75 Cybersecurity Engineer jobs in Thailand

JasTel Network Company Limited (JasTel) (บริษัทในเครือ Jasmine Group) เป็นผู้ให้บริการด้านโครงข่ายโทรคมนาคมและอินเทอร์เน็ตทั้งในประเทศและระหว่างประเทศ โดยมีความเชี่ยวชาญในการให้บริการอย่างครอบคลุมในด้านการสื่อสารข้อมูลความเร็วสูง นอกจากนี้ บริษัทยังมีบริการเช่าพื้นที่รับฝากอุปกรณ์คอมพิวเตอร์ (Co-Location) และศูนย์ข้อมูล (Data Center) ที่มีมาตรฐานสูงเพื่อตอบสนองความต้องการของลูกค้าในทุกระดับการใช้งาน รวมถึงการให้บริการศูนย์สำรองข้อมูลเมื่อเกิดภัยพิบัติ (Disaster Recovery Location) ที่มีความพร้อมด้านระบบรักษาความปลอดภัยและความเสถียรสูงสุด เพื่อสนับสนุนให้ธุรกิจของลูกค้าดำเนินไปได้อย่างราบรื่นและต่อเนื่องในทุกสถานการณ์.

รายละเอียดงาน :

• ออกแบบ และเป็นที่ปรึกษาด้าน Enterprise Solutions และ Cybersecurity ให้แก่ลูกค้าองค์กร
• บริหารโครงการทั้งด้าน Enterprise solution และ Cybersecurity ให้แก่ลูกค้า
• สนับสนุนการทำงานและให้คำปรึกษาด้าน Cybersecurity แก่ทีมขาย (Sales & Pre-sales ) ในการจัดทำ Solutions เพื่อนำไปเสนอลูกค้าหรือยื่นประมูลงาน ได้สอดคล้องกับ Requirement หรือ TOR ของลูกค้า
• พัฒนา Service Catalog ใหม่ๆ ของแผนกเพื่อตอบสนองแผนธุรกิจของบริษัทในแต่ละปีการค้าตามคณะผู้บังคับบัญชากำหนด หรือตกลงกัน
• ศึกษาหาความรู้ใหม่ๆและติดตามเทรนด์ ภัยคุกคามด้านความปลอดภัยทางไซเบอร์ล่าสุดเพื่อนำไปปรับใช้ในการปฏิบัติงานด้าน Cyber Security ของทีมบริการ และสอบ Certification ตามที่ผู้บังคับบัญชากำหนด
• พัฒนา ปรับปรุง วิธีการทำงาน ความรู้ในการบริหารโครงการอย่างสม่ำเสมอ เพื่อสร้างความพึงพอใจให้แก่ลูกค้า

คุณสมบัติ :

• ปริญญาตรี สาขาวิศวกรรมคอมพิวเตอร์, วิทยาการคอมพิวเตอร์, IT หรือสาขาที่เกี่ยวข้อง
• ประสบการณ์ทำงานด้าน IT 3 ปีขึ้นไป หรือ ด้าน Cyber Security โดยเฉพาะการใช้และวิเคราะห์ผ่านเครื่องมือต่าง ๆ เช่น: SIEM Firewall, รวมถึงอุปกรณ์เครือข่าย เช่น Switch และ Router เป็นต้น
• มีทักษะการนำเสนอ สามารถใช้โปรแกรม Microsoft Office, Word, Excel
• มีความเชี่ยวชาญและชำนาญเกี่ยวกับเครื่องมือหรือโปรแกรมที่ใช้สำหรับงานด้าน IT และ Security
• สามารถสื่อสารภาษาอังกฤษได้ดี

Role & Responsibilities

1.Security architecture planning

• Develop planning strategies & design a master plan, roadmap and budget planning
• Assess and seek for solution to improve the existing cyber security posture, including identification of the strengths and weaknesses of the infrastructure, network and applications
• Perform new technology research and horizon scanning for the protection of the organizations data, systems and networks

2.Attack surface identification

• Perform cyber risk management and provide recommendation / solution to mitigate any risks identified.

3.Security consultant

• Establish and maintain cyber security policy, standard and baseline to ensure the regulation compliance
• Provide cyber security consulting to all parties to ensure the safeguard of information assets and system

4.Security Patch verification

Qualification

• Bachelor's or Master 's degree in Computer Engineering or other related fields.
• Experience 5-10 years in Cyber Security, Architecture Planning function
• Knowledge in NBTC, NCSA, PDPC, TTC-CERT

Role & Responsibilities

1.Security architecture planning

• Develop planning strategies & design a master plan, roadmap and budget planning
• Assess and seek for solution to improve the existing cyber security posture, including identification of the strengths and weaknesses of the infrastructure, network and applications
• Perform new technology research and horizon scanning for the protection of the organizations data, systems and networks

2.Attack surface identification

• Perform cyber risk management and provide recommendation / solution to mitigate any risks identified.

3.Security consultant

• Establish and maintain cyber security policy, standard and baseline to ensure the regulation compliance
• Provide cyber security consulting to all parties to ensure the safeguard of information assets and system

4.Security Patch verification

Qualification

• Bachelor's or Master 's degree in Computer Engineering or other related fields.
• Experience 5-10 years in Cyber Security, Architecture Planning function
• Knowledge in NBTC, NCSA, PDPC, TTC-CERT

Location: Bangkok

About the Opportunity

Cathcart Technology is working with a global organisation. As they continue to expand their digital capabilities, they are investing heavily in security across both IT and OT environments.

As a Security Solutions Specialist, you will design and implement enterprise-wide security architectures across IT, cloud, and operational technology (OT) networks.

Key Responsibilities

• Support the design and implementation of security controls across IT, cloud, and OT environments
• Contribute to Zero Trust initiatives (identity, device, network segmentation
• Configure and operate Microsoft security stack (Defender, Sentinel) and assist on PAM, PKI, and SIEM/SOAR use cases.
• Build and maintain dashboards/reports for threats, vulnerabilities, and patch status.
• Participate in design/security reviews and ensure standards/baselines are followed.
• Evaluate and pilot vendor solutions; document findings and recommendations.
• Align security controls with industry frameworks and compliance requirements
• Integrate security into DevOps pipelines and OT operations, including automation, patching, and change management
• Strengthen incident readiness by improving logging, alerting, isolation playbooks, and evidence capture.

What We're Looking For

• Bachelor's degree in Information Technology, Computer Engineering, or related field
• 5+ years experience in cybersecurity engineering/operations or security-focused systems engineering.
• Hands-on experience with Azure security services, Zero Trust, and network segmentation
• Familiarity with Microsoft Defender, Sentinel, PAM, PKI, SIEM/SOAR tools
• Knowledge of security frameworks (IEC 62443, NIST CSF, ISO 27001, CIS)
• Excellent collaboration skills to work across cross-functional teams
• Good communication skills in English

If you're ready to grow in a global environment and make tangible security improvements —we'd love to hear from you.

Please reach out to Cathcart Technology at for more details.

Executes cybersecurity engineer tasks including, but not limited to, security patch management, security vulnerability management, and security configuration management.

Tests, implements, deploys, maintains, reviews, and administers the cybersecurity tools.

Assist in identifying, prioritizing, and coordinating the protection of critical cyber defense infrastructure and key resources.

Coordinate with Cyber Defense Analysts to manage and administer the updating of rules and signatures (e.g., intrusion detection/protection systems, antivirus, and content blacklists) for specialized cyber defense applications.

Identify potential conflicts with the implementation of any cyber defense tools (e.g., tool and signature testing and optimization).

Operates and maintains production information security systems.

Ensures proper cybersecurity documentation is in place regarding standard operating procedures.

Monitors the industry and external environment for emerging threats and advises relevant stakeholders on appropriate courses of action.

Oversees incident response planning and the investigation of security breaches and assists with any associated disciplinary, public relations, and legal matters.

Applies expert knowledge and skills to resolve problems, including support concepts and methods, problem isolation and troubleshooting procedures, system and file recovery processes, and operating system and network configurations.

Prepares and presents cogent and cohesive analyses and briefings advising management on new technological developments, techniques, and enhancements that result in increased time and cost efficiencies.

Provides advice and assistance to troubleshoot the most complex problems in a manner that minimizes interruptions in the ability to carry out critical business activities.

Supports rapid response teams in response to customer service problems resulting from catastrophic events such as virus infections or widespread power outages.

Supports the development of a formal cyber security risk assessment program.

Supports and assists in maintaining a vulnerability/gap/response assessment program.

Supports the ongoing maintenance of the cyber-Kill Chain for the company, focusing on phases of cyber-attack and remediation/mitigation for each phase.

Supports ongoing activities to develop, communicate, and support appropriate standards and risk controls associated with digital data.

Supports the development and maintenance of a company Data Protection program.

Responds to cybersecurity alerts.

Cascade and leverage cybersecurity control and practice to the entire company group.

Qualifications.

Bachelor s or Master s degree in Computer Engineering, MIS, IT, or a related field.

At least 2 years experience in computer security and 5 years in IT infrastructure.

Have a foundation in good information security practices.

Knowledge of International Security frameworks, Standards, and Guidelines, e.g., COBIT, NIST-800, ISO 27001, PCI-DSS, OWASP, etc.

Experience in Security tools, e.g., EDR, ATP, WAF, IPS/IDS, Deception, TI/TIP, Anti DDoS.

Experience in Cloud Environments, e.g., Google Cloud, AWS, Microsoft Azure.

Experience with system and application security management and control.

Experience with system, network, and OS hardening techniques. (e.g., remove unnecessary services, password policies, network segmentation, enable logging, least privilege, etc.).

Experience with facilitating information security risk assessments.

Technical writing, documentation development, process mapping, and visual communication skills.

Hands-on experience with computer programming languages and/or scripting languages such as Python, Java, and Shell for automation.

Professional certificates related to work (e.g., CISSP, CISM, AWS Certified Security, or similar general security certification) are desirable.

Talent to identify and create a broad vision for a security solution and to execute it;.

Systems Thinking - the ability to see how parts interact with the whole (big picture thinking).

Proven experience of acting as an expert in project teams.

A positive, can-do attitude who naturally expresses a high degree of empathy to others.

Ability to explain your thoughts or findings also to non-technical professionals.

Strong problem-solving and analytical abilities Able to work under minimal supervision, detail oriented.

Excellent English (Spoken and Written).

Location: True Digital Park, Punnawithi.

Job skills required: Public Relations, English, ISO 27001, Legal

Job skills preferred: Microsoft Azure, Java, Python

Make an impact with NTT DATA

Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it's a place where you can grow, belong and thrive.

Workplace type:

On-site Working

About NTT DATA

NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer

NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Third parties fraudulently posing as NTT DATA recruiters

NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters—whether in writing or by phone—in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an email address. If you suspect any fraudulent activity, please contact us .

About TrueMoney

TrueMoney is a leading international fintech brand providing innovative payment and financial services across seven countries in Southeast Asia. With its user-friendly digital platform, extensive agent network, and comprehensive offline and online services, TrueMoney empowers millions of users to make easy, secure payments and enjoy a more convenient financial lifestyle.

Since its establishment, TrueMoney has grown to become the most popular digital financial application in the region, playing a central role in expanding access to financial services and improving quality of life for individuals and MSME communities.

TrueMoney is part of Ascend Money, a regional digital financial services company founded in 2013, which reached a major milestone by becoming Thailand's first fintech unicorn in 2021.

• Conduct advanced penetration tests to identify vulnerabilities in computer systems, networks, and applications.
• Perform vulnerability assessments and security audits to evaluate the effectiveness of existing security measures.
• Develop and execute simulated cyber attacks to assess the organization's readiness to defend against real-world threats.
• Employ various attack methodologies to test the resilience of systems against hacking attempts and security breaches.
• Perform threat modeling to anticipate potential attack vectors.
• Analyze risks associated with identified vulnerabilities and recommend appropriate mitigation strategies.
• Develop custom tools and scripts to automate penetration testing and exploit known vulnerabilities.
• Keep up-to-date with the latest exploitation techniques and security tools.
• Prepare detailed reports on findings from penetration tests and security assessments.
• Document and present risks and vulnerabilities to relevant stakeholders, along with recommended countermeasures.
• Collaborate with the Blue Team to enhance the organization's defensive strategies based on offensive findings.
• Share insights and knowledge on emerging threats and attack techniques with the cybersecurity team to continually improve defensive measures.

Job Qualifications

• Bachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 5 years of experience in penetration testing and vulnerability assessments or related roles.
• Strong knowledge of network and application security, ethical hacking, and cybersecurity principles.
• Familiarity with penetration testing tools (e.g., Metasploit, Burp Suite, Kali Linux).
• Excellent problem-solving skills and ability to think like an adversary.
• Good communication skills for effective reporting and stakeholder engagement.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, and etc.
• Professional Certificated related to work e.g. (CISSP, OSCP, OSWE) is desirable

Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it's a place where you can grow, belong and thrive.

Workplace type:
On-site Working

About NTT DATA
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Third parties fraudulently posing as NTT DATA recruiters
NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters—whether in writing or by phone—in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an

email address. If you suspect any fraudulent activity, please
contact us
.

Roles

• Practical Operation Control and Continue Improvement The Protection, Detection and Response Sophisticated Cyber Threat coming from Public Channel Interfacing according to Bank's Policy and Standard Defined

• Control Configuration, change, review the Cyber Defense Technology e.g. CloudWAF, WAF, IPS, Anti-DDoS, to ensure that visibility and control meet the organization and international standard which always up-to-date cybersecurity capability to protect the cyberthreat

• Gathering and preparation, co-ordinate, to build collaboration with Domestic banking sector and National Cyber Security and also Regulation and Banking sector CERT.

• Readiness for Assessment and also Simulation Cybersecurity Test preparation in many aspects / angles based upon Statistic Recording and Threat Intelligence from Internal Factor and External Factor.

• Co-ordinate and control External Provider or 3rd Party for Business Relation in order to response the Cybersecurity Events and Incident Against Cyber Attacked from public Accessing.

• Studying and Educate of TTP (Tactical, Technical and Procedure) of new Cyber Attacked and Gather Information Feeds of Cyber Threat Intelligence purposing to propose new-approach of Cybersecurity Countermeasure

• Cyber Risk Mitigation and Control to meet Cyber Risk Appetite according for highest Business outcome and objectives

Qualification:

· Bachelor's Degree in Engineering /IT or relevant field with at least 5 years of work experience in Information Security or Cybersecurity.

· Robust skills in Cyber Defense Technology and Incident Responder which is certified by a global certificate.

· Strong Malicious Activity Identification and Investigate and mature the Network Security Containment strategy and deployment on Digital Banking Technology and environment.

· Good Experience and Understanding in Zero-Day Attack/Target Attack, Containment, Virtual Patch, and Mitigation Recommendation.

· Develop a Program of Cyber Defense Programs with both Proactive-Reactive Strategies to reduce the impact on the bank.

· Exercise Paybook and IR plan for regular and also the red-team blue team.

· Good command of English and Explain root-cause of Impact.

· Preferable Certified in CEH A or other related Cyber security certifications.