เงื่อนไขการค้นหา

ประเภทงาน:

งานประจำ

• Responsible for security management in Suksawas Sortation Center, ensuring the safety of company assets and personnel.
• Develop and implement comprehensive security policies and procedures in compliance with laws and regulations and Alibaba International's security standards.
• Monitor and assess potential security risks, establish preventive measures, and minimize the occurrence of security incidents.
• Coordinate and lead the security team, conducting regular training to build skills and competence of security manpower.
• Maintain a good relationship with local law enforcement agencies to handle potential security incidents and ensure compliance.
• Execute security protocol to manage and enforce the compliance of parties involved including staff, IC, subcon or etc.
• Managing facility and infra structure support in build up cctv coverage in place insuring it been manage function as intended.
• Bachelor's degree or above in Security Management, Law, or related fields.
• More than ten years of experience in security management, with a preference for experience in Thailand or similar regions.
• Familiarity with Thai security regulations and International's security management system with strong risk assessment capabilities.
• Qualified TAPA FSR (if applicable) would be advantage.
• Excellent leadership and team collaboration skills, capable of guiding and motivating team members effectively.
• Fluent in Thai and English, with strong communication and coordination abilities to work effectively with multiple departments.

ทักษะ:

Network Infrastructure, Project Management, VMware, English

ประเภทงาน:

งานประจำ

• Design/Implement Cyber Security project for Private Cloud and Global Cloud (CloudX, AWS and MS Azure).
• Solution integration and migration.
• Control suppliers in the assigned project.
• Do project quality control.
• Do project risk assessment and management.
• Do project UAT with customer.
• Create final project document.
• Do customer project training (OJT).
• At least 4 years of Cyber Security experience.
• Bachelor s degree in Computer Engineering, Information Technology, Computer Science or related fields.
• Experience in installation and operation Security product e.g. Firewall, IPS, SIEM, NAC, Anti-Virus, Endpoint.
• Knowledge on network security and cloud technology.
• Knowledge of monitoring tools (What s up gold, Zabbix, Nagios).
• Has valid Security product Certification e.g. Foritnet NSE3-7, PaloAlto PCNSA, PCNSE, Cisco CCNA, CCNP Security.
• Experienced in ITIL framework.
• Senior Engineer/Engineering Specialist (Network and Security).
• Configure and install various network devices and services (e.g., routers, switches, firewalls, load balancers, VPN, QoS).
• Managing and troubleshooting SD-WAN solutions, Wireless Lan and Cybersec solution.
• Perform network maintenance and system upgrades including service packs, patches, hot fixes, and security configurations.
• Monitor performance and ensure system availability and reliability.
• Monitor system resource utilization, trending, and capacity planning.
• Provide Level-2/3 support and troubleshooting to resolve issues.
• Work within established configuration and change management policies to ensure awareness, approval and success of changes made to the network infrastructure.
• Select and implement security tools, policies, and procedures in conjunction with the company s security team.
• Work with vendors and other IT personnel for problem resolution.
• Bachelor s degree in computer engineering, computer science, IT, or related fields.
• At least 3-5 years of experience in network & security areas.
• Knowledge and Experience with network design, implementation, service support, and troubleshooting.
• Knowledge and Experience with SD-WAN, Network Security and CyberSec solutions.
• Knowledge and Experience in LAN/Datacenter networking, TCP/IP, DNS, DHCP, SSL, HTTP, Proxy, Web Application Firewall.
• CCNA, CCNP, CompTIA Network+, Fortigate, PaloAlto product certificate is advantage.
• Good communication, analytical thinking, and effective communication skills with interpersonal and problem-solving skill.
• Able to work outside working hours.
• Good command of read, listen, written and speaking English.
• On-call support during non-office hours.
• Engineering Specialist (Project Engineer).
• Manage CCII (Cloud, Cyber Security, IOT, ICT) project for single and multi-tower solution for Property, Retail, Conglomerate, and international customer segments.
• Be a committee of AIS bid management for validating large projects at TCV > 10MB.
• Manage project stakeholders to meet expectation and requirement.
• Communicate project progress to stakeholders.
• Plan and manage project issue and risk with proper actions.
• Plan and manage project to meet project objective, within timeline, project budget, scope and give customer satisfied.
• Manage project resource both internal delivery and external suppliers.
• Bachelor's degree or higher in computer science, business, or a related field.
• 8-15 years of project management and related experience.
• Strong in communication and stakeholder management.
• Project Management Professional certification preferred.
• Proven ability to solve problems creatively.
• Strong familiarity with project management software tools, methodologies, and best practices.
• Experience seeing projects through the full life cycle.
• Excellent analytical skills.
• Strong interpersonal skills and extremely resourceful.
• Proven ability to complete projects according to outlined scope, budget, and timeline.
• Senior Engineer (System Infrastructure)
• Implement Server, Storage, Virtualization, Backup system for Enterprise customer.
• Hypervisor and Operating system configuration and customization.
• Network and firewall integration for Cloud infrastructure.
• Hand-over completed solution to related team.
• At least 3 years experience on Server, Storage, VMware and Veeam delivery.
• Strong knowledge of Cloud environment and Operating system. (Windows and Linux).
• Basic skill of Database and Middleware installation.
• Strong organizational skills and ability to take on multiple assignments.
• Experienced firewall and cloud network implementation.
• Ability to occasionally work or assign work during nights/weekends during critical incidents per on-call rotation or major project implementations.
• Good command of English.
• VMware VCP or Linux certificate knowledge is an advantage.

ประสบการณ์:

7 ปีขึ้นไป

ทักษะ:

System Security, Windows Server, Linux

ประเภทงาน:

งานประจำ

• Identify and evaluate areas for improvement in detection, prevention, and cyber incident response.
• Work closely with stakeholders to develop and follow up on remediation plans.
• Provide expert consultation on mitigating strategies and actionable remediation plans to asset owners.
• Collaborate with various teams to create, implement, and monitor effective remediation strategies.
• Apply knowledge of IT infrastructure, with experience as a system administrator or system engineer, to enhance cybersecurity measures.
• Utilize an understanding of offensive and defensive cybersecurity strategies (e.g., red and blue teams).
• Perform penetration testing or demonstrate a strong understanding of penetration testing methodologies to assess the security of IT systems.
• Use computer forensic tools to examine and analyze electronic media in suspected hacking cases.
• Conduct tasks related to malware analysis and reverse engineering to identify and mitigate threats.
• Define a course of action if a security problem exists and explain in detailed technical reports what occurred when an incident happens, including the reasons it occurred, and the response taken.
• Document incidents thoroughly, providing detailed technical reports that include the cause of the incident, and the response measures implemented.
• Build relationships with other entities responsible for conducting cyber threat analyses, ensuring effective collaboration and information sharing.
• Bachelor s degree / master s degree or higher in Computer Engineering, Information Technology, Computer science or related field.
• Proficiency with SIEM, UBA, and SOAR tools.
• Experience with system monitoring tools.
• Coding ability in C, C++, C#, Java, ASM, PERL, PHP, and PowerShell.
• Knowledge of backup and archiving techniques.
• Use of enterprise system monitoring tools.
• Understanding of cloud computing.
• Proficiency in UNIX.
• Knowledge of network communication (IP/TCP).
• Familiarity with computer hardware systems.
• Experience with web-based application security.
• Strong knowledge of Windows and Linux Operating Systems.
• Experience in identifying and evaluating cybersecurity risks and providing actionable insights.
• Previous experience as a penetration tester (pentester) is highly beneficial.
• Experience as a system administrator/system engineer is advantageous.
• Familiarity with computer forensic tools and techniques.
• Experience in malware analysis and reverse engineering.
• Ability to work well under pressure while handling multiple tasks.
• Remark: The Bank requires the verification of criminal records prior consideration for employment to ensure secured and maintain standards of the organization.

ประสบการณ์:

3 ปีขึ้นไป

ทักษะ:

System Security, Windows Server

ประเภทงาน:

งานประจำ

• Provide input and security consultation in a project-based environment as well as assisting operational of IT Security components with functional security requirements.
• Evaluate new projects and applications as they relate to security architecture and design; audit existing deployments and analyse gaps against security practices and standards.
• Conduct application vulnerability assessment, secure code review, and security penetration testing for new projects, enhancement projects, and periodic assurance to com ...
• Implement and operate DevSecOps on projects/applications that use DevOps process.
• Track, enforce, and consult to resolution the closure of security risks including review plans and monitor progress or remedial actions according to security requirements, security design, application vulnerability, and penetration testing issues.
• Periodically review security requirements to align with Bank s policies and regulations.
• Support periodic security audits.
• Manage third parties involved in IT Security Advisory and Assurance.
• Bachelor's or Master s Degree in Computer Science, Engineering, Information Systems or equivalent.
• Minimum 3 years in IT Security Advisory, Security Assurance, Threat Hunting plus experience working in or closely with IT Application, Enterprise Architect, and IT Risk management.
• Knowledge of Security Framework and Concepts, Compliance, Risk and Regulations, PCI DSS, OWASP, COBIT.
• Experience in performing comprehensive and authoritative technical analysis of the security readiness and compliance of applications.
• The ability to oversee pentesting to find vulnerabilities in all elements of a security system, understand security vulnerabilities, secure code review and remediation.
• Data and information management, including classification, retention and destruction. It also means keeping corporate and personal data both private and secure while needed, and destroyed when it is no longer needed.
• Knowledge of all applicable laws and compliance frameworks to enforce compliance.
• Remark: The Bank requires the verification of criminal records prior consideration for employment to ensure secured and maintain standards of the organization.

ทักษะ:

Research, Automation

ประเภทงาน:

งานประจำ

• Lead the Cyber Security Incident Response (CSIR) team in day-to-day operations, managing complex incidents, and communicating progress to senior management.
• Ensure clear incident documentation and oversee the implementation and follow-up of realistic remediation plans.
• Detect and independently respond to security incidents across the organization.
• Assume the role of an Incident Manager during major security events.
• Collaborate with management to execute and iterate on the incident response process.
• Develop the threat-response matrix, incident-response playbook, and processes. Design and implement metrics for incident response, continually improving efficiency and effectiveness.
• Stay informed of emerging threats, security technologies, and relevant research for continuous improvement.
• Identify and mitigate complex security threats before exploitation.
• Implement and monitor security measures for infrastructure protection.
• Utilize log analysis platforms for security analytics and threat detection.
• Perform root cause analysis (RCA) and incident reviews.
• Mentor other members of the Security Incident Response Team.
• Help the team grow their skills and experience.
• Provide security recommendations to security architecture, issues, and features.
• Create a supportive environment for team members.
• Build strong partnerships with the other departments as a supporter of the cyber security incident response team. (CSIRT).
• Train team members to prioritize efforts and ensure alignment with company direction.
• Be a role model for positive thinking, and conflict resolution.
• Draft and successfully deliver on quarterly OKRs (Objectives and Key Results).
• Bachelor's degree or higher in Computer Engineering, Computer Science, IT, or related fields.
• A minimum of 5 years of working experience in Security Operations (SecOps), incident response, threat analysis, incident management, or relevant investigations during medium and large-scale security events.
• Robust understanding of security issues, mitigations, and a solid grasp of the current global threat landscape.
• Experience in security solutions, secure network design, firewalls, authentication, authorization systems, log analysis platforms, security incident response, monitoring, and intrusion detection.
• Profound knowledge of attacks, mitigation methods, and threat modeling.
• Experience in digital forensics, SOAR automation, and cloud providers like GCP, AWS, and Azure is advantageous.
• Strong written and verbal communication skills are required, including conducting presentations and creating security reports. Experience with executive-level communications is a plus.
• Substantial engineering mindset.
• Capability to build working relationships with key stakeholders.
• Capability to make concrete progress in the face of ambiguity and imperfect knowledge.
• Hold the certificate of CompTIA Security +, CompTIA CySA+, and others would be an added advantage.

ประสบการณ์:

3 ปีขึ้นไป

ทักษะ:

Research, System Administration, Android

ประเภทงาน:

งานประจำ

• Implements IT security improvements by assessing current situation; evaluating trends; anticipating requirements.
• Protects IT system by defining access privileges, control structures, and required resources.
• Process & analyze to gain insights on past IT areas on, current or potential attacks and threats that pose a risk to the organization.
• Primary point of contact with Internal Audit. Periodically review, update, implement and communicate changes to IT policies and procedures and General IT Controls. Facilitate internal and external audit processes by participating in scoping discussions and walk-throughs, delivering evidence that controls are operating as defined, remediating deficiencies, and acting on recommendations.
• Safeguards IT infrastructure and system as well as information system assets by identifying and solving potential and actual security problems.
• Research cyber security topics and promote Cyber security awareness throughout Thaioil.
• EDUCATION.
• Bachelor s degree in computer science, Information Systems, or equivalent education or work experience.
• EXPERIENCE.
• 3+ years of prior relevant experience, especially in IT working environment.
• Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.
• Hands-on experience analyzing high volumes of logs, network data (e.g., Netflow, FPC), and other attack artifacts in support of incident investigations.
• Experience with vulnerability scanning solutions.
• Familiarity with Vulnerability Management program.
• Proficiency with any of the following: Anti-Virus, HIPS, ID/PS, Full Packet Capture, Host-Based Forensics, Network Forensics, and RSA Security.
• Have knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform.
• Understanding of mobile technology and OS (i.e., Android, iOS, Windows), VMware technology, and Unix and basic Unix commands.
• OTHER REQUIREMENTS.

ทักษะ:

Data Analysis, Computer Security

ประเภทงาน:

งานประจำ

• Participate in the preparation of audit guidelines (Audit Program), responsible audit units, and determine audit procedures to ensure that the audit achieves its objectives.
• Collect, analyze, and evaluate information obtained from inspections. to the adequacy and efficiency of the internal control system.
• Be a main contactor for examining IT systems, applications, and vulnerabilities in security measures.
• Identify issues and devise practical solutions.
• Ensure the organization's IT practices adhere to industry regulations and internal policies.
• Bachelor s or higher degree in Information Technology, Business Information Systems, Computer Engineering, Computer Science or any related field.
• Understanding of IT governance frameworks.
• Passed training in IT Governance or IT Best Practice or information auditing standards.
• Certificate of qualification in IT Audit or Security.
• Technical skill: Data analysis and interpretation / IT audit procedures and methodologies.
• Location: Lao Peng Nguan Tower 1 Vibhavadi Rangsit Road, Chatuchak.
• Working Days: Mon-Fri.
• Times: 8.30 a.m. - 05.00 p.m..

ประสบการณ์:

3 ปีขึ้นไป

ทักษะ:

Compliance, Legal, Risk Management

ประเภทงาน:

งานประจำ

• Develop data security policy review, data security policy exceptions, and control risk mitigation processes.
• Define the security controls for access management lifecycle (i.e., requirement for creation, deletion, transfer and review).
• Operate:Advice on technology relating to Data Privacy and Protection (i.e., PDPA) related security controls implementation.
• Drive and support data security controls such as Data Loss Prevention (DLP), Data Masking, Data Encryption capabilities to protect sensitive data.
• Drive compliance (or collaborate with compliance team) to organization security policies, standards, metrics, and legal requirements.
• Communicate and enforce security policies, rules, and standards.
• Conduct impact assessment of data initiatives from a security point of view.
• Ensure the cryptographic keys and related components are safety and protection of confidential information.
• Resolve data security audit and risk findings.
• Review and develop security controls to current access controls policies and procedures.
• Provide requirements for create and manage roles, access rights (includes privileged access), authentication and identity within the environment.
• Conduct periodic review of user access.
• Review, approve and monitor the usage of privileged access.
• EDUCATION.
• Bachelor s degree in computer science, Information Systems, or equivalent education or work experience.
• EXPERIENCE.
• Work experience in privacy, compliance, information security, auditing or a related field may also be an accepted alternative, according to Cybersecurity.
• Minimum 3 years of experience in and strong knowledge of privacy, data, operational risk management, information security, or related areas in IT.
• OTHER REQUIREMENTS.

ประสบการณ์:

5 ปีขึ้นไป

ทักษะ:

Problem Solving, English

ประเภทงาน:

งานประจำ

• Design, implement and maintain the IT Security of the organization which involves developing and executing security strategies, standards and procedures to protect IT assets from cyber threats and vulnerabilities.
• Develops solution conceptual designs and solution blueprints for IT projects.
• Design security architecture elements to mitigate emerging threats.
• Reviewing security measures and recommending to implementing enhancements.
• Review and advise security solution architect for the proposed system such as: Network Segmentation, Application protection, Defense-in-depth, Remote Access, Encryption Technologies.
• Conducting security advisory consultancy and working with RED and BLUE team for security testing along the pipeline of the system delivery.
• Bachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 5 years of experience of IT Security Advisory, Penetration tester or Enterprise Architect or related role.
• Comprehensive understanding of the IT Security Concept, Security Architect, Risk assessment.
• Ability to analyst finding form Offensive and Defensive Security team.
• Ability to analyze end-to-end security processes and provide advice in order to reduce risk to acceptable levels.
• Strong analytical and problem solving.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, and etc.
• Professional Certificated related to work e.g. (CISSP, CSSLP, CDPSE, OSCP, TOGAF) is desirable.
• Location: True Digital Park, Punnawithi.

ประสบการณ์:

8 ปีขึ้นไป

ทักษะ:

Business Development, Assurance, Software Development, English

ประเภทงาน:

งานประจำ

• Design and work on cybersecurity framework based on business objectives and strategic imperatives of the client organisation including goals, vision, mission, and operational plans.
• Data pattern and trend identification via metric analysis, driving operational excellence and improvement.
• Designing and implementing data protection and privacy programs for our clients and supporting their business.
• Evaluating the data protection and privacy practices of our clients and Conducting Privacy Impact Assessments.
• Monitor processes and drive improvements in efficiency and quality of cybersecurity programs.
• Assist in development of workflows for transitioning strategic plans into implementation plans and operational readiness.
• Facilitate strategic planning initiatives, documentation, technical roadmaps and security tool rationalisation.
• Assist in designing the security organisation structure including cyber defense.
• Develop security policies, procedures, standards based on the security strategy and roadmap.
• Review of cybersecurity policies and processes to identify gaps in design of control based on comprehensive assessment framework.
• Maintain continuous communication with key stakeholders in support of the security strategy, and plan and solicit feedbacks, to uplift the programs and capabilities.
• Conduct security process implementation reviews to assess security effectiveness and reporting.
• Conduct Current State Assessment of cybersecurity practices against the defined controls and provide recommendations for to-be state.
• Run Cyber Security Diagnostic Assessments and develop programs for cybersecurity skill development and enhancement.
• Provide certification advisory across Information Security Management System (ISMS).
• Implement security controls for realisation of the certification requirements and provide technology roadmap based on the security strategy.
• Assisting in delivering privacy projects to acting as a subject matter expert on them or to leading a team towards excellent client experience.
• Supporting and guiding our clients in adhering to the complex web of relevant national and international regulations (e.g. EU General Data Protection Regulation).
• Deploying processes and tools to help detect and prevent privacy breaches.
• Ensuring a harmonised approach towards data protection and privacy by bringing together our client s stakeholders (e.g. legal, compliance, risk, HR, security, business functions).
• Assisting clients in privacy related incident response activities.
• Supporting the client s team by acting as an interim team member (e.g. data protection officer, security officer, security manager, security analyst).
• Proactively identifying and pursuing opportunities for further business and team growth.
• Preferred skills.
• Bachelor s degree in Computer Science, Information Systems, Information Technology, Engineering, or equivalent education.
• Minimum 4 - 5 years of prior relevant working experience.
• Experience with vulnerability scanning solutions and cybersecurity systems.
• Possession of relevant qualifications such as CIPM, CIPT, CIPP/E, CISM, CISSP, and/or HCISSP, as well as involvement in industry related organizations (e.g. IAPP, ISACA, (ISC)² ) or relevant certifications.
• Strong interpersonal and stakeholder management skills with ability to coordinate between technical and business teams.
• Excellent verbal, written communication and interpersonal skills with stakeholders at all levels.
• Knowledge and experience with relevant data protection and privacy laws and regulations (e.g. PDPA, EU GDPR, and Privacy Shield) and industry standards and frameworks, such as GAPP and BCR.
• Ability to efficiently understand client organisations and their business model and to tailor relevant processes to privacy requirements.
• An analytical mindset, strive for quality and are able to work in a result-oriented environment.
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Bachelor Degree Degrees/Field of Study preferred:Certifications (if blank, certifications not specified).
• Required Skills.
• Optional Skills.
• Desired Languages (If blank, desired languages not specified).
• Travel Requirements.
• Not Specified
• Available for Work Visa Sponsorship?.
• Yes
• Government Clearance Required?.
• No
• Job Posting End Date.
• December 31, 2024

ประสบการณ์:

2 ปีขึ้นไป

ทักษะ:

Network Infrastructure, Security Design, Big Data, English

ประเภทงาน:

งานประจำ

• Perform cyber security and IT security assessments for clients (e.g. cyber security program assessment, cyber security risk assessments, IT network infrastructure reviews, system technical configurations review, information security policies and processes/procedures review etc.).
• Work on IT security design, analysis and implementation of security protection solution.
• Evaluate and analyze threat, vulnerability, system weakness, impact and risk to secu ...
• Advise clients on the security issues, including explanation on the technical details and how they can remediate the vulnerabilities in the processes, controls and systems.
• Advise client on the security incident response end-to-end process (i.e. preparation, detection, analysis, response and recovery of the security incident).
• Skills and attributes for success.
• To qualify for the role you must have.
• Bachelor's degree or Master s degree in Computer Engineering, Computer Science, Information Systems, IT Security, ICT or other related fields.
• Minimum 2 years' experience in such areas as IT security management design and implementation, IT security assessment and IT technical background.
• Familiar with leading IT security processes and tools.
• Highly proficient in both English and Thai with good written and oral communication and analytical skills.
• Ideally, you ll also have.
• Having experience in project planning and management will be a plus.
• Professional certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), and / or Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or ISO27001 will be highly considered.
• Experience in new generation security practices (i.e. DevSecOps, iPentest, RedTeaming, System Resilience Design).
• Experience in Emerging Technologies (i.e. Cloud Computering, Blockchain, Big Data, A.I./M.L.).
• We re interested in intellectually curious people with a genuine passion for cyber security. With your specialization in attack and penetration testing, we ll turn to you to speak up with innovative new ideas that could make a lasting difference not only to us - but also to the industry as a whole. If you have the confidence in both your presentation and technical abilities to grow into a leading expert here, this is the role for you.
• What we offer.
• We offer a competitive remuneration package. Our comprehensive Total Rewards package includes support for flexible working and career development, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions.
• Continuous learning: You ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You ll be embraced for who you are and empowered to use your voice to help others find theirs.
• If you can demonstrate that you meet the criteria above, please contact us as soon as possible.
• The exceptional EY experience. It s yours to build.
• EY | Building a better working world.
• EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.
• Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.
• Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

ประสบการณ์:

1 ปีขึ้นไป

ทักษะ:

Risk Management, Compliance

ประเภทงาน:

งานประจำ

• Invite and provide evidence-based feedback in a timely and constructive manner.
• Share and collaborate effectively with others.
• Work with existing processes/systems whilst making constructive suggestions for improvements.
• Validate data and analysis for accuracy and relevance.
• Follow risk management and compliance procedures.
• Keep up-to-date with technical developments for business area.
• Communicate confidently in a clear, concise and articulate manner - verbally and in written form.
• Seek opportunities to learn about other cultures and other parts of the business across the Network of PwC firms.
• Uphold the firm's code of ethics and business conduct.
• referred skills.
• Cyber Security and Data Privacy.
• Minimum years experience required.
• 1-3 years of Experiences.
• Additional application instructions.
• N/A.
• Education (if blank, degree and/or field of study not specified).
• Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified).
• Required Skills.
• Optional Skills.
• Desired Languages (If blank, desired languages not specified).
• Travel Requirements.
• Not Specified
• Available for Work Visa Sponsorship?.
• Yes
• Government Clearance Required?.
• No
• Job Posting End Date.

ประสบการณ์:

ไม่จำเป็นต้องมีประสบการณ์ทำงาน

ทักษะ:

Linux, CompTIA Security+, Network Administration, English

ประเภทงาน:

งานประจำ

• Oversee power, cooling, and cabling; install, configure, and maintain servers, storage, and network hardware.
• Ensure 24/7 system availability through proactive monitoring, performing routine health checks on servers, storage systems, and networks.
• Diagnose and resolve server, network, and application performance issues; escalate critical incidents and ensure swift resolution.
• Implement security protocols (firewalls, access controls) and ensure compliance with industry standards and internal policies.
• Manage data backup processes and conduct disaster recovery tests to ensure business continuity.
• Execute hardware and software upgrades for servers, networks, and storage systems, and maintain thorough documentation of configurations and processes.
• Bachelor s degree in IT, Computer Science, or related field.
• Experience in data center operations, Linux, and Microsoft system administration.
• Familiarity with ServiceNow and network administration.
• Certifications like CCNA, CompTIA Network+, or relevant Microsoft certifications (e.g., MCSA) are preferred.
• Flexible to relocation.
• Good command in English (Minimum 750 TOEIC score).
• Goal-Oriented, Unity, Learning, Flexible.

ทักษะ:

Sales, Business Development, English

ประเภทงาน:

งานประจำ

• Bachelor's degree or equivalent practical experience.
• 10 years of experience in a sales role in software sales.
• Experience with security solutions or security software product.
• Experience selling to enterprise sector.
• Preferred qualifications:Experience in promoting cyber security solution and cloud-based security solutions.
• Understanding of broad range of security and networking technologies.
• Ability to work with sales engineers and customer technical leads to inventory existing software, define migration plans, and build business cases for migrations.
• Ability to provide accurate forecasting to the reporting manager regularly.
• Excellent leadership, influencing, and relationship development skills.
• Ability to communicate in Thai and English fluently in order to engage and support customers.
• As a Security Sales Specialist, you will help grow cybersecurity business by building and expanding relationships with customers. You will work with customers to deliver business value, demonstrate product functionality, and provide a comprehensive overview of key business use cases. You'll lead day-to-day relationships with external customer stakeholders, leading with empathy, while identifying innovative ways to multiply impact. In this role, you will have shared responsibility to uphold and grow a team culture. You will partner with internal Google Cloud Platform Sales teams to grow their security businesses and drive overall value for Google Cloud Platform.
• Google Cloud accelerates every organization's ability to digitally transform its business and industry. We deliver enterprise-grade solutions that leverage Google's cutting-edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.
• ResponsibilitiesBe responsible for new business development via prospecting, qualifying, promoting, and closing software and hardware solutions, services, and products.
• Create and manage the channel partner network for products under the distribution product portfolio together with the Regional Channel Sales Manager.
• Provide account management to an existing territory and be responsible for quarterly and annual business goals.
• Manage client relationships through all phases of the business cycle providing a consultative solutions based sales process.
• Develop expertise in the entire Google Cloud's security portfolio (including Mandiant solutions and services) and be able to articulate product features, use cases, and differentiate them from the competition.
• Google is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See alsoGoogle's EEO Policy andEEO is the Law. If you have a disability or special need that requires accommodation, please let us know by completing ourAccommodations for Applicants form.

ประสบการณ์:

2 ปีขึ้นไป

ทักษะ:

Public Relations, Legal, Computer Security, English

ประเภทงาน:

งานประจำ

• Executes cybersecurity engineer tasks including, but not limited to, security patch management, security vulnerability management, and security configuration management.
• Tests, implements, deploys, maintains, reviews, and administers the cybersecurity tools.
• Assist in identifying, prioritizing, and coordinating the protection of critical cyber defense infrastructure and key resources.
• Coordinate with Cyber Defense Analysts to manage and administer the updating of rules and signatures (e.g., intrusion detection/protection systems, antivirus, and content blacklists) for specialized cyber defense applications.
• Identify potential conflicts with the implementation of any cyber defense tools (e.g., tool and signature testing and optimization).
• Operates and maintains production information security systems.
• Ensures proper cybersecurity documentation is in place regarding standard operating procedures.
• Monitors the industry and external environment for emerging threats and advises relevant stakeholders on appropriate courses of action.
• Oversees incident response planning and the investigation of security breaches and assists with any associated disciplinary, public relations, and legal matters.
• Applies expert knowledge and skills to resolve problems, including support concepts and methods, problem isolation and troubleshooting procedures, system and file recovery processes, and operating system and network configurations.
• Prepares and presents cogent and cohesive analyses and briefings advising management on new technological developments, techniques, and enhancements that result in increased time and cost efficiencies.
• Provides advice and assistance to troubleshoot the most complex problems in a manner that minimizes interruptions in the ability to carry out critical business activities.
• Supports rapid response teams in response to customer service problems resulting from catastrophic events such as virus infections or widespread power outages.
• Supports the development of a formal cyber security risk assessment program.
• Supports and assists in maintaining a vulnerability/gap/response assessment program.
• Supports the ongoing maintenance of the cyber-Kill Chain for the company, focusing on phases of cyber-attack and remediation/mitigation for each phase.
• Supports ongoing activities to develop, communicate, and support appropriate standards and risk controls associated with digital data.
• Supports the development and maintenance of a company Data Protection program.
• Responds to cybersecurity alerts.
• Cascade and leverage cybersecurity control and practice to the entire company group.
• Bachelor s or Master s degree in Computer Engineering, MIS, IT, or a related field.
• At least 2 years experience in computer security and 5 years in IT infrastructure.
• Have a foundation in good information security practices.
• Knowledge of International Security frameworks, Standards, and Guidelines, e.g., COBIT, NIST-800, ISO 27001, PCI-DSS, OWASP, etc.
• Experience in Security tools, e.g., EDR, ATP, WAF, IPS/IDS, Deception, TI/TIP, Anti DDoS.
• Experience in Cloud Environments, e.g., Google Cloud, AWS, Microsoft Azure.
• Experience with system and application security management and control.
• Experience with system, network, and OS hardening techniques. (e.g., remove unnecessary services, password policies, network segmentation, enable logging, least privilege, etc.).
• Experience with facilitating information security risk assessments.
• Technical writing, documentation development, process mapping, and visual communication skills.
• Hands-on experience with computer programming languages and/or scripting languages such as Python, Java, and Shell for automation.
• Professional certificates related to work (e.g., CISSP, CISM, AWS Certified Security, or similar general security certification) are desirable.
• Talent to identify and create a broad vision for a security solution and to execute it;.
• Systems Thinking - the ability to see how parts interact with the whole (big picture thinking).
• Proven experience of acting as an expert in project teams.
• A positive, can-do attitude who naturally expresses a high degree of empathy to others.
• Ability to explain your thoughts or findings also to non-technical professionals.
• Strong problem-solving and analytical abilities Able to work under minimal supervision, detail oriented.
• Excellent English (Spoken and Written).
• Location: True Digital Park, Punnawithi.

ทักษะ:

Automation, Computer Security, System Administration

ประเภทงาน:

งานประจำ

• Experience in technical and consulting skills with subject matter expertise in one or more of the following specialties: incident response, systems administration, disaster recovery, business continuity, computer forensics and/or network security.
• Prior experience with IT/OT cybersecurity management systems, risk assessments, risk mitigation. Applying reference architectures and frameworks to industrial automation environment and securing industrial automation projects.
• Experience managing technical security projects either as a consultant or internal s ...
• A thorough understanding of network protocols, network devices, computer security devices, secure architecture & system administration in support of computer forensics & network security operations.
• Significant hands-on experience with hardware/software tools used in incident response, computer forensics, network security assessments, and/or application security.
• Experience with assessing and developing enterprise-wide policies and procedures for IT risk mitigation and incident response.
• Experience in Windows, Mac, and Unix operating systems.
• Concepts and Communication Demonstrated ability to work with and advise senior and executive level clients regarding strategic and tactical processes of Incident Response, staying professional and communicating clearly under pressure.
• Advanced understanding of information security governance concepts, including ability to gauge maturity level of an organisation's incident response program by against best practices as well as by applying practical knowledge of attacker methodologies, attack lifecycle, Cyber Kill Chain, etc.
• Ability to communicate technical findings & concepts to key stakeholders.
• Operational Technology Experience working with-in Operational Technology environments that have a safety-first focus.
• Demonstrate an understanding of the key differences between IT versus OT environments and be able to articulate best practices on how to secure each.
• Understanding of OT Security industry best practices and guidelines such as NIST 800-82, ISA/IEC 62443, and PERA.
• Familiarity with regional laws and regulations regarding critical infrastructure and OT Security.
• Experience with OT-focused security tooling such as Nozomi Networks, Claroty, Tenable.OT, Armis, or Dragos.
• Able to analyse common industrial network protocols (Modbus, Profinet, EtherNet/IP, etc).
• Familiarity with common ICS vendors (Honeywell, Schneider Electric, Yokogawa etc.) and their products, network architectures, and equipment.
• Preferred Technical and Professional Expertise
• Digital Forensics & Incident Response Ability to forensically analyse both Windows & Unix systems for evidence of compromise.
• Proficiency with commercial and open source forensic tools such as EnCase, X-Ways, and Sleuthkit.
• Skills and experience with cloud DFIR.
• Proficient in writing cohesive reports for a technical and non-technical audience.
• Experience hunting threat actors in large enterprise networks and cloud environments.
• Experience with using and configuring Endpoint Detection & Response (EDR) tools.
• Network Forensics Experience performing log analysis locally and via SIEM/log aggregation tool.
• Analyse and/or decipher packet captures from network protocol analysers (Wireshark, TCPdump, etc).
• Demonstrate an understanding of the behaviour, security risks and controls of common network protocols.
• Demonstrate an understanding of common applications used in Windows and Linux enterprise environment. Familiarity with Active Directory, Exchange and Office365 applications and logs.
• Remediation services Experience acting as a trusted advisor throughout the IR process.
• Advise clients on best practice whilst providing a sounding board during risk-based decisions.
• Track record of success in an incident management role using project management.
• Ability to lead teams comprised of customer staff and staff from competing service providers.
• Proactive services Examine and analyse available client internal policies, processes, and procedures to determine patterns and gaps at both a strategic and tactical levels. Recommend appropriate course of action to support maturing the client s incident response program and cyber security posture.
• A strong familiarity with various security frameworks and standards and applicable data privacy laws and regulations.
• Demonstrated experience with planning, scoping, and delivering technical and/or executive level tabletop exercises, with a focus on either tactical or strategic incident response processes. Ability to incorporate current trends and develop custom scenarios applicable to a client.
• Diverse understanding of cyber security related vulnerabilities, common attack vectors, and mitigations.
• Capable of developing strategic level incident response plans as well as tactical-focused playbooks.
• DevSecOps Low-level operating system knowledge, including automation and performing administrative tasks.
• Scripting or programming experience, preferably in a language commonly used for DFIR such as Python or PowerShell.
• Ability to work with data at scale such as using Splunk / ELK.
• Expertise working with shell programs such as grep, sed and awk to process data quickly.
• Working experience with virtualisation and cloud technology platforms like IBM Cloud, AWS, GCP, & Azure.
• OT Security One or more security certifications.
• OT IDS tool such as Nozomi Networks, Claroty, Tenable.OT, Armis, or Dragos.
• SANS GIAC or ISA99/IEC-62443 Cybersecurity.
• Experience in designing / engineering control systems.
• About Business UnitIBM Consulting is IBM s consulting and global professional services business, with market leading capabilities in business and technology transformation. With deep expertise in many industries, we offer strategy, experience, technology, and operations services to many of the most innovative and valuable companies in the world. Our people are focused on accelerating our clients businesses through the power of collaboration. We believe in the power of technology responsibly used to help people, partners and the planet.
• Your Life @ IBMIn a world where technology never stands still, we understand that, dedication to our clients success, innovation that matters, and trust and personal responsibility in all our relationships, lives in what we do as IBMers as we strive to be the catalyst that makes the world work better. Being an IBMer means you ll be able to learn and develop yourself and your career, you ll be encouraged to be courageous and experiment everyday, all whilst having continuous trust and support in an environment where everyone can thrive whatever their personal or professional background.
• Our IBMers are growth minded, always staying curious, open to feedback and learning new information and skills to constantly transform themselves and our company. They are trusted to provide on-going feedback to help other IBMers grow, as well as collaborate with colleagues keeping in mind a team focused approach to include different perspectives to drive exceptional outcomes for our customers. The courage our IBMers have to make critical decisions everyday is essential to IBM becoming the catalyst for progress, always embracing challenges with resources they have to hand, a can-do attitude and always striving for an outcome focused approach within everything that they do.
• Are you ready to be an IBMer?.
• About IBMIBM's greatest invention is the IBMer. We believe that through the application of intelligence, reason and science, we can improve business, society and the human condition, bringing the power of an open hybrid cloud and AI strategy to life for our clients and partners around the world.
• Restlessly reinventing since 1911, we are not only one of the largest corporate organizations in the world, we re also one of the biggest technology and consulting employers, with many of the Fortune 50 companies relying on the IBM Cloud to run their business.
• At IBM, we pride ourselves on being an early adopter of artificial intelligence, quantum computing and blockchain. Now it s time for you to join us on our journey to being a responsible technology innovator and a force for good in the world.
• Location StatementFor additional information about location requirements, please discuss with the recruiter following submission of your application.
• Being You @ IBMIBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

ทักษะ:

Network Infrastructure, English

ประเภทงาน:

งานประจำ

• Good command of English and computer literacy.
• Work @ Sriracha, Chonburi.
• ROLE & RESPONSIBILITY.
• Provide effective and efficient monitoring, troubleshooting, gap improvement, sustainable management, and new projects for the OT system of the Advanced Process Control Network (APCN) with a focus to enhance performance in term of high availability and cyber resilience/ cybersecurity.
• Fully manage of PI system, PI connection, and PI user in all dimensions.
• Collaborate with cross-functional teams to address OT network infrastructure, communication, connection, and information security requirements.
• Leading new projects aimed at enhancing the performance and security of the APCN.

ประสบการณ์:

1 ปีขึ้นไป

ทักษะ:

Project Management, Accounting, English

ประเภทงาน:

งานประจำ

• Perform end-to-end internal audits from planning to reporting including process understanding, walkthroughs, preparation of risk and control matrix / audit work program, control testing to assess their design and operating effectiveness, preparation of audit report and agreeing issues/ actions with management.
• Identify key areas of improvement in the client's business processes and add value by preparing insightful recommendations.
• Take in-charge role in the engagement and coordinate with clients in various industr ...
• Assist Engagement Manager with administrative tasks and project management; prepare proposal and others as assigned by Manager and Partners.
• Skills and attributes for success.
• To qualify for the role you must have.
• Bachelor's or Master s in Accounting, AIS, Business, Economics, or other related fields.
• 0-1 year of experience for Consultant level and minimum of 3 years experience for Senior level in internal or external audit role.
• Good written and oral communications skills both in Thai and English.
• Adaptable and be able to work upcountry (occasionally).
• Ideally, you ll also have.
• Experienced in internal audit and external audit would be a plus.
• Enterprise Risk professional will be addressing client issues such as business performance variability, business and process controls transformation; application security integrity, governance, risk and control (GRC) technology enablement, business and/or IT GRC, continuous monitoring, vendor and contract risk management and IT risk management.
• What we offer.
• We offer a competitive remuneration package. Our comprehensive Total Rewards package includes support for flexible working and career development, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions.
• Continuous learning: You ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You ll be embraced for who you are and empowered to use your voice to help others find theirs.
• If you can demonstrate that you meet the criteria above, please contact us as soon as possible.
• The exceptional EY experience. It s yours to build.
• EY | Building a better working world.
• EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.
• Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.
• Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

ประสบการณ์:

6 ปีขึ้นไป

ประเภทงาน:

งานประจำ

• Bachelor's degree or equivalent practical experience.
• 6 years of experience with cloud native architecture in a customer-facing or support role.
• Experience with cloud infrastructure engineering, on-premise infrastructure engineering, virtualization, or containerization platforms.
• Experience engaging with, and presenting to, technical stakeholders and executive leaders.
• Preferred qualifications:Experience in migrating applications and services to cloud platforms.
• Experience with networking concepts such as software-defined networking, routing, virtual private networks, load balancers and firewalls.
• Experience in, or supporting Banking and Financial Services clients.
• Experience with security concepts such as encryption, identity management, access control, attack vectors, and pen testing.
• Experience prospecting, building, and maintaining customer relationships from scratch.
• The Google Cloud Platform team helps customers transform and build what's next for their business all with technology built in the cloud. Our products are developed for security, reliability and scalability, running the full stack from infrastructure to applications to devices and hardware. Our teams are dedicated to helping our customers developers, small and large businesses, educational institutions and government agencies see the benefits of our technology come to life. As part of an entrepreneurial team in this rapidly growing business, you will play a key role in understanding the needs of our customers and help shape the future of businesses of all sizes use technology to connect with customers, employees and partners.
• As a Customer Solutions Consultant, you will partner with technical Sales teams to differentiate Google Cloud to our customers. You will help prospective and existing customers and partners understand the power of Google Cloud, develop creative cloud solutions and architectures to solve their business challenges, engage in proofs of concepts, and troubleshoot any technical questions and roadblocks. You will engage with customers to understand their business and technical requirements, and persuasively present practical and useful solutions on Google Cloud.You will be a part of a diverse team of fellow Googlers working in an environment of respect and inclusion where we promote equal opportunities to succeed.
• Google Cloud accelerates every organization's ability to digitally transform its business and industry. We deliver enterprise-grade solutions that leverage Google's cutting-edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.
• ResponsibilitiesWork with the team to identify and qualify business opportunities, understand key customer technical objections, and develop the strategy to resolve technical blockers.
• Share in-depth enterprise infrastructure modernization expertise to support the technical relationship with customers, including technology advocacy, supporting bid responses, product and solution briefings, proof-of-concept work, and partnering directly with product management to prioritize solutions impacting customer adoption to Google Cloud.
• Work directly with Google Cloud products to demonstrate and prototype integrations in customer and partner environments.
• Guide customers through assessments of existing legacy application environment(s) and provide recommendations on a prioritization roadmap for infrastruction and application modernization.
• Recommend integration strategies, enterprise architectures, platforms, and application infrastructure required to successfully implement a complete solution on Google Cloud.
• Google is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See alsoGoogle's EEO Policy andEEO is the Law. If you have a disability or special need that requires accommodation, please let us know by completing ourAccommodations for Applicants form.

ประสบการณ์:

3 ปีขึ้นไป

ทักษะ:

ISO 27001, SAP, System Security, English

ประเภทงาน:

งานประจำ

• Performing risk assessment for new or existing of Information Technology Systems.
• Planning and developing audit program following to the audit scope and objective of Information Technology Framework such as COBIT, ISMS, IT General Control.
• Evaluating the adequacy and effectiveness of the internal control of Information Technology throughout the company s business processes.
• Performing follow up audit over the findings identified in the audit reports.
• Utilizing relevant Information technology Standards and methodologies and demonstrate to improvement the effectiveness of GRC processes.
• Performing other duties as assigned.
• Job Qualifications.
• Bachelor s degree or higher in Information Technology, Computer Science, Computer Engineering, Management of Information Systems or related fields.
• Over 3 years experiences in IT Internal Auditor.
• External Audit or Big 4 is also welcome.
• Professional certifications such as CISA, Information Security (IRCA), NIST Cybersecurity Framework, or CIA would be an advantage.
• Testing experience on IT controls e.g., IT Governance, Cyber Security, ISO 27001, SDLC and Change Management, Network Security, etc. would be an advantage.
• Good knowledge of IT Audit, IT Security, IT Risk or IT Compliance.
• Ability to use SAP.
• Communication and interpersonal skills, strong analytics, self-motivation and willing to learn.
• Ability to travel/ work upcountry and abroad.
• Fluent in English both written and verbal (Minimum 750 TOEIC score).
• Goal-Oriented, Unity, Learning, Flexible.