เงื่อนไขการค้นหา

ทักษะ:

Project Management, Linux, UNIX, English

ประเภทงาน:

งานประจำ

• Manage CCII (Cloud, Cyber Security, IOT, ICT) project for single and multi-tower solution for Property, Retail, Conglomerate, and international customer segments.
• Be a committee of AIS bid management for validating large projects at TCV > 10MB.
• Manage project stakeholders to meet expectation and requirement.
• Communicate project progress to stakeholders.
• Plan and manage project issue and risk with proper actions.
• Plan and manage project to meet project objective, within timeline, project budget, scope and give customer satisfied.
• Manage project resource both internal delivery and external suppliers.
• Bachelor's degree or higher in computer science, business, or a related field.
• 8-15 years of project management and related experience.
• Strong in communication and stakeholder management.
• Project Management Professional certification preferred.
• Proven ability to solve problems creatively.
• Strong familiarity with project management software tools, methodologies, and best practices.
• Experience seeing projects through the full life cycle.
• Excellent analytical skills.
• Strong interpersonal skills and extremely resourceful.
• Proven ability to complete projects according to outlined scope, budget, and timeline.
• Engineering Specialist (Cyber Security).
• Oversee the implementation of cyber security solutions and services to ensure customer satisfaction and security effectiveness.
• Plan and establish procedures and systems that enhance operational efficiency.
• Delegate tasks effectively to team members to achieve organizational objectives.
• Strategically allocate resources to optimize project outcomes.
• Monitor and support staff in their work progress to ensure timely delivery of services.
• Evaluate staff performance through regular assessments and feedback mechanisms.
• Foster professional development among team members to enhance their skills and capabilities.
• Drive productivity and maintain high quality standards within the division.
• Provide guidance and coaching to staff to support exceptional service delivery.
• Bachelor s degree in Computer Science, Information Technology, Cybersecurity, or a related field. Some positions may require a master s degree.
• Relevant work experience in cybersecurity roles, typically ranging from 3-7 years, depending on the seniority of the position. Hands-on experience with security technologies and methodologies is essential.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), CompTIA Security+, Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA) may be preferred or required.
• Proficiency in network security, firewalls, intrusion detection systems, and VPN.
• Knowledge of operating systems (Windows, Linux, UNIX) and databases.
• Experience with security protocols (SSL, IPsec, etc.) and encryption.
• Familiarity with security frameworks and standards (NIST, ISO 27001, etc.).
• Knowledge of Compliance: Understanding of regulatory requirements and compliance standards (e.g., GDPR, HIPAA, PCI-DSS).
• Ability to work both independently and collaboratively in a team environment.
• Strong attention to detail and the ability to prioritize tasks effectively.
• Engineering/IT Specialist (Cyber Security)
• Design/Implement Cyber Security project for Private Cloud and Global Cloud (AWS and MS Azure).
• Solution integration and migration.
• Control suppliers in the assigned project.
• Do project quality control.
• Do project risk assessment and management.
• Do project UAT with customer.
• Create final project document.
• Do customer project training (OJT).
• At least 4 years of Cyber Security experience.
• Bachelor s degree in Computer Engineering, Information Technology, Computer Science or related fields.
• Experience in installation and operation Security product e.g. Firewall, IPS, SIEM, NAC, Anti-Virus, Endpoint.
• Knowledge on network security and cloud technology.
• Knowledge of monitoring tools (What s up gold, Zabbix, Nagios).
• Has valid Security product Certification e.g. Fortinet NSE3-7, Palo Alto PCNSA, PCNSE, Cisco CCNA, CCNP Security.
• Experienced in ITIL framework.
• Senior Engineer (System Infrastructure)
• Implement Server, Storage, Virtualization, Backup system for Enterprise customer.
• Hypervisor and Operating system configuration and customization.
• Network and firewall integration for Cloud infrastructure.
• Hand-over completed solution to related team.
• At least 3 years experience on Server, Storage, VMware and Veeam delivery.
• Strong knowledge of Cloud environment and Operating system. (Windows and Linux).
• Basic skill of Database and Middleware installation.
• Strong organizational skills and ability to take on multiple assignments.
• Experienced firewall and cloud network implementation.
• Ability to occasionally work or assign work during nights/weekends during critical incidents per on-call rotation or major project implementations.
• Good command of English.
• VMware VCP or Linux certificate knowledge is an advantage.

ประสบการณ์:

7 ปีขึ้นไป

ทักษะ:

System Security, Windows Server, Linux

ประเภทงาน:

งานประจำ

• Identify and evaluate areas for improvement in detection, prevention, and cyber incident response.
• Work closely with stakeholders to develop and follow up on remediation plans.
• Provide expert consultation on mitigating strategies and actionable remediation plans to asset owners.
• Collaborate with various teams to create, implement, and monitor effective remediation strategies.
• Apply knowledge of IT infrastructure, with experience as a system administrator or system engineer, to enhance cybersecurity measures.
• Utilize an understanding of offensive and defensive cybersecurity strategies (e.g., red and blue teams).
• Perform penetration testing or demonstrate a strong understanding of penetration testing methodologies to assess the security of IT systems.
• Use computer forensic tools to examine and analyze electronic media in suspected hacking cases.
• Conduct tasks related to malware analysis and reverse engineering to identify and mitigate threats.
• Define a course of action if a security problem exists and explain in detailed technical reports what occurred when an incident happens, including the reasons it occurred, and the response taken.
• Document incidents thoroughly, providing detailed technical reports that include the cause of the incident, and the response measures implemented.
• Build relationships with other entities responsible for conducting cyber threat analyses, ensuring effective collaboration and information sharing.
• Bachelor s degree / master s degree or higher in Computer Engineering, Information Technology, Computer science or related field.
• Proficiency with SIEM, UBA, and SOAR tools.
• Experience with system monitoring tools.
• Coding ability in C, C++, C#, Java, ASM, PERL, PHP, and PowerShell.
• Knowledge of backup and archiving techniques.
• Use of enterprise system monitoring tools.
• Understanding of cloud computing.
• Proficiency in UNIX.
• Knowledge of network communication (IP/TCP).
• Familiarity with computer hardware systems.
• Experience with web-based application security.
• Strong knowledge of Windows and Linux Operating Systems.
• Experience in identifying and evaluating cybersecurity risks and providing actionable insights.
• Previous experience as a penetration tester (pentester) is highly beneficial.
• Experience as a system administrator/system engineer is advantageous.
• Familiarity with computer forensic tools and techniques.
• Experience in malware analysis and reverse engineering.
• Ability to work well under pressure while handling multiple tasks.
• Remark: The Bank requires the verification of criminal records prior consideration for employment to ensure secured and maintain standards of the organization.

ประสบการณ์:

3 ปีขึ้นไป

ทักษะ:

System Security, Windows Server

ประเภทงาน:

งานประจำ

• Provide input and security consultation in a project-based environment as well as assisting operational of IT Security components with functional security requirements.
• Evaluate new projects and applications as they relate to security architecture and design; audit existing deployments and analyse gaps against security practices and standards.
• Conduct application vulnerability assessment, secure code review, and security penetration testing for new projects, enhancement projects, and periodic assurance to com ...
• Implement and operate DevSecOps on projects/applications that use DevOps process.
• Track, enforce, and consult to resolution the closure of security risks including review plans and monitor progress or remedial actions according to security requirements, security design, application vulnerability, and penetration testing issues.
• Periodically review security requirements to align with Bank s policies and regulations.
• Support periodic security audits.
• Manage third parties involved in IT Security Advisory and Assurance.
• Bachelor's or Master s Degree in Computer Science, Engineering, Information Systems or equivalent.
• Minimum 3 years in IT Security Advisory, Security Assurance, Threat Hunting plus experience working in or closely with IT Application, Enterprise Architect, and IT Risk management.
• Knowledge of Security Framework and Concepts, Compliance, Risk and Regulations, PCI DSS, OWASP, COBIT.
• Experience in performing comprehensive and authoritative technical analysis of the security readiness and compliance of applications.
• The ability to oversee pentesting to find vulnerabilities in all elements of a security system, understand security vulnerabilities, secure code review and remediation.
• Data and information management, including classification, retention and destruction. It also means keeping corporate and personal data both private and secure while needed, and destroyed when it is no longer needed.
• Knowledge of all applicable laws and compliance frameworks to enforce compliance.
• Remark: The Bank requires the verification of criminal records prior consideration for employment to ensure secured and maintain standards of the organization.

ทักษะ:

Research, Automation

ประเภทงาน:

งานประจำ

• Lead the Cyber Security Incident Response (CSIR) team in day-to-day operations, managing complex incidents, and communicating progress to senior management.
• Ensure clear incident documentation and oversee the implementation and follow-up of realistic remediation plans.
• Detect and independently respond to security incidents across the organization.
• Assume the role of an Incident Manager during major security events.
• Collaborate with management to execute and iterate on the incident response process.
• Develop the threat-response matrix, incident-response playbook, and processes. Design and implement metrics for incident response, continually improving efficiency and effectiveness.
• Stay informed of emerging threats, security technologies, and relevant research for continuous improvement.
• Identify and mitigate complex security threats before exploitation.
• Implement and monitor security measures for infrastructure protection.
• Utilize log analysis platforms for security analytics and threat detection.
• Perform root cause analysis (RCA) and incident reviews.
• Mentor other members of the Security Incident Response Team.
• Help the team grow their skills and experience.
• Provide security recommendations to security architecture, issues, and features.
• Create a supportive environment for team members.
• Build strong partnerships with the other departments as a supporter of the cyber security incident response team. (CSIRT).
• Train team members to prioritize efforts and ensure alignment with company direction.
• Be a role model for positive thinking, and conflict resolution.
• Draft and successfully deliver on quarterly OKRs (Objectives and Key Results).
• Bachelor's degree or higher in Computer Engineering, Computer Science, IT, or related fields.
• A minimum of 5 years of working experience in Security Operations (SecOps), incident response, threat analysis, incident management, or relevant investigations during medium and large-scale security events.
• Robust understanding of security issues, mitigations, and a solid grasp of the current global threat landscape.
• Experience in security solutions, secure network design, firewalls, authentication, authorization systems, log analysis platforms, security incident response, monitoring, and intrusion detection.
• Profound knowledge of attacks, mitigation methods, and threat modeling.
• Experience in digital forensics, SOAR automation, and cloud providers like GCP, AWS, and Azure is advantageous.
• Strong written and verbal communication skills are required, including conducting presentations and creating security reports. Experience with executive-level communications is a plus.
• Substantial engineering mindset.
• Capability to build working relationships with key stakeholders.
• Capability to make concrete progress in the face of ambiguity and imperfect knowledge.
• Hold the certificate of CompTIA Security +, CompTIA CySA+, and others would be an added advantage.

ทักษะ:

Research, Automation, English

ประเภทงาน:

งานประจำ

• Fulfill tasks of cybersecurity vulnerability management program, i.e. cyberthreat intelligence analysis, cybersecurity assessment, vulnerability profiling, vulnerability compensation and vulnerability remediation tracking.
• Support on implementing and running DevSecOP operation.
• Keep abreast of the knowledge in cybersecurity, new digital technology and CI/CD area.
• Collaborate with business and technology team to carry-out the assigned Vulnerability Management / DevSecOP tasks.
• Senior person will act as a security advisor to provide a security recommendation on the new or the change on Application solution and Infrastructure design.
• Perform Research and Development on Offensive Security and security automation.
• Qualifications Bachelor s or Master degree in computer science, Computer Engineering, Information Technology, or related field.
• Experience in Vulnerability Assessment and Penetration testing (Fresh graduate is also welcome).
• Have knowledge in Threat intelligence, red teaming and Secure coding review and CI/CD DevSecOP implementation and certified relevant security certification is a plus.
• Strong security analytical and problem-solving skill.
• Good command in English.
• We're committed to bringing passion and customer focus to the business. If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us.

ประสบการณ์:

1 ปีขึ้นไป

ทักษะ:

Compliance, Python, PowerShell, Japanese

ประเภทงาน:

งานประจำ

• Monitor, analyze and triage security alerts and events.
• Assess impact, risk of potential incidents, and take appropriate action according to defined procedures.
• Utilize various security tools and technologies to detect and investigate cyber threats.
• Collaborate with other teams, including incident responders, to ensure proper escalation and resolution of cases.
• Document and report security incidents, including detailed analysis and recommendations for improvement.
• Contribute to the development and enhancement of security monitoring and detection capabilities.
• Stay up to date with the latest security trends, vulnerabilities, and best practices.
• Bachelor s degree in Computer Science, Information Security, or a related field.
• Solid understanding of network protocols, security architectures, and common security threats.
• Knowledge of security incident response processes and methodologies.
• Excellent analytical and problem-solving skills.
• Strong communication skills, both written and verbal.
• 1-2 years of experience in a security operations center (SOC) or a similar role.
• Experience with security information and event management (SIEM) platforms and threat intelligence tools.
• Industry certifications, e.g., CompTIA Security or Certified Ethical Hacker (CEH).
• Familiarity with regulatory frameworks and compliance requirements.
• Scripting skills in languages such as Python or PowerShell.
• Knowledge of cloud security concepts and technologies.
• Experience with log analysis and correlation.
• Chinese, Japanese, or other foreign language skills.
• Current Employees apply HERE.
• Current Contingent Workers apply HERE.
• Search Firm Representatives Please Read Carefully
• Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails.
• Regular
• Hybrid
• 01/31/2025A job posting is effective until 11:59:59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date.
• Requisition ID:R328901.

ทักษะ:

System Security, Software Development, Product Development

ประเภทงาน:

งานประจำ

• Manage the application support and technical support team and evaluate performance.
• Collaborate with cross-functional teams to identify system requirements and enhancements, focusing on stability and scalability.
• Prioritizing issue and incident based on business needs.
• Support operational incident raises through service desk team and perform troubleshooting, minimizing downtime and impact on business operations.
• Oversee IT infrastructure, network performance, and system availability to ensure seamless operation.
• Ensure data backups, system security, and disaster recovery plans are in place and regularly tested.
• Coordinate with related parties to solving issues and incidents.
• Perform ad-hoc tasks.
• Bachelor's degree in computer engineering, computer science, or IT-related fields.
• At least 1 years experience in application support or similar role.
• At least 1 years experience in manage application support and technical support team.
• Understanding of the software development lifecycle and software development methodologies, version control, testing and QA, and deployment.
• Coordinate with product development teams and external parties to solve complex issues.
• Good interpersonal and communication skills.
• Proven ability to troubleshoot complex issues under pressure, with a focus on quick recovery and minimizing impact.
• Strong analytical and problem-solving skills, with the ability to work independently and as part of a team.
• Contact Information:-.
• Office of Human Capital.
• D2C SERVICES Company Limited.
• Vibhavadi Rangsit Road, Ladyao Subdistrict, Chatuchak District, Bangkok 10900.

ประสบการณ์:

2 ปีขึ้นไป

ทักษะ:

Network Infrastructure, Security Design, Big Data, English

ประเภทงาน:

งานประจำ

• Perform cyber security and IT security assessments for clients (e.g. cyber security program assessment, cyber security risk assessments, IT network infrastructure reviews, system technical configurations review, information security policies and processes/procedures review etc.).
• Work on IT security design, analysis and implementation of security protection solution.
• Evaluate and analyze threat, vulnerability, system weakness, impact and risk to secu ...
• Advise clients on the security issues, including explanation on the technical details and how they can remediate the vulnerabilities in the processes, controls and systems.
• Advise client on the security incident response end-to-end process (i.e. preparation, detection, analysis, response and recovery of the security incident).
• Skills and attributes for success.
• To qualify for the role you must have.
• Bachelor's degree or Master s degree in Computer Engineering, Computer Science, Information Systems, IT Security, ICT or other related fields.
• Minimum 2 years' experience in such areas as IT security management design and implementation, IT security assessment and IT technical background.
• Familiar with leading IT security processes and tools.
• Highly proficient in both English and Thai with good written and oral communication and analytical skills.
• Ideally, you ll also have.
• Having experience in project planning and management will be a plus.
• Professional certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), and / or Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or ISO27001 will be highly considered.
• Experience in new generation security practices (i.e. DevSecOps, iPentest, RedTeaming, System Resilience Design).
• Experience in Emerging Technologies (i.e. Cloud Computering, Blockchain, Big Data, A.I./M.L.).
• We re interested in intellectually curious people with a genuine passion for cyber security. With your specialization in attack and penetration testing, we ll turn to you to speak up with innovative new ideas that could make a lasting difference not only to us - but also to the industry as a whole. If you have the confidence in both your presentation and technical abilities to grow into a leading expert here, this is the role for you.
• What we offer.
• We offer a competitive remuneration package. Our comprehensive Total Rewards package includes support for flexible working and career development, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions.
• Continuous learning: You ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You ll be embraced for who you are and empowered to use your voice to help others find theirs.
• If you can demonstrate that you meet the criteria above, please contact us as soon as possible.
• The exceptional EY experience. It s yours to build.
• EY | Building a better working world.
• EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.
• Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.
• Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

ทักษะ:

Research, System Administration, Android

ประเภทงาน:

งานประจำ

• Implements IT security improvements by assessing current situation; evaluating trends; anticipating requirements.
• Protects IT system by defining access privileges, control structures, and required resources.
• Process & analyze to gain insights on past IT areas on, current or potential attacks and threats that pose a risk to the organization.
• Primary point of contact with Internal Audit. Periodically review, update, implement and communicate changes to IT policies and procedures and General IT Controls. Facilitate internal and external audit processes by participating in scoping discussions and walk-throughs, delivering evidence that controls are operating as defined, remediating deficiencies, and acting on recommendations.
• Safeguards IT infrastructure and system as well as information system assets by identifying and solving potential and actual security problems.
• Research cyber security topics and promote Cyber security awareness throughout Thaioil.
• EDUCATION.
• Bachelor s degree in computer science, Information Systems, or equivalent education or work experience.
• EXPERIENCE.
• Relevant experience, especially in IT working environment.
• Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.
• Hands-on experience analyzing high volumes of logs, network data (e.g., Netflow, FPC), and other attack artifacts in support of incident investigations.
• Experience with vulnerability scanning solutions.
• Familiarity with Vulnerability Management program.
• Proficiency with any of the following: Anti-Virus, HIPS, ID/PS, Full Packet Capture, Host-Based Forensics, Network Forensics, and RSA Security.
• Have knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform.
• Understanding of mobile technology and OS (i.e., Android, iOS, Windows), VMware technology, and Unix and basic Unix commands.
• OTHER REQUIREMENTS.

ประสบการณ์:

4 ปีขึ้นไป

ทักษะ:

Compliance, English

ประเภทงาน:

งานประจำ

• Establish and maintain IT security standards and guidelines in compliance with the security regulations from regulators, and the security best practices, that governs new technology adoption.
• Advise business units and technology group on how to comply with IT security policy, standards, guidelines and best practices.
• Keep abreast of the knowledge in cybersecurity, new digital technology.
• Support on Cyber-drill program management and BCP coordinator across different Technology security units.
• Provide security awareness to the employee and service providers.
• Manage security supervision programs to track on non-compliance items to security policies, standards and guidelines.
• Inspecting and assessing the security of IT third parties that will access the organization s data or systems.
• Ensuring compliance with security requirements for IT third parties.
• Analyzing security risks and establishing preventive measures in case of incidents involving IT third parties.
• Qualification Bachelor s or Master degree in computer science, Computer Engineering, Information Technology, or related field.
• At least 4 years of experience in Information Security or a related field.
• Knowledge in new Banking Technology and associated security control is a plus.
• Relevant security certification is a plus, e.g. CISSP, CISM.
• Strong security advisory, analytical, and problem-solving skill.
• Good command in English.
• We're committed to bringing passion and customer focus to the business. If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us.

ประสบการณ์:

3 ปีขึ้นไป

ทักษะ:

Compliance, Project Management, Business Development

ประเภทงาน:

งานประจำ

• Design, Implement, and Optimize Secure Landing Zones: Lead the creation and enhancement of secure landing zones across multiple cloud service providers (CSPs) such as AWS, Azure, and Google Cloud for clients in Southeast Asia.
• DevSecOps Pipelines: Architect and implement DevSecOps pipelines, integrating security controls into CI/CD processes to automate security and compliance testing.
• Infrastructure as Code (IaC): Design and deploy infrastructure as code using tools like Terraform, AWS CloudFormation, and Azure Resource Manager (ARM) templates to aut ...
• High Availability Architectures: Implement multi-region and high availability architectures to meet performance, scalability, and disaster recovery requirements.
• Security Configurations: Configure Web Application Firewalls (WAFs), DDoS protection (e.g., AWS Shield, Azure DDoS Protection), and network firewalls (e.g., AWS Network Firewall, Azure Firewall).
• Access Control: Implement role-based access control (RBAC), least privilege principles, and multi-factor authentication (MFA) across cloud environments.
• Cloud-Native Security Expertise: Provide subject matter expertise in cloud-native security technologies, including identity and access management (IAM), encryption, security monitoring, and vulnerability management.
• Project Management and Leadership: Ensure the successful delivery of cloud security solutions through strong project management and leadership.
• Business Development: Assist in business development efforts, including proposal creation and identifying opportunities to grow cloud security service offerings.
• Client Relationships: Build and nurture positive working relationships with clients, aiming to exceed their expectations.
• Engagement Profitability: Identify opportunities to improve engagement profitability.
• Mentorship: Mentor and develop junior staff, promoting knowledge sharing and skills development within the team.
• Your role as a leader At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We connect our purpose and shared values to identify issues as well as to make an impact that matters to our clients, people and the communities. Additionally, Assistant Managers across our Firm are expected toDevelop diverse, high-performing people and teams through new and meaningful development opportunities.
• Collaborate effectively to build productive relationships and networks.
• Understand and lead the execution of key objectives and priorities for internal as well as external stakeholders.
• Influence stakeholders, teams, and individuals positively - leading by example and providing equal opportunities for our people to grow, develop and succeed.
• Deliver superior value and high-quality results to stakeholders while driving high performance from people across Deloitte.
• Apply their understanding of disruptive trends and competitor activity to recommend changes, in line with leading practices.
• Enough about us, let's talk about you.3+ years of experience in cloud security implementations across multiple CSPs (AWS, Azure, GCP).
• Extensive hands-on experience in designing and implementing Security Landing Zones, cloud security architectures, and securing hybrid/multi-cloud environments.
• Relevant certifications such as AWS Certified Security - Specialty, Microsoft Certified: Azure Security Engineer, Google Cloud Professional Cloud Security Engineer, or CISSP, CCSP are highly desirable.
• Proven experience managing cloud security projects, including landing zone implementations and security automation.
• Expertise in cloud-native security controls, including IAM, key management, network security, and security monitoring tools (e.g., AWS Security Hub, Azure Security Center).
• Strong knowledge of compliance frameworks such as NIST,CSA CCM, and CIS Benchmarks and how to apply them to cloud security implementations.
• Ability to travel 25-50%, on average, based on the work you do and the clients and industries/sectors you serve.
• Bachelor s degree in Computer Science, Information Security, or a related field; Master s degree preferred.
• Limited immigration sponsorship may be available.
• Excellent problem-solving skills and proven ability to lead a team of engineers.
• Ability to optimally communicate and advocate key security requirements to senior stakeholders.
• Strong critical-thinking and problem-solving skills with clear communication.
• Due to volume of applications, we regret that only shortlisted candidates will be notified.
• Please note that Deloitte will never reach out to you directly via messaging platforms to offer you employment opportunities or request for money or your personal information. Kindly apply for roles that you are interested in via this official Deloitte website. #LI-AA1 Requisition ID: 106369In Thailand, the services are provided by Deloitte Touche Tohmatsu Jaiyos Co., Ltd. and other related entities in Thailand ("Deloitte in Thailand"), which are affiliates of Deloitte Southeast Asia Ltd. Deloitte Southeast Asia Ltd is a member firm of Deloitte Touche Tohmatsu Limited. Deloitte in Thailand, which is within the Deloitte Network, is the entity that is providing this Website.

ทักษะ:

Risk Management, Software Development, Kubernetes

ประเภทงาน:

งานประจำ

• Design, develop, and maintain security systems, tools, and best practices across the stack (frontend, backend, mobile, and infrastructure).
• Identify, assess, and mitigate security vulnerabilities through proactive risk management and threat modeling.
• Collaborate with product managers and developers to embed security into the software development lifecycle (SDLC).
• Develop and enforce policies for secure coding, data protection, and incident response.
• Implement robust authentication and authorization mechanisms.
• Conduct regular security assessments, including penetration testing and code reviews.
• Monitor, detect, and respond to security incidents using advanced tools and methodologies.
• Enhance infrastructure security using Kubernetes, Docker, and cloud platforms (GCP, AWS).
• Stay current on emerging threats, vulnerabilities, and security trends, and recommend actionable insights to improve defenses.
• Champion security awareness across the organization, including training sessions and knowledge-sharing activities.
• Ensure compliance with relevant security standards and regulations such as ISO 27001, PDPA, GDPR, SOC 2, or PCI DSS.
• Basic QualificationsProven expertise in application security, cloud security, and infrastructure security.
• Proficiency in securing systems built with technologies such as Node.js, Golang, Elixir, Python, React, Svelte, or Flutter.
• Experience with tools like Docker, Kubernetes, and cloud services (GCP, AWS).
• Strong understanding of cryptographic principles and secure communication protocols.
• Familiarity with CI/CD pipelines and secure DevOps practices.
• Hands-on experience with security tools for vulnerability scanning, penetration testing, and threat detection.
• Deep understanding of database security, especially with PostgreSQL or other relational or non-relational databases.
• Strong analytical and problem-solving skills with a security-first mindset.
• Excellent communication skills and the ability to collaborate effectively in Agile teams.
• Self-motivation, adaptability, and a strong work ethic.
• Preferred Qualifications We re especially excited if you bring:Experience leading security initiatives or mentoring other engineers in security best practices.
• Expertise in compliance frameworks such as ISO 27001, PDPA, GDPR, SOC 2, or PCI DSS.
• Advanced knowledge of security monitoring and incident response systems.
• Strong system design skills with a focus on secure architectures and long-term trade-offs.
• A proven track record of securing fast-paced, high-growth tech environments.
• A passion for securing user-centric products and contributing to their success.
• Perks & Benefits Flat Structure As we continue to grow fast, we strive to retain our culture where everyone is heard, contributes, and grows with the company..
• Work-life Harmony We believe that quality time outside of work is important to sustaining a healthy and happy lifestyle.
• Remote Work Hybrid-mode activated! It comes with the package: flexibility, focus and productivity!.
• Urban Office One breath from Phrom Phong BTS. No sweat whatsoever! The office should also feel like a second home so we dedicated a lot of care and resources into building the best environment for you to wake up to every morning.
• Fun Workshop The best relationships are built over new experiences, that s why we have workshops filled with a range of activities for you to look forward to and enjoy.
• Game Tournament It s getting fun and competitive! Challenge doesn t only have to come from work. Own the championship and show the peeps how great of a gamer (and player) you are.
• Group Insurance Health comes first, we know, don t worry, we ve got you covered.
• Health & Wellness Only a healthy army wins the war. We invest to take care of you from physical, mental and happiness-level. Adopted health & wellness applications plus activities to make sure everyone here is on cloud nine

ประเภทงาน:

งานประจำ

Greenline Synergy provides the information security governance to the BDMS hospitals which is a framework of policies, practices, and strategies that align organizational resources toward protecting information through cybersecurity measures.

ทักษะ:

Quality Assurance, Assurance, Javascript

ประเภทงาน:

งานประจำ

• Architecting and developing high-performance, cross-platform web applications.
• Leading the design and implementation of Backend-for-Frontend (BFF) services.
• Establishing and enforcing best practices for front-end testing and quality assurance.
• Driving initiatives to optimize Core Web Vitals and overall application performance.
• Owning a big chunk of Agoda's system all the way from the north-star & vision down to the bytecode level.
• Enabling impactful collaboration and cross-team projects on big projects, making a dent in the quality of our services, code & architecture.
• Providing thoughtful feedback, nurture an inclusive engineering environment, and champion engineering fundamentals. Bring out the best from your fellow engineers.
• Identifying and implementing opportunities for optimization across the technology stack, focusing on cost, efficiency, velocity & dev happiness.
• Exhibiting technical leadership throughout the broader organization, conveying complex technical trade-offs to non-techies such as business owners & C-suite executives.
• Overall experience of 10+ years in engineering roles.
• Proven hands-on experience with owning production services with significant impact on design, development, deployment, monitoring & evolution.
• Curiosity, staying on the cutting-edge of technological improvements and open source advancement.
• Advanced proficiency in modern JavaScript frameworks and state management solutions.
• Deep understanding of cross-platform development challenges and solutions.
• Extensive experience with Backend-for-Frontend (BFF) patterns and micro-frontend architecture.
• Expert-level knowledge of front-end testing methodologies, tools, and best practices.
• Proven track record of optimizing applications for Core Web Vitals and web performance.
• Strong understanding of web security, accessibility standards, and SEO best practices.
• Can perform deep research & take decisions on complex projects. Can easily toggle between running as a lone wolf and also works great as part of a pack.
• Strong communication skills, with the ability to explain complex technical details to stakeholders at all levels.
• Bachelor's degree in Computer Science, Engineering, or a related field.
• A Master's or Ph.D. in a technical field.
• Deep understanding of React and state managers (Redux, Zustand, Valtio).
• Experience with C# and.Net Core.
• Experience with Kotlin or other JVM languages.
• This position is based in Bangkok, Thailand (Relocation Provided).
• Equal Opportunity Employer.
• At Agoda, we pride ourselves on being a company represented by people of all different backgrounds and orientations. We prioritize attracting diverse talent and cultivating an inclusive environment that encourages collaboration and innovation. Employment at Agoda is based solely on a person's merit and qualifications. We are committed to providing equal employment opportunity regardless of sex, age, race, color, national origin, religion, marital status, pregnancy, sexual orientation, gender identity, disability, citizenship, veteran or military status, and other legally protected characteristics.
• We will keep your application on file so that we can consider you for future vacancies and you can always ask to have your details removed from the file. For more details please read our privacy policy.
• To all recruitment agencies: Agoda does not accept third party resumes. Please do not send resumes to our jobs alias, Agoda employees or any other organization location. Agoda is not responsible for any fees related to unsolicited resumes.

ทักษะ:

Compliance, Financial Reporting, Finance

ประเภทงาน:

งานประจำ

• Operate as first point of contact for auditors and external stakeholders related to the organization's SOX compliance program.
• Ensure the design, implementation, and maintenance of effective internal controls over financial reporting (ICFR).
• Prepare and present reports on control deficiencies, remediation plans, and progress to management.
• Partner with leaders in Finance, Information Security, Data Privacy, Compliance and business areas to improve effectiveness and efficiency of risk management activities.
• Develop and implement additional value-added enterprise risk management initiatives that support the organization's overall risk management and commercial objectives.
• Provide oversight and advice on the compliance with the Risk Management and Control Framework.
• Support the development and implementation of risk management strategy.
• Collaborate with stakeholders to more fully develop and articulate the company's risk management framework including clarifying roles and responsibilities of three lines of defense and developing and implementing an approach to manage risk within the company's risk tolerance.
• Supports the department on preparation for any Enterprise Risk Management related examinations conducted by external parties such as regulatory agencies or internal audit.
• Supporting the Head of Risk and Control with the implementation of the Enterprise Risk Management (ERM) Framework in order to establish an effective risk based system to identify, measure, monitor, and control enterprise-wide risks.
• Implementation and maintenance of a risk control self-assessment system for enterprise risk management.
• Building, maintaining and enhancing business relations with department and business heads for the smooth implementation of risk management activities across the organization.
• Define and maintain policies and SOPs for ERM framework components (risk register, RCSAs, issue management, incident management).
• Role Requirements.
• Strong understanding of overall products, processes and systems, able to connects the dots and effectively assist in enabling business objectives from risk and control view.
• 10+ years of progressive experience in audit, risk management, or equivalent.
• Strong communication skills and the ability to engage effectively with Senior Leadership.
• Demonstrated proficiency in managing Sarbanes Oxley compliance in a highly complex environment.
• Effective in prioritization and deliver on timely manner even-through an unexpected event or high-pressure situation.
• Able to learn quickly and takes ownership.
• Preferred Skills.
• 2(+) years of risk management/audit experience in Financial Technology/Services.
• Demonstrated experience in leading a team.
• CPA, CIA, and/or CISA.
• Equal Opportunity Employer.
• At Agoda, we pride ourselves on being a company represented by people of all different backgrounds and orientations. We prioritize attracting diverse talent and cultivating an inclusive environment that encourages collaboration and innovation. Employment at Agoda is based solely on a person's merit and qualifications. We are committed to providing equal employment opportunity regardless of sex, age, race, color, national origin, religion, marital status, pregnancy, sexual orientation, gender identity, disability, citizenship, veteran or military status, and other legally protected characteristics.
• We will keep your application on file so that we can consider you for future vacancies and you can always ask to have your details removed from the file. For more details please read our privacy policy.
• To all recruitment agencies: Agoda does not accept third party resumes. Please do not send resumes to our jobs alias, Agoda employees or any other organization location. Agoda is not responsible for any fees related to unsolicited resumes.

ประสบการณ์:

8 ปีขึ้นไป

ทักษะ:

Project Management, Industrial Engineering, English

ประเภทงาน:

งานประจำ

• Bachelor's degree in a technical field, or equivalent practical experience.
• 8 years of experience in program management.
• Experience with technical teams, project management, engineering, and construction of data centers or mission facilities.
• Experience with data center equipment/environments (e.g., civil/structural, electrical switchgear, generators, chillers, security monitoring).
• Ability to communicate in Thai and English fluently to support vendor and contractor management in this region.
• Preferred qualifications:Master's degree in Architectural, Electrical, Mechanical or Industrial Engineering, Construction Management, or related technical field.
• Certification in Construction manager, Project Management Professional (PMP), registered architect, etc.
• 10 years of experience managing multi-group/disciplinary construction projects with civil, architectural, electrical, mechanical, controls, security monitoring, fire safety, networking/fiber, server equipment, systems, and infrastructure.
• Experience in requirements gathering, resource organization, task prioritization, and scheduling and achieving objectives within set goals.
• Experience managing vendor relationships and an understanding of standard practices in the design and construction industry, and pursuit of industry leading practices.
• Knowledge of fast track design build processes.
• Google's projects, like our users, span the globe and require managers to keep the big picture in focus while being able to dive into the unique engineering challenges we face daily. As a Technical Program Manager at Google, you lead complex, multi-disciplinary engineering projects using your engineering expertise. You plan requirements with internal customers and usher projects through the entire project lifecycle. This includes managing project schedules, identifying risks and clearly communicating them to project stakeholders. You're equally at home explaining your team's analyses and recommendations to executives as you are discussing the technical trade-offs in product development with engineers.Using your extensive technical and leadership expertise, you manage projects of various size and scope, identifying future opportunities, improving processes and driving the technical directions of your programs.
• Behind everything our users see online is the architecture built by the Technical Infrastructure team to keep it running. From developing and maintaining our data centers to building the next generation of Google platforms, we make Google's product portfolio possible. We're proud to be our engineers' engineers and love voiding warranties by taking things apart so we can rebuild them. We keep our networks up and running, ensuring our users have the best and fastest experience possible.
• ResponsibilitiesProvide management of data centers at multiple scales.
• Manage and coordinate the needs of multiple partner teams, while managing changes and maintaining a focus on keeping the project on schedule, budget, quality, and safety.
• Manage technical projects in a rapidly changing industry.
• Deliver data center facility from start to commissioning and understand the nuances and risks that will need to be managed.
• Google is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See alsoGoogle's EEO Policy andEEO is the Law. If you have a disability or special need that requires accommodation, please let us know by completing ourAccommodations for Applicants form.

ประสบการณ์:

1 ปีขึ้นไป

ทักษะ:

Assurance, Finance, Quality Assurance, English

ประเภทงาน:

งานประจำ

• Perform IT Audit and Advisory services for various industries/sectors (e.g., Financial Services, Manufacturing, Automotive, Telecommunication, Life Science & Hospitality, Energy, Consumer Product, etc.).
• Participate in significant meetings with client's management to communicate detailed audit findings and recommendations, as assigned.
• Perform any other tasks or assignments.
• Your role as a leader:At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We connect our purpose and shared values to identify issues as well as to make an impact that matters to our clients, people and the communities. Additionally, Analyst, Consultant, Senior Consultant across our Firm are expected to:Actively seek out developmental opportunities for growth, act as strong brand ambassadors for the firm as well as share their knowledge and experience with others.
• Respect the needs of their colleagues and build up cooperative relationships.
• Understand the goals of our internal and external stakeholder to set personal priorities as well as align their teams work to achieve the objectives.
• Constantly challenge themselves, collaborate with others to deliver on tasks and take accountability for the results.
• Build productive relationships and communicate effectively in order to positively influence teams and other stakeholders.
• Offer insights based on a solid understanding of what makes Deloitte successful.
• Project integrity and confidence while motivating others through team collaboration as well as recognising individual strengths, differences, and contributions.
• Understand disruptive trends and promote potential opportunities for improvement.
• RequirementsEducation background in Accounting, Finance, and/or other IT-related fields (eg., AIS/MIS, Computer Engineering, Computer Science, etc).
• At least 1-3 years experience in IT Audit / IT Security / IT Quality Assurance, or Financial Audit with some IT knowledge (e.g., access control, change management).
• Knowledge in Audit concept / technique, and willing to learn more in IT Audit and Advisory services.
• Can do" attitude and able to work either individually or with team under pressure (e.g., quality and timeliness of audit reports).
• Experiences in using CAAT or Data Analytic & Visualization tools (e.g., R, Python, Tableau, PowerBI, etc) would be advantage.
• Verbal and written communication skills in both Thai and English.
• Due to volume of applications, we regret that only shortlisted candidates will be notified.
• Please note that Deloitte will never reach out to you directly via messaging platforms to offer you employment opportunities or request for money or your personal information. Kindly apply for roles that you are interested in via this official Deloitte website. Requisition ID: 36464In Thailand, the services are provided by Deloitte Touche Tohmatsu Jaiyos Co., Ltd. and other related entities in Thailand ("Deloitte in Thailand"), which are affiliates of Deloitte Southeast Asia Ltd. Deloitte Southeast Asia Ltd is a member firm of Deloitte Touche Tohmatsu Limited. Deloitte in Thailand, which is within the Deloitte Network, is the entity that is providing this Website.

ทักษะ:

Software Development, Jenkins, Automation

ประเภทงาน:

งานประจำ

• Develop and maintain infrastructure-as-code (IAC) using tools like Terraform for automated infrastructure provisioning.
• Implement CI/CD pipelines to streamline the application deployment process.
• Design and implement highly available and fault-tolerant systems, ensuring maximum uptime for critical services.
• Implement observability systems to monitor service availability and performance to improve reliability.
• Implement centralized logging solutions to facilitate debugging and troubleshooting.
• Collaborate with security teams to implement best practices for secure software development and infrastructure.
• Roll out fixes and upgrades to software as needed.
• Respond to incidents, perform root cause analysis, and implement preventive measures to avoid similar issues in the future.
• Qualifications Bachelor s degree in Information Technology, Computer Science, Computer Engineering, or a related field.
• Experience with CI/CD tools (e.g., Jenkins, GitLab CI/CD) and automation frameworks.
• Proficiency in cloud platforms such as AWS, Azure, and associated services.
• Knowledge of IAC tools like Terraform or Azure ARM.
• Familiarity with monitoring and logging tools like Prometheus, Grafana, ELK stack, APM, etc.
• Good understanding of IT Operations.
• Strong problem-solving skills and the ability to troubleshoot complex issues.
• Excellent communication and teamwork skills to collaborate effectively across various teams.
• We're committed to bringing passion and customer focus to the business. If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us.

ประสบการณ์:

3 ปีขึ้นไป

ทักษะ:

Oracle, Project Management, Automation, English

ประเภทงาน:

งานประจำ

• This role will require you to relocate to Bangkok, Thailand (Relocation support provided).
• In This Role, You'll Get To.
• Drive People Technology projects and identify tech innovations and continuous improvements to meet business needs, simplify work and improve employee experience.
• Build simple to complex reports, integrations or automated solutions using Workday and other tools with other platforms such as Zendesk, Greenhouse, Oracle and others.
• Support, enhance and/or optimize existing automated solutions and processes by solving technical issues.
• Partner closely with key business stakeholders to assess and address overall technology needs and align on priorities, timelines, issue resolution, testing and deployment plans.
• Explore out-of the-box solutions to solve complex business problems and address system limitations.
• Implement and test major system enhancements.
• Collaborate with our solutions team to design and implement custom applications.
• Skill up / coach more junior members of the team.
• Lead system-related trainings for Agoda employees and end-users across the People Team.
• What You'll Need to Succeed.
• At least 3 years of solid HRIS integrations experience (Workday experience required).
• Has strong experience with Workday Integrations and Reporting tools: PECI, Core Connectors, EIB, Studio, API, BIRT.
• Has strong knowledge in Workday Core HCM and other key areas (Business Processes, Security and other system configuration).
• Extensive experience in implementing and supporting PECI.
• Has strong experience in systems implementation and/or systems integrations.
• Has strong project management skills.
• Ability to manage stakeholder expectations.
• Ability to understand and explain key HRIS issues and address stakeholder requirements.
• Ability to leverage data to plan next steps.
• Familiar with agile methodology.
• Has good analytical and problem-solving skills.
• Fluency in English required.
• It's Great If You Have.
• Experience in automation tools and programming languages outside of Workday space (MS Power Apps, SQL, HTML).
• Presentation/Workshop facilitation.
• Possesses a global perspective and experience working with diverse cultures.
• Resilient, self-motivated, results-oriented and has a great sense of ownership.
• Collaborative and resourceful.
• Able to move fast, adapt to changes.
• Equal Opportunity Employer.
• At Agoda, we pride ourselves on being a company represented by people of all different backgrounds and orientations. We prioritize attracting diverse talent and cultivating an inclusive environment that encourages collaboration and innovation. Employment at Agoda is based solely on a person's merit and qualifications. We are committed to providing equal employment opportunity regardless of sex, age, race, color, national origin, religion, marital status, pregnancy, sexual orientation, gender identity, disability, citizenship, veteran or military status, and other legally protected characteristics.
• We will keep your application on file so that we can consider you for future vacancies and you can always ask to have your details removed from the file. For more details please read our privacy policy.
• To all recruitment agencies: Agoda does not accept third party resumes. Please do not send resumes to our jobs alias, Agoda employees or any other organization location. Agoda is not responsible for any fees related to unsolicited resumes.

ทักษะ:

Assurance, Compliance, Risk Management, English

ประเภทงาน:

งานประจำ

• Manage multiple engagements at same time for various industries/sectors (e.g., Financial Services, Manufacturing, Automotive, Telecommunication, Life Science & Hospitality, Energy, Consumer Business, etc.).
• Provide both IT Audit support to Financial Audit team, and IT Risk Advisory services to clients (e.g., IT General Control & Application Controls Review, IT Compliance Review, IT Governance & Security Audit, IT Audit for SOX/JSOX/ICFR, Third Party Assurance & Risk Management, Data Analytic for Auditing, etc.).
• Actively involve for advisory proposal development with fit-for-purpose approach & client service mindset, and also manage the engagements, esp. for quality and timeliness of our deliverables, including staff utilization.
• Coach the team, and demonstrate leadership roles and certain skillsets (e.g., project & resource management, problem-solving, negotiation, sales & services, communication & presentation, etc) to support our end-to-end processes of each engagement (e.g., offering the service, planning/execution/reporting, monitoring staff utilization, billing to clients).
• Facilitate use of Audit or other technology-based tools/techniques to support auditing.
• Perform any other tasks or assignments.
• Your role as a leader
• At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We connect our purpose and shared values to identify issues as well as to make an impact that matters to our clients, people and the communities. Additionally, Manager / Senior Manager across our Firm are expected to:Develop diverse, high-performing people and teams through new and meaningful development opportunities.
• Collaborate effectively to build productive relationships and networks.
• Understand and lead the execution of key objectives and priorities for internal as well as external stakeholders.
• Align your team to key objectives as well as set clear priorities and direction.
• Make informed decisions that positively impact the sustainable financial performance and enhance the quality of outcomes.
• Influence stakeholders, teams, and individuals positively - leading by example and providing equal opportunities for our people to grow, develop and succeed.
• Lead with integrity and make a strong positive impact by energising others, valuing individual differences, recognising contributions, and inspiring self-belief.
• Deliver superior value and high-quality results to stakeholders while driving high performance from people across Deloitte.
• Apply their understanding of disruptive trends and competitor activity to recommend changes, in line with leading practices.
• QualificationsEducation background in Accounting, Finance, and/or other IT-related fields (e.g., MIS/AIS, Computer Engineering, Computer Science, etc).
• At least total 7-10 years experience (including a few years of managerial experiences) in IT related fields, esp. for IT Audit & Risk Advisory in Audit & Consulting firms or IT Audit / Risk Management / Compliance in other corporate companies (e.g., Financial Service, Telecommunication, Consumer Products).
• Experiences in review over IT process/general controls and application controls, incl. IT security configurations for each IT component (e.g., Operating System, Database, Network).
• Relevant profession certifications (e.g., CISA, CISSP, CRISC, ISO27001) is preferred.
• Knowledge of Audit concept, IT regulatory requirements (e.g., BOT, SEC, OIC, PDPA), and IT-related controls & standards (e.g., ISO27001, COBIT, ITIL, NIST).
• Experiences in using Data Analytic & Visualization tools (e.g., R, Python, Tableau, PowerBI, etc) would be advantage.
• Verbal and written communication skills in both Thai and English.
• Due to volume of applications, we regret that only shortlisted candidates will be notified.
• Candidates will only be contacted by authorised Deloitte Recruiters via the firm s business contact number or business email address. Requisition ID: 106108In Thailand, the services are provided by Deloitte Touche Tohmatsu Jaiyos Co., Ltd. and other related entities in Thailand ("Deloitte in Thailand"), which are affiliates of Deloitte Southeast Asia Ltd. Deloitte Southeast Asia Ltd is a member firm of Deloitte Touche Tohmatsu Limited. Deloitte in Thailand, which is within the Deloitte Network, is the entity that is providing this Website.