69 Cyber Engineer jobs in Thailand

หน้าที่ความรับผิดชอบ

• ออกแบบ,นำเสนอ,ทดสอบ,ติดตั้ง ดูแล และบริหารจัดการระบบรักษาความปลอดภัยให้แก่ลูกค้า (Firewall, EDR, SIEM, DLP, WAF ฯลฯ)
• วิเคราะห์เหตุการณ์ด้านความปลอดภัย หาสาเหตุ และจัดการแก้ไข
• ทำ Vulnerability Assessment / Penetration Testing และแนะนำแนวทางแก้ไข
• ประสานงานกับทีม Vender และ Business Partner เพื่อให้ลูกค้าได้รับโซลูชั่นส์และบริการที่ดีที่สุด

คุณสมบัติที่ต้องการ

• มีความรู้พื้นฐานด้าน Network & Security (Firewall, IDS/IPS, SOC tools)
• เข้าใจ TCP/IP, Network Protocol และวิธีการโจมตีทางไซเบอร์
• มีประสบการณ์ SIEM / Log Analysis จะได้รับการพิจารณาเป็นพิเศษ
• มี Mindset ของ Defender และชอบเรียนรู้สิ่งใหม่ ๆ
• ถ้ามี Certificate เช่น CEH, CISSP, CompTIA Security+ จะได้รับการพิจารณาเป็นพิเศษ

ทำไมต้องร่วมงานกับเรา

• ได้ทำงานกับทีม Cyber Security ที่กำลังเติบโต
• ได้สัมผัสเทคโนโลยีด้านความปลอดภัยใหม่ ๆ และเคสจริงจากลูกค้า
• โอกาสเรียนรู้ อบรม และพัฒนาทักษะ รวมถึงสอบ Certificate
• บรรยากาศการทำงานแบบทีมที่เป็นกันเองและสนับสนุนกัน

Main Purpose of this job :

• Protect the organization's computer networks and systems against a range of cyber threats, such as hacking attempts, data breaches, and different types of cyber attacks. The
  
  responsibilities of this role include creating, deploying, and overseeing security strategies and technologies to defend the organization IT security.

Responsibilities :

• Lead the strategic direction, development, and implementation of cybersecurity solutions and practices to protect the organization from sophisticated cyber threats and vulnerabilities.
• Serve as the foremost cybersecurity expert within the organization, providing deep technical expertise and leadership in the design, evaluation, and optimization of complex security architectures.
• Develop comprehensive cybersecurity frameworks that align with industry best practices and regulatory standards, ensuring the organization's resilience against cyber attacks.
• Conduct sophisticated risk assessments and threat modeling exercises to identify potential security gaps and develop advanced strategies for mitigation and prevention.
• Lead the incident response and crisis management efforts for high-impact security breaches, coordinating with cross-functional teams to ensure rapid containment and recovery.
• Drive the adoption of cutting-edge security technologies and methodologies, including artificial intelligence and machine learning, to enhance detection and response capabilities.
• Establish and maintain strong relationships with external cybersecurity agencies, industry groups, and technology partners to stay abreast of emerging threats and trends.
• Develop and manage the cybersecurity budget, ensuring strategic allocation of resources to high-priority projects and initiatives.

Qualification :

• Advanced degree in Computer Science, Information Security, or a related field, with specialized knowledge in cybersecurity.
• A minimum of 5 years of experience in Infrastructure, 3 years of cybersecurity, with at least 2 years in a strategic leadership or management role overseeing cybersecurity functions.
• Professional cybersecurity certifications, such as CISSP, CISM, CCSP, or similar, are required.
• Proven expertise in developing and implementing cybersecurity strategies and architectures to protect complex enterprise environments.
• Other : Deep knowledge of the cybersecurity landscape, including emerging threats, advanced persistent threats (APT), regulatory requirements, and industry best practices.
• Other :  ISO 27001

Cyber Security Engineer

About the Role

We are seeking a skilled and motivated Cyber Security Engineer to join our team. You will be responsible for designing, implementing, and managing security solutions across cloud platforms, applications, and enterprise infrastructure. The ideal candidate will bring deep technical knowledge of cybersecurity technologies, proactive risk management, and the ability to align security initiatives with business goals.

Key Responsibilities

• Design, deploy, and maintain security solutions across cloud platforms (AWS, Azure, GCP).
• Implement and manage Web Application Firewalls (WAF) to protect applications and APIs from threats.
• Manage and enforce Identity and Access Management (IAM) policies, roles, and best practices.
• Secure corporate communications with Email Security platforms (anti-phishing, DLP, encryption).
• Deploy and manage Endpoint Detection & Response (EDR) tools to detect and mitigate threats.
• Develop, document, and enforce security standards, policies, and incident response playbooks.
• Collaborate with IT, cloud, and application teams to embed security into infrastructure and DevOps.
• Stay updated on the latest security threats, trends, and compliance regulations.

Qualifications

• Bachelor's degree in computer science, IT, Cybersecurity, or related field.
• 3–5 years of experience in cybersecurity engineering or operations.
• Strong knowledge of cloud security (AWS, Azure, or GCP).
• Hands-on experience with WAF solutions.
• Experience with IAM platforms (Azure AD, Okta, etc.).
• Knowledge of Email Security solutions.
• Proficiency with EDR tools.
• Familiarity with SIEM/SOC tools.
• Understanding of ISO27001, NIST, GDPR, PDPA, or other compliance standards.
• Strong problem-solving, analytical, and communication skills.

Preferred Skills

• Security certifications (CISSP, CISM, CISA, CEH, CCSP, or equivalent).
• Knowledge of scripting (Python, PowerShell, Bash) for automation.
• Experience in DevSecOps and CI/CD pipeline security.
• Background in penetration testing or ethical hacking.

Responsibilities

• Analyze, monitor, and maintain cybersecurity systems for both IT and OT.
• Troubleshoot and investigate cybersecurity issues and incidents.
• Provide guidance and recommendations to internal teams to enhance security measures.
• Maintain and implement IT/OT governance and cybersecurity standards.
• Respond to cybersecurity-related inquiries from customers, partners, and stakeholders.
• Conduct training sessions to raise security awareness among users.
• Offer general user support regarding security best practices.
• Complete tasks and assignments as directed by supervisors.
• Ensure compliance with internal cybersecurity standards and policies.

Qualifications

• Bachelor degree of Computer Science or other IT related fields
• 3-5 years' experience in networking or IT
• Knowledge of Networking principles and TCP/IP protocol
• Knowledge of Security both OT and IT.
• Database: MSSQL Server, Postgresql
• OS: Windows Server OS, Windows client, Ubuntu, Redhat, etc.
• VMware systems

We are looking for talented Cyber Security Engineer to find the most efficient way to create and to manage every cyber security solution for multiple clients.

What we want?

• To propose improvement to infrastructure and security systems and may present them to customer's upper management.
• Plan and carry out a customer's information security strategy to be the healthy security architectures for any IT project.
• To implement security system and ensure compliance with corporate cyber security policies and procedures.
• To provide professional supervision and guidance to security teams.
• Works with other business units, partners, and customers to maintain secure methods of security management.

Who are we looking for?

• Experience in IT infrastructure or Cyber Security field.
• Great awareness of Cyber Security trends and new technology update.
• Knowledge in Security Management is advantage.
• Excellent knowledge in cyber security field such as network security, application and data security, security operation center and endpoint security are a plus.
• Excellent knowledge in cyber security product e.g. Next-Gen Firewall, ADC, WAF, Cloud WAAP, SIEM, SOAR, EDR, XDR is a plus.
• Excellent problem solving and analytical skill, planning and organizing skill and customer oriented.
• Security Profession Certification is a plus.

Benefits of working with us:

• Annual Health Check-up
• Health & Life Insurance
• Happiness Facilities e.g. fitness zone, board game, snooker table, etc.
• Special Occasion e.g. New Year Party, Engagement activity, etc.
• Provident Fund
• Lending For Resident
• Flexible Hybrid Workplace (WFH, Office, Onsite)
• Leave and Traditional Holidays

Main Purpose of this job :

• Protect the organization's computer networks and systems against a range of cyber threats, such as hacking attempts, data breaches, and different types of cyber attacks. The
  
  responsibilities of this role include creating, deploying, and overseeing security strategies and technologies to defend the organization IT security.

Responsibilities :

• Lead the strategic direction, development, and implementation of cybersecurity solutions and practices to protect the organization from sophisticated cyber threats and vulnerabilities.
• Serve as the foremost cybersecurity expert within the organization, providing deep technical expertise and leadership in the design, evaluation, and optimization of complex security architectures.
• Develop comprehensive cybersecurity frameworks that align with industry best practices and regulatory standards, ensuring the organization's resilience against cyber attacks.
• Conduct sophisticated risk assessments and threat modeling exercises to identify potential security gaps and develop advanced strategies for mitigation and prevention.
• Lead the incident response and crisis management efforts for high-impact security breaches, coordinating with cross-functional teams to ensure rapid containment and recovery.
• Drive the adoption of cutting-edge security technologies and methodologies, including artificial intelligence and machine learning, to enhance detection and response capabilities.
• Establish and maintain strong relationships with external cybersecurity agencies, industry groups, and technology partners to stay abreast of emerging threats and trends.
• Develop and manage the cybersecurity budget, ensuring strategic allocation of resources to high-priority projects and initiatives.

Qualification :

• Advanced degree in Computer Science, Information Security, or a related field, with specialized knowledge in cybersecurity.
• A minimum of 5 years of experience in Infrastructure, 3 years of cybersecurity, with at least 2 years in a strategic leadership or management role overseeing cybersecurity functions.
• Professional cybersecurity certifications, such as CISSP, CISM, CCSP, or similar, are required.
• Proven expertise in developing and implementing cybersecurity strategies and architectures to protect complex enterprise environments.
• Other : Deep knowledge of the cybersecurity landscape, including emerging threats, advanced persistent threats (APT), regulatory requirements, and industry best practices.
• Other :  ISO 27001

Roles

• Practical Operation Control and Continue Improvement The Protection, Detection and Response Sophisticated Cyber Threat coming from Public Channel Interfacing according to Bank's Policy and Standard Defined

• Control Configuration, change, review the Cyber Defense Technology e.g. CloudWAF, WAF, IPS, Anti-DDoS, to ensure that visibility and control meet the organization and international standard which always up-to-date cybersecurity capability to protect the cyberthreat

• Gathering and preparation, co-ordinate, to build collaboration with Domestic banking sector and National Cyber Security and also Regulation and Banking sector CERT.

• Readiness for Assessment and also Simulation Cybersecurity Test preparation in many aspects / angles based upon Statistic Recording and Threat Intelligence from Internal Factor and External Factor.

• Co-ordinate and control External Provider or 3rd Party for Business Relation in order to response the Cybersecurity Events and Incident Against Cyber Attacked from public Accessing.

• Studying and Educate of TTP (Tactical, Technical and Procedure) of new Cyber Attacked and Gather Information Feeds of Cyber Threat Intelligence purposing to propose new-approach of Cybersecurity Countermeasure

• Cyber Risk Mitigation and Control to meet Cyber Risk Appetite according for highest Business outcome and objectives

Qualification:

· Bachelor's Degree in Engineering /IT or relevant field with at least 5 years of work experience in Information Security or Cybersecurity.

· Robust skills in Cyber Defense Technology and Incident Responder which is certified by a global certificate.

· Strong Malicious Activity Identification and Investigate and mature the Network Security Containment strategy and deployment on Digital Banking Technology and environment.

· Good Experience and Understanding in Zero-Day Attack/Target Attack, Containment, Virtual Patch, and Mitigation Recommendation.

· Develop a Program of Cyber Defense Programs with both Proactive-Reactive Strategies to reduce the impact on the bank.

· Exercise Paybook and IR plan for regular and also the red-team blue team.

· Good command of English and Explain root-cause of Impact.

· Preferable Certified in CEH A or other related Cyber security certifications.

Network Security (Cyber Defense Team)

Roles

• Practical Operation Control and Continue Improvement The Protection, Detection and Response Sophisticated Cyber Threat coming from Public Channel Interfacing according to Bank's Policy and Standard Defined

• Control Configuration, change, review the Cyber Defense Technology e.g. CloudWAF, WAF, IPS, Anti-DDoS, to ensure that visibility and control meet the organization and international standard which always up-to-date cybersecurity capability to protect the cyberthreat

• Gathering and preparation, co-ordinate, to build collaboration with Domestic banking sector and National Cyber Security and also Regulation and Banking sector CERT.

• Readiness for Assessment and also Simulation Cybersecurity Test preparation in many aspects / angles based upon Statistic Recording and Threat Intelligence from Internal Factor and External Factor.

• Co-ordinate and control External Provider or 3rd Party for Business Relation in order to response the Cybersecurity Events and Incident Against Cyber Attacked from public Accessing.

• Studying and Educate of TTP (Tactical, Technical and Procedure) of new Cyber Attacked and Gather Information Feeds of Cyber Threat Intelligence purposing to propose new-approach of Cybersecurity Countermeasure

• Cyber Risk Mitigation and Control to meet Cyber Risk Appetite according for highest Business outcome and objectives

Qualification:

• Bachelor's Degree in Engineering /IT or relevant field with at least 5 years of work experience in Information Security or Cybersecurity.

• Robust skills in Cyber Defense Technology and Incident Responder which is certified by a global certificate.

• Strong Malicious Activity Identification and Investigate and mature the Network Security Containment strategy and deployment on Digital Banking Technology and environment.

• Good Experience and Understanding in Zero-Day Attack/Target Attack, Containment, Virtual Patch, and Mitigation Recommendation.

• Develop a Program of Cyber Defense Programs with both Proactive-Reactive Strategies to reduce the impact on the bank.

• Exercise Paybook and IR plan for regular and also the red-team blue team.

• Good command of English and Explain root-cause of Impact.

• Preferable Certified in CEH A or other related Cyber security certifications.

Major Responsibilities

• Define, implement, assess, and maintain controls necessary to protect the network/internet perimeter in accordance with security requirements (E.g., Firewalls, DMZ, Network connections, Third-party connectivity, Remote access, VPNs)

• Address security throughout the development and acquisition lifecycle

• Develop and maintain a security architecture.

• Define, implement, manage and maintain identities and access controls based on identities (e.g., Password management, Single Sign-On, Multi-factor authentication, PIN management, Digital signatures, Smart cards, Biometrics, AD)

• Ensures that system access is maintained in accordance with company policies

• Administer and supports all access management control activities across all infrastructure systems (systems, equipment, hosts, and networks)

• Lead and drive cybersecurity technology projects to achieve results in terms of quality, time and cost

• Ensure planning to go-live and deployment activities and facilitate their execution as well as post launch success and continuously identifying key improvement areas

• Provide technical advice on technological innovations and alignment with the cybersecurity strategic objectives of GC and future architectural standards to enhance cybersecurity quality

• Define, implement, assess, and maintain controls necessary to protect software and applications in accordance with security requirements (operating systems, applications, database management systems, web-based applications, COTS; maintenance)

• Identify potential flaws in application and design countermeasures or mitigations against potential exploitations of programming language weaknesses and vulnerabilities in system and elements

• Define, implement, assess, and maintain controls necessary to protect information and vital assets (including media) in accordance with security requirements (includes privacy requirements, PII, DLP, encryption)

• Ensure data lifecycle is secured

Qualification

• Bachelor's degree or higher in computer science, cybersecurity, information technology, software engineering, information systems, computer engineering or related field

• Minimum of 5 years experiences in information security, security solution implementation, security architecture, security management, data security, cloud and/or OT security

• Required Certification: CISSP or CISA / CISM