCNA, CCNP Security.
• Experienced in ITIL framework.
• Senior Engineer (System Infrastructure)
• Implement Server, Storage, Virtualization, Backup system for Enterprise customer.
• Hypervisor and Operating system configuration and customization.
• Network and firewall integration for Cloud infrastructure.
• Hand-over completed solution to related team.
• At least 3 years experience on Server, Storage, VMware and Veeam delivery.
• Strong knowledge of Cloud environment and Operating system. (Windows and Linux).
• Basic skill of Database and Middleware installation.
• Strong organizational skills and ability to take on multiple assignments.
• Experienced firewall and cloud network implementation.
• Ability to occasionally work or assign work during nights/weekends during critical incidents per on-call rotation or major project implementations.
• Good command of English.
• VMware VCP or Linux certificate knowledge is an advantage.

Skills:

Risk Management, English

Job type:

Full-time

• Plan and support internal audit strategies in Cyber Security part (Cyber Security is the practice of defending computers, servers, mobile devices, electronic systems, networks, and data from malicious attacks).
• Lead a Cyber Security Audit team to ensure output through implementation of work standards and report to top management.
• Identify potential Cyber Security Risk and convince others in the organization to accept complete proposals and recommendation.
• Master s degree in Computer Engineering, Computer Science, Information Technology.
• Experience At least 7 years such as Information Security Management, Information Risk Management, IT Audit Management, ICT Security, Cloud Security, or in a related field.
• Professional certificates of CISA (Certified Information Systems Auditor), CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager) are advantage.
• Background in technical knowledge of Cyber Security Audit.
• Good command in English.

Experience:

7 years required

Skills:

English

Job type:

Full-time

• Encourage everyone to have a voice and invite opinion from all, including quieter members of the team.
• Deal effectively with ambiguous and unstructured problems and situations.
• Initiate open and candid coaching conversations at all levels.
• Move easily between big picture thinking and managing relevant detail.
• Anticipate stakeholder needs, and develop and discuss potential solutions, even before the stakeholder realises they are required.
• Contribute technical knowledge in area of specialism.
• Contribute to an environment where people and technology thrive together to accomplish more than they could apart.
• Navigate the complexities of cross-border and/or diverse teams and engagements.
• Initiate and lead open conversations with teams, clients and stakeholders to build trust.
• Uphold the firm's code of ethics and business conduct.
• Preferred skills.
• Security Operation Center (SOC).
• Minimum years experience required.
• 7 years of experiences and above.
• Additional application instructions.
• Good communication in english.
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified).
• Required Skills.
• Optional Skills.
• Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Coaching and Feedback, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Influence, Intellectual Curiosity, Learning Agility, Managed Services, Optimism, Privacy Compliance {+ 16 more}Desired Languages (If blank, desired languages not specified).
• Travel Requirements.
• Not Specified
• Available for Work Visa Sponsorship?.
• Yes
• Government Clearance Required?.
• No
• Job Posting End Date.
• April 30, 2025

Job type:

Full-time

• TikTok is the leading destination for short-form mobile video. At TikTok, our mission is to inspire creativity and bring joy. TikTok's global headquarters are in Los Angeles and Singapore, and its offices include New York, London, Dublin, Paris, Berlin, Dubai, Jakarta, Seoul, and Tokyo.
• Why Join Us.
• Creation is the core of TikTok's purpose. Our platform is built to help imaginations thrive. This is doubly true of the teams that make TikTok possible.
• Together, we inspire creativity and bring joy - a mission we all believe in and aim towards achieving every day.
• To us, every challenge, no matter how difficult, is an opportunity; to learn, to innovate, and to grow as one team.
• Status quo? Never. Courage? Always.
• At TikTok, we create together and grow together. That's how we drive impact - for ourselves, our company, and the communities we serve.
• Join us.
• About Trust & Safety.
• Building a world where people can safely discover, create and connect. The Trust & Safety (T&S) team at TikTok helps ensure that our global online community is safe and empowered to create and enjoy content across all of our applications. We have invested heavily in human and machine-based moderation to remove harmful content quickly and often before it reaches our general community.
• The AI Data Service and Operations - Safety team is responsible for the operation of security model training, and iteration under TikTok and other International products, to ensure product security and create a good atmosphere for content creation and community interaction. You will have the opportunity to join the fast-growing space of AI and contribute to the development of cutting-edge products.
• It is possible that this role will be exposed to harmful content as part of the core role/as part of project/ in response to escalation requests/by chance.
• This may occur in the form of images, video, and text related to every-day life, but it can also include (but is not limited to) bullying; hate speech; child safety; depictions of harm to self and others, and harm to animals.
• Grow the Safety team and oversee their day-to-day management.
• Continuously evaluate outcomes, propose improvements, and ensure a high level of productivity and quality.
• Strengthen the team's understanding of labeling policies and the target of labeling.
• Responsible for localizing working processes and strategies, manage the labeling projects with the Safety Specialists and provide the labeling results in line with expectations.
• Please note that this position involves exposure to sensitive content, including but not limited to vulgar content, violence and fake news.
• Bachelor's Degree or equivalent education background.
• 1 year of experience working as People Manager/Team Lead.
• 3 years of experience working on content quality or safety in a major tech or media company.
• Good command of online safety, privacy, and expression issues.
• Fluency in English and Thai is required. English will be utilized as the primary language for work, while Thai will be used for market-specific communications.
• Advanced Degree or equivalent education background.
• Team player and ability to collaborate with different teams.
• Attention to detail and ability to work independently.
• Trust & Safety recognises that keeping our platform safe for TikTok communities is no ordinary job which can be both rewarding and psychologically demanding and emotionally taxing for some. This is why we are sharing the potential hazards, risks and implications in this unique line of work from the start, so our candidates are well informed before joining.We are committed to the wellbeing of all our employees and promise to provide comprehensive and evidence-based programs, to promote and support physical and mental wellbeing throughout each employee's journey with us. We believe that wellbeing is a relationship and that everyone has a part to play, so we work in collaboration and consultation with our employees and across our functions in order to ensure a truly person-centred, innovative and integrated approach.
• TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.

Experience:

8 years required

Skills:

Business Development, Assurance, Software Development, English

Job type:

Full-time

• Provide integrated services focused on IT security related to help clients develop a vision for their cybersecurity and privacy program.
• Design and build a sustainable and agile Cybersecurity program in responding to changes as a part of economic and business development where IT and Cyber are catalyst.
• Operate aspects of the program and provide an independent review and assurance of their program to Management or 3rd party stakeholders.
• Provide thought leadership and direction and contribute to the firm s intellectual property by driving the development of toolkits, methodologies, accelerators, and training.
• Build, retain, coach, and develop the team through superior leadership skills.
• Bachelor s or Master s degree in Management Information Systems, Computer Engineering, Computer Science and any related fields.
• Minimum 5-8 years of working experiences in Cyber Security or Technical Implementation experience working with Commercial Off the Shelf (COTS) products (IAM, SIEM, and other security products) leading sizable teams in development lifecycle.
• Strong knowledge of IT Security Domain concepts (e.g. Identity and Access Management, Asset Security, Network Security, Security Operations, Software Development Security).
• Strong project management, interpersonal, influencing, and advisory skills.
• Strong presentation and communication skill through leading or delivering a high impact presentation to senior executives.
• Flexibility to travel and work on out-of-town engagements and overseas assignments.
• Clear, articulate, and confident written and verbal communication in Thai and English.
• Professional Certificate (e.g. CISSP, CISA, CIPP, CEH, PMP).
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified).
• Desired Languages (If blank, desired languages not specified).
• English, Thai
• Travel Requirements.
• Up to 80%
• Available for Work Visa Sponsorship?.
• No
• Government Clearance Required?.
• No

Skills:

Linux, Good Communication Skills, English

Job type:

Full-time

• Conduct advanced penetration tests to identify vulnerabilities in computer systems, networks, and applications.
• Perform vulnerability assessments and security audits to evaluate the effectiveness of existing security measures.
• Develop and execute simulated cyber-attacks to assess the organization s readiness to defend against real-world threats.
• Employ various attack methodologies to test the resilience of systems against hacking attempts and security breaches.
• Perform threat modeling to anticipate potential attack vectors.
• Analyze risks associated with identified vulnerabilities and recommend appropriate mitigation strategies.
• Develop custom tools and scripts to automate penetration testing and exploit known vulnerabilities.
• Keep up to date with the latest exploitation techniques and security tools.
• Prepare detailed reports on findings from penetration tests and security assessments.
• Document and present risks and vulnerabilities to relevant stakeholders, along with recommended countermeasures.
• Collaborate with the Blue Team to enhance the organization s defensive strategies based on offensive findings.
• Share insights and knowledge on emerging threats and attack techniques with the cybersecurity team to continually improve defensive measures.
• Bachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 10 years of experience in penetration testing and vulnerability assessments or related roles.
• Strong knowledge of network and application security, ethical hacking, and cybersecurity principles.
• Familiarity with penetration testing tools (e.g., Metasploit, Burp Suite, Kali Linux).
• Excellent problem-solving skills and ability to think like an adversary.
• Good communication skills for effective reporting and stakeholder engagement.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, etc.
• Professional Certificated related to work e.g. (CISSP, OSCP, OSWE) is desirable.
• Location: True Digital Park, Punnawithi.

Skills:

Assurance, Compliance, Risk Management, English

Job type:

Full-time

• Manage multiple engagements at same time for various industries/sectors (e.g., Financial Services, Manufacturing, Automotive, Telecommunication, Life Science & Hospitality, Energy, Consumer Business, etc.).
• Provide both IT Audit support to Financial Audit team, and IT Assurance to clients (e.g., IT General Control & Application Controls Review, IT Compliance Review, IT Governance & Security Audit, IT Audit for SOX/JSOX/ICFR, Third Party Assurance & Risk Management, Data Analytic for Auditing, etc.).
• Actively involve for advisory proposal development with fit-for-purpose approach & client service mindset, and also manage the engagements, esp. for quality and timeliness of our deliverables, including staff utilization.
• Coach the team, and demonstrate leadership roles and certain skillsets (e.g., project & resource management, problem-solving, negotiation, sales & services, communication & presentation, etc) to support our end-to-end processes of each engagement (e.g., offering the service, planning/execution/reporting, monitoring staff utilization, billing to clients).
• Facilitate use of Audit or other technology-based tools/techniques to support auditing.
• Perform any other tasks or assignments.
• Your role as a leader
• At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We connect our purpose and shared values to identify issues as well as to make an impact that matters to our clients, people and the communities. Additionally, Manager / Senior Manager across our Firm are expected to:Develop diverse, high-performing people and teams through new and meaningful development opportunities.
• Collaborate effectively to build productive relationships and networks.
• Understand and lead the execution of key objectives and priorities for internal as well as external stakeholders.
• Align your team to key objectives as well as set clear priorities and direction.
• Make informed decisions that positively impact the sustainable financial performance and enhance the quality of outcomes.
• Influence stakeholders, teams, and individuals positively - leading by example and providing equal opportunities for our people to grow, develop and succeed.
• Lead with integrity and make a strong positive impact by energising others, valuing individual differences, recognising contributions, and inspiring self-belief.
• Deliver superior value and high-quality results to stakeholders while driving high performance from people across Deloitte.
• Apply their understanding of disruptive trends and competitor activity to recommend changes, in line with leading practices.
• QualificationsEducation background in Accounting, Finance, and/or other IT-related fields (e.g., MIS/AIS, Computer Engineering, Computer Science, etc).
• At least total 7-10 years experience (including a few years of managerial experiences) in audit related fields, esp. for IT Audit & Advisory in Audit & Consulting firms or IT Audit / Risk Management / Compliance in other corporate companies (e.g., Financial Service, Telecommunication, Consumer Products).
• Experiences in review over IT process/general controls and application controls, incl. IT security configurations for each IT component (e.g., Operating System, Database, Network).
• Relevant profession certifications (e.g., CISA, CISSP, CRISC, ISO27001) is preferred.
• Knowledge of Audit concept, IT regulatory requirements (e.g., BOT, SEC, OIC, PDPA), and IT-related controls & standards (e.g., ISO27001, COBIT, ITIL, NIST).
• Experiences in using Data Analytic & Visualization tools (e.g., R, Python, Tableau, PowerBI, etc) would be advantage.
• Verbal and written communication skills in both Thai and English.
• Due to volume of applications, we regret that only shortlisted candidates will be notified.
• Please note that Deloitte will never reach out to you directly via messaging platforms to offer you employment opportunities or request for money or your personal information. Kindly apply for roles that you are interested in via this official Deloitte website. Requisition ID: 107526In Thailand, the services are provided by Deloitte Touche Tohmatsu Jaiyos Co., Ltd. and other related entities in Thailand ("Deloitte in Thailand"), which are affiliates of Deloitte Southeast Asia Ltd. Deloitte Southeast Asia Ltd is a member firm of Deloitte Touche Tohmatsu Limited. Deloitte in Thailand, which is within the Deloitte Network, is the entity that is providing this Website.

Experience:

5 years required

Skills:

Procurement, Market Research, Research

Job type:

Full-time

• Develop and implement procurement strategies for IT products and services, ensuring alignment with Procurement Policy and budget.
• Collaborate with IT department to understand their needs and ensure that procurement activities meet those requirements effectively.
• Conduct market research to identify potential vendors and evaluate their offerings, pricing, and service levels.
• Negotiate contracts and agreements with suppliers to secure favorable terms and pricing, ensuring compliance with legal and regulatory standards.
• Manage the entire procurement process from requisition to purchase order creation and delivery, ensuring timely and accurate fulfillment of IT needs.
• Monitor supplier performance and conduct regular evaluations to ensure adherence to contract terms and service level agreements (SLAs).
• Maintain relationships with key vendors, resolving any issues related to performance, quality, or delivery.
• Analyze spending patterns and identify opportunities for cost savings and process improvements.
• Prepare and present reports on procurement activities, market trends, and vendor performance evaluation to management.
• Liaise with Finance & Accounting team to estimate IT cost accruals.
• Stay updated on industry trends, emerging technologies, and best practices in IT procurement.
• Bachelor s degree in Business Administration, Information Technology, Supply Chain Management, or a related field. Master s degree is preferred.
• 5+ years of experience in procurement, with at least 3 years specifically in IT procurement or technology sourcing.
• Strong understanding of IT products, services, and solutions, including software, hardware, networking, and cloud services.
• Proven experience in vendor negotiation, contract management, and supplier relationship management.
• Excellent analytical skills with the ability to assess market trends, perform cost analysis, and identify opportunities for improvement.
• Strong interpersonal and communication skills, with the ability to collaborate effectively with cross-functional teams and stakeholders.
• Proficient in Microsoft Office (Excel, Word, PowerPoint).

Job type:

Full-time

• Encourage everyone to have a voice and invite opinion from all, including quieter members of the team.
• Deal effectively with ambiguous and unstructured problems and situations.
• Initiate open and candid coaching conversations at all levels.
• Move easily between big picture thinking and managing relevant detail.
• Anticipate stakeholder needs, and develop and discuss potential solutions, even before the stakeholder realises they are required.
• Contribute technical knowledge in area of specialism.
• Contribute to an environment where people and technology thrive together to accomplish more than they could apart.
• Navigate the complexities of cross-border and/or diverse teams and engagements.
• Initiate and lead open conversations with teams, clients and stakeholders to build trust.
• Uphold the firm's code of ethics and business conduct.
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Degrees/Field of Study preferred: Bachelor DegreeCertifications (if blank, certifications not specified).
• Required Skills.
• Optional Skills.
• Desired Languages (If blank, desired languages not specified).
• Travel Requirements.
• Not Specified
• Available for Work Visa Sponsorship?.
• No
• Government Clearance Required?.
• No

Job type:

Full-time

Greenline Synergy provides the information security governance to the BDMS hospitals which is a framework of policies, practices, and strategies that align organizational resources toward protecting information through cybersecurity measures.

Experience:

5 years required

Skills:

Problem Solving, English

Job type:

Full-time

• Design, implement and maintain the IT Security of the organization which involves developing and executing security strategies, standards and procedures to protect IT assets from cyber threats and vulnerabilities.
• Develops solution conceptual designs and solution blueprints for IT projects.
• Design security architecture elements to mitigate emerging threats.
• Reviewing security measures and recommending to implementing enhancements.
• Review and advise security solution architect for the proposed system such as: Network Segmentation, Application protection, Defense-in-depth, Remote Access, Encryption Technologies.
• Conducting security advisory consultancy and working with RED and BLUE team for security testing along the pipeline of the system delivery.
• Bachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 5 years of experience of IT Security Advisory, Penetration tester or Enterprise Architect or related role.
• Comprehensive understanding of the IT Security Concept, Security Architect, Risk assessment.
• Ability to analyst finding form Offensive and Defensive Security team.
• Ability to analyze end-to-end security processes and provide advice in order to reduce risk to acceptable levels.
• Strong analytical and problem solving.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, and etc.
• Professional Certificated related to work e.g. (CISSP, CSSLP, CDPSE, OSCP, TOGAF) is desirable.
• Location: True Digital Park, Punnawithi.

Skills:

Risk Management, Software Development, Kubernetes

Job type:

Full-time

• Design, develop, and maintain security systems, tools, and best practices across the stack (frontend, backend, mobile, and infrastructure).
• Identify, assess, and mitigate security vulnerabilities through proactive risk management and threat modeling.
• Collaborate with product managers and developers to embed security into the software development lifecycle (SDLC).
• Develop and enforce policies for secure coding, data protection, and incident response.
• Implement robust authentication and authorization mechanisms.
• Conduct regular security assessments, including penetration testing and code reviews.
• Monitor, detect, and respond to security incidents using advanced tools and methodologies.
• Enhance infrastructure security using Kubernetes, Docker, and cloud platforms (GCP, AWS).
• Stay current on emerging threats, vulnerabilities, and security trends, and recommend actionable insights to improve defenses.
• Champion security awareness across the organization, including training sessions and knowledge-sharing activities.
• Ensure compliance with relevant security standards and regulations such as ISO 27001, PDPA, GDPR, SOC 2, or PCI DSS.
• Basic QualificationsProven expertise in application security, cloud security, and infrastructure security.
• Proficiency in securing systems built with technologies such as Node.js, Golang, Elixir, Python, React, Svelte, or Flutter.
• Experience with tools like Docker, Kubernetes, and cloud services (GCP, AWS).
• Strong understanding of cryptographic principles and secure communication protocols.
• Familiarity with CI/CD pipelines and secure DevOps practices.
• Hands-on experience with security tools for vulnerability scanning, penetration testing, and threat detection.
• Deep understanding of database security, especially with PostgreSQL or other relational or non-relational databases.
• Strong analytical and problem-solving skills with a security-first mindset.
• Excellent communication skills and the ability to collaborate effectively in Agile teams.
• Self-motivation, adaptability, and a strong work ethic.
• Preferred Qualifications We re especially excited if you bring:Experience leading security initiatives or mentoring other engineers in security best practices.
• Expertise in compliance frameworks such as ISO 27001, PDPA, GDPR, SOC 2, or PCI DSS.
• Advanced knowledge of security monitoring and incident response systems.
• Strong system design skills with a focus on secure architectures and long-term trade-offs.
• A proven track record of securing fast-paced, high-growth tech environments.
• A passion for securing user-centric products and contributing to their success.
• Perks & Benefits Flat Structure As we continue to grow fast, we strive to retain our culture where everyone is heard, contributes, and grows with the company..
• Work-life Harmony We believe that quality time outside of work is important to sustaining a healthy and happy lifestyle.
• Remote Work Hybrid-mode activated! It comes with the package: flexibility, focus and productivity!.
• Urban Office One breath from Phrom Phong BTS. No sweat whatsoever! The office should also feel like a second home so we dedicated a lot of care and resources into building the best environment for you to wake up to every morning.
• Fun Workshop The best relationships are built over new experiences, that s why we have workshops filled with a range of activities for you to look forward to and enjoy.
• Game Tournament It s getting fun and competitive! Challenge doesn t only have to come from work. Own the championship and show the peeps how great of a gamer (and player) you are.
• Group Insurance Health comes first, we know, don t worry, we ve got you covered.
• Health & Wellness Only a healthy army wins the war. We invest to take care of you from physical, mental and happiness-level. Adopted health & wellness applications plus activities to make sure everyone here is on cloud nine

Skills:

Product Owner, Project Management

Job type:

Full-time

• Provide governance and guidance to deliver world class network products and services in-line with industry standards, and internal process/procedures with an emphasis on risk-based approaches.
• Participates and provides governance to all elements from the delivery of technologies to service improvements through lifecycle management, vendor coordination, and operational support, documenting the risk profile along the way.
• Defines the Service Level Objectives (SLO) and Service Level Indicators (SLI) and de ...
• Acts as the driver for continuous improvement of NPS products and services.
• Responsibilities Works closely with product managers of NPS to define SLI/SLI.
• Works closely with the service owner of the network products and services to make sure we deliver to agreed SLO/CLI.
• Works closely with business partners and product managers to make sure the demands from business can be supported on time with quality following proper prioritization calls.
• Owns the service reports and service review meetings for network products and services, proactively tracks the critical metrics of network services and provides insight on improvement opportunities, leads/drives the Service Improvement Plan (SIP) in a systematic approach.
• Governs the process used by NPS and make sure the team is complaint to process, and introduces industry standard methodologies and continually improve those processes for a mature service delivery process.
• Join service owners in TRT and PIR with the target to drive for systematic improvement on how we handle incidents/problems.
• Provides oversight to the network ITSM process and results to proactively prevents service disruptions through analysis of changes adhering to ITSM principles and process.
• Proactively tracks and maintains a service risk catalog with continual updates provided to leadership, while working with business partners to clearly highlight the risk profile as it relates to business decisions.
• Tracks audit results and issues exposed in OpsRes and TechRes discussion and provide inputs to product manager, product owner, service owner to resolve the potential issues in a timely manner.
• Defines and manages the vendor operational performance indicators and holds vendors accountable through proper engagement and governance.
• Manages network vendor performance and drives for improvement systematically when there is trend.
• On top of the individual SM role, can lead a team of SMs to provide consistent governance globally.
• Qualification 10+ years working in global technology service based organization.
• Experience of working in a global 24/7 network or infrastructure service operations.
• ITIL Certification (ideally ITIL 4) with demonstrable application on large 24 x7 global organisation.
• Passionate in leading continuous improvement and has knowledge on continuous improvement methodologies.
• Demonstrated ability to influence and hold others accountable for service quality - more senior people in the organization and business partners.
• Not only can lead initiatives in own areas, can also help wider organization.
• Strong leadership and excellent problem-solving and analytical skills.
• Good communication and interpersonal skills.
• Project management expertise.
• Ability to work under stress and manage multiple priorities.
• Certifications (Preferred): Cisco Certified Network Professional (CCNP) or Cisco Certified Internetwork Expert (CCIE).
• Certified Information Systems Security Professional (CISSP).
• ITIL Foundation Certification.
• This role is ideal for professionals passionate about technology leadership, network innovation, and delivering seamless connectivity in a dynamic environment. LSEG is a leading global financial markets infrastructure and data provider. Our purpose is driving financial stability, empowering economies and enabling customers to create sustainable growth. Our purpose is the foundation on which our culture is built. Our values of Integrity, Partnership, Excellence and Change underpin our purpose and set the standard for everything we do, every day. They go to the heart of who we are and guide our decision making and everyday actions. Working with us means that you will be part of a dynamic organisation of 25,000 people across 65 countries. However, we will value your individuality and enable you to bring your true self to work so you can help enrich our diverse workforce. You will be part of a collaborative and creative culture where we encourage new ideas and are committed to sustainability across our global business. You will experience the critical role we have in helping to re-engineer the financial ecosystem to support and drive sustainable economic growth. Together, we are aiming to achieve this growth by accelerating the just transition to net zero, enabling growth of the green economy and creating inclusive economic opportunity. LSEG offers a range of tailored benefits and support, including healthcare, retirement planning, paid volunteering days and wellbeing initiatives. We are proud to be an equal opportunities employer. This means that we do not discriminate on the basis of anyone s race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any other basis protected under applicable law. Conforming with applicable law, we can reasonably accommodate applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Please take a moment to read this privacy notice carefully, as it describes what personal information London Stock Exchange Group (LSEG) (we) may hold about you, what it s used for, and how it s obtained, your rights and how to contact us as a data subject. If you are submitting as a Recruitment Agency Partner, it is essential and your responsibility to ensure that candidates applying to LSEG are aware of this privacy notice.

Experience:

2 years required

Skills:

Network Infrastructure, Security Design, Big Data, English

Job type:

Full-time

• Perform cyber security and IT security assessments for clients (e.g. cyber security program assessment, cyber security risk assessments, IT network infrastructure reviews, system technical configurations review, information security policies and processes/procedures review etc.).
• Work on IT security design, analysis and implementation of security protection solution.
• Evaluate and analyze threat, vulnerability, system weakness, impact and risk to secu ...
• Advise clients on the security issues, including explanation on the technical details and how they can remediate the vulnerabilities in the processes, controls and systems.
• Advise client on the security incident response end-to-end process (i.e. preparation, detection, analysis, response and recovery of the security incident).
• Skills and attributes for success.
• To qualify for the role you must have.
• Bachelor's degree or Master s degree in Computer Engineering, Computer Science, Information Systems, IT Security, ICT or other related fields.
• Minimum 2 years' experience in such areas as IT security management design and implementation, IT security assessment and IT technical background.
• Familiar with leading IT security processes and tools.
• Highly proficient in both English and Thai with good written and oral communication and analytical skills.
• Ideally, you ll also have.
• Having experience in project planning and management will be a plus.
• Professional certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), and / or Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or ISO27001 will be highly considered.
• Experience in new generation security practices (i.e. DevSecOps, iPentest, RedTeaming, System Resilience Design).
• Experience in Emerging Technologies (i.e. Cloud Computering, Blockchain, Big Data, A.I./M.L.).
• We re interested in intellectually curious people with a genuine passion for cyber security. With your specialization in attack and penetration testing, we ll turn to you to speak up with innovative new ideas that could make a lasting difference not only to us - but also to the industry as a whole. If you have the confidence in both your presentation and technical abilities to grow into a leading expert here, this is the role for you.
• What we offer.
• We offer a competitive remuneration package. Our comprehensive Total Rewards package includes support for flexible working and career development, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions.
• Continuous learning: You ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You ll be embraced for who you are and empowered to use your voice to help others find theirs.
• If you can demonstrate that you meet the criteria above, please contact us as soon as possible.
• The exceptional EY experience. It s yours to build.
• EY | Building a better working world.
• EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.
• Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.
• Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

Experience:

2 years required

Skills:

Accounting, Negotiation, English

Job type:

Full-time

• Plans financial audits by understanding organization objectives, structure, policies, processes, internal controls, and external regulations; identifying risk areas; prepares audit scope and objectives; prepares audit programs.
• Performs audit of financial statements via various methodologies including inquiry, vouching, tracing, examination, observation, and analysis.
• Evaluates internal controls and accounting systems; recommending areas of improvements.
• Completing audit processes and documenting higher-risk areas to increase your technical and business skills in areas including revenue, financial instruments and income taxes.
• Understanding our clients unique ambitions and needs and referring them to colleagues in other teams and areas to broaden our business relationships where possible.
• Maintain client relationships at the appropriate level and present a favorable impression of the firm. Moreover, engaging clients and providing authoritative advice and professionalism throughout transactions.
• Assess, advise and help clients to implement security related frameworks e.g. Information Security Management System (ISMS).
• Contributes to team results by welcoming new and different work requirements; helping others accomplish related job results as and where needed.
• Keeps up-to-date with any changes or planned changes to accounting standards or other pronouncements and understand their impact upon the audit strategy.
• Skills and attributes for success.
• To qualify for the role, you must have.
• Bachelor or master s degree in Accounting or related field.
• For Senior Audit Level - At least 2 years of relevant experience in ฺBanking industry.
• For Manager Audit Level - At least 6 years of relevant experience in ฺBanking industry.
• Excellent communication and negotiation skills and a collaborative approach to management and Good interpersonal skills and team player.
• Effective command of verbal listened and written both Thai and English. and Good appreciation of fundamental accounting knowledge and/or audit knowledge and financial controls.
• Able to handle multiple tasks and assignments and the flexibility to constantly learn and adapt in a fast-paced environment.
• Ideally, you ll also have.
• Similar experience in Big 4 is preferred.
• As a global leader in assurance, Audit, we hire and develop the most passionate people in their field to help build a better working world. This starts with a culture that believes in giving you the training, opportunities and creative freedom to make things better.
• What we offer.
• We offer a competitive remuneration package. Our comprehensive Total Rewards package includes support for flexible working and career development, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions.
• Continuous learning: You ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You ll be embraced for who you are and empowered to use your voice to help others find theirs.
• If you can demonstrate that you meet the criteria above, please contact us as soon as possible.
• The exceptional EY experience. It s yours to build.
• EY | Building a better working world.
• EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.
• Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.
• Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.