72 Cybersecurity Specialist jobs in Thailand

Build a safer digital world with Ascend Money

Ready to advance your cybersecurity career and make an impact protecting millions of users? We're looking for passionate, driven professionals to join our Cybersecurity team in the Offensive Cybersecurity Specialist role:

Responsibilities:

• Conduct advanced penetration tests to identify vulnerabilities in computer systems, networks, and applications.
• Perform vulnerability assessments and security audits to evaluate the effectiveness of existing security measures.
• Develop and execute simulated cyber attacks to assess the organization's readiness to defend against real-world threats.
• Employ various attack methodologies to test the resilience of systems against hacking attempts and security breaches.
• Perform threat modeling to anticipate potential attack vectors.
• Analyze risks associated with identified vulnerabilities and recommend appropriate mitigation strategies.
• Develop custom tools and scripts to automate penetration testing and exploit known vulnerabilities.
• Keep up-to-date with the latest exploitation techniques and security tools.
• Prepare detailed reports on findings from penetration tests and security assessments.
• Document and present risks and vulnerabilities to relevant stakeholders, along with recommended countermeasures.
• Collaborate with the Blue Team to enhance the organization's defensive strategies based on offensive findings.
• Share insights and knowledge on emerging threats and attack techniques with the cybersecurity team to continually improve defensive measures.

Essential Skills & Prerequisites

• Bachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 5 years of experience in penetration testing and vulnerability assessments or related roles.
• Strong knowledge of network and application security, ethical hacking, and cybersecurity principles.
• Familiarity with penetration testing tools (e.g., Metasploit, Burp Suite, Kali Linux).
• Excellent problem-solving skills and ability to think like an adversary.
• Good communication skills for effective reporting and stakeholder engagement.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, and etc.
• Professional Certificated related to work e.g. (CISSP, OSCP, OSWE) is desirable

Why Ascend Money?

• Contribute to a safer digital world.
• Gain hands-on experience with cutting-edge cybersecurity challenges.
• Grow your career in a dynamic, fast-moving environment.

Don't miss this opportunity to be part of something big Apply now and take the next step with Ascend Money.

Apply Now: CLICK

About TrueMoney

TrueMoney is a leading international fintech brand providing innovative payment and financial services across seven countries in Southeast Asia. With its user-friendly digital platform, extensive agent network, and comprehensive offline and online services, TrueMoney empowers millions of users to make easy, secure payments and enjoy a more convenient financial lifestyle.

Since its establishment, TrueMoney has grown to become the most popular digital financial application in the region, playing a central role in expanding access to financial services and improving quality of life for individuals and MSME communities.

TrueMoney is part of Ascend Money, a regional digital financial services company founded in 2013, which reached a major milestone by becoming Thailand's first fintech unicorn in 2021.

• Conduct advanced penetration tests to identify vulnerabilities in computer systems, networks, and applications.
• Perform vulnerability assessments and security audits to evaluate the effectiveness of existing security measures.
• Develop and execute simulated cyber attacks to assess the organization's readiness to defend against real-world threats.
• Employ various attack methodologies to test the resilience of systems against hacking attempts and security breaches.
• Perform threat modeling to anticipate potential attack vectors.
• Analyze risks associated with identified vulnerabilities and recommend appropriate mitigation strategies.
• Develop custom tools and scripts to automate penetration testing and exploit known vulnerabilities.
• Keep up-to-date with the latest exploitation techniques and security tools.
• Prepare detailed reports on findings from penetration tests and security assessments.
• Document and present risks and vulnerabilities to relevant stakeholders, along with recommended countermeasures.
• Collaborate with the Blue Team to enhance the organization's defensive strategies based on offensive findings.
• Share insights and knowledge on emerging threats and attack techniques with the cybersecurity team to continually improve defensive measures.

Job Qualifications

• Bachelors or Masters Degree in Computer Engineering, Computer Science or related field.
• At least 5 years of experience in penetration testing and vulnerability assessments or related roles.
• Strong knowledge of network and application security, ethical hacking, and cybersecurity principles.
• Familiarity with penetration testing tools (e.g., Metasploit, Burp Suite, Kali Linux).
• Excellent problem-solving skills and ability to think like an adversary.
• Good communication skills for effective reporting and stakeholder engagement.
• Rapid learning capability and able to work under pressure.
• Good command in written and spoken Thai and English language.
• Ability to present technical solutions with stakeholders in an easy way.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., NIST-800-53, PCI-DSS, OWASP, and etc.
• Professional Certificated related to work e.g.
  (CISSP, OSCP, OSWE)
  is desirable

• Coordinated to remediation cybersecurity incidents and coordinated to provide cybersecurity services.
• Excellent communication (Thai and English) skill to co-operation with application team, infra team and subsidiaries team
• Project / service tracking to ensure tasks assignments will be completed within timeline.
• Cybersecurity document in Thai and English such as cybersecurity manual and cybersecurity news etc.

Requirements

• 3-5 years of experience in cybersecurity incidents & response, cybersecurity services, project coordinator and project management etc.

• Knowledge in cybersecurity services and tools as below:

• Incidents Response (Prefer) : Cortex XDR, NTA, Firewall, SIEM, DLP etc.

• Cybersecurity Services (Prefer) : Penetration Testing, Awareness Training, Phishing Test etc.

• Cybersecurity Tools : DAST, VA Scan, CyberArk, WAF, Microsoft Security etc.

• Contribute towards the execution of policies, standards and procedures specific set by enterprise industry such as ISO27001, NIST, PDPA etc.

• Ability to think strategically, work with a sense of urgency and pay attention to details
• Strong team player that collaborates well with others to solve problems and actively incorporate input from various sources

About the role

As a Cybersecurity Sales Specialist at MAYASEVEN CO., LTD., you will be responsible for driving the adoption and implementation of our cybersecurity services. This is a full-time position based in Bangkok, where you will work closely with our clients to understand their unique security challenges and provide tailored, cutting-edge solutions to protect their digital assets.

What you'll be doing

• Engage with prospective clients to understand their cybersecurity requirements, pain points, and compliance needs.
• Develop customized sales proposals that clearly demonstrate the value of our services, including Pentesting, Red Teaming, VA, and IT audit offerings.
• Build and maintain strong, long-term relationships with existing customers, ensuring satisfaction and identifying opportunities for upselling or cross-selling.
• Collaborate with the technical team to deliver pre-sales support, service walkthroughs, and post-sales coordination to ensure successful service delivery.
• Stay informed of the latest developments in the cybersecurity landscape to better align our offerings with emerging customer needs.
• Contribute to the creation of impactful sales strategies and marketing content to support business growth.

What we're looking for

• Minimum 2 years of experience in a sales role, preferably in the cybersecurity or information technology industry
• Excellent communication and presentation skills, with the ability to translate complex technical concepts into business-friendly language
• Proven track record of successfully closing sales deals and maintaining long-term client relationships
• Ability to work independently and as part of a team, with a proactive and solutions-oriented mindset
• Familiarity with industry regulations and compliance standards related to cybersecurity

What we offer

At MAYASEVEN, we are committed to providing our employees with a rewarding and fulfilling work experience. In addition to a competitive salary and benefits package, we offer a range of benefits including comprehensive health insurance, retirement plans, paid time off, ongoing training and development opportunities, and a collaborative and inclusive work environment where everyone feels valued, respected, and empowered to contribute their ideas and perspectives.

About us

MAYASEVEN is an industry leading penetration testing and red teaming services, committed to helping businesses safeguard their critical data and infrastructure against ever-evolving threats. With a strong track record of success and a commitment to excellence, we are poised for continued growth and are seeking talented individuals to join our team.

Job Purpose:

Responsible for monitoring and analyzing security events, identifying potential threats, and implementing solutions to prevent security breaches. The SOC Analyst will work closely with other IT professionals to ensure the safety and integrity of our organization's data.

Location : Avani Charoen Nakhon (Thonburi) with shuttle van service from BTS Krungthon

Key Responsibilities:

• Continuously monitor security alerts and events from various sources including firewalls, intrusion detection , threat protection systems, and security information and event management (SIEM) systems.
• Investigate security incidents, identify root causes, and recommend corrective actions to mitigate threats.
• Actively participate in the incident response process, including incident detection, analysis, containment, eradication, and recovery.
• Conduct routine security vulnerability assessment scan and provide remediation or mitigation suggestions for the discovered vulnerabilities.
• Stay updated on the latest cybersecurity threats and trends, and utilize threat intelligence to enhance the organization's security posture.
• Maintain accurate and detailed records of security incidents, response actions, and follow-up activities.
• Work with other IT and security teams to develop and implement security policies, procedures, and best practices.
• Generate reports on security incidents, trends, and overall security posture for management and stakeholders.
• Safeguards information system assets by identifying and solving potential & actual risks.
• Recognizes problems by identifying abnormalities, investigating forensics, detect violations and conducting periodic audits.
• Implements security improvements by assessing current situation, evaluating trends & anticipating requirements.
• Maintains quality service by following industrial standards.

Job Specification:

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 2+ years of experience in a SOC Analyst or similar role.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or CompTIA Security+ are preferred.
• Proficiency in using security tools and technologies such as SIEM, EDR software and VA scan tools.
• Strong analytical and problem-solving skills with the ability to think critically and act decisively under pressure.
• Strong knowledge of information security best practices and standards.
• Good understanding and appreciation of technology development life cycles.
• Ability to work effectively in a team-oriented environment and collaborate with colleagues from diverse backgrounds.
• High attention to detail and accuracy in monitoring, detection, and documentation of security events.
• Self-motivated, proactive, and self-initiative.
• Excellent verbal and written communication skills with the ability to convey complex technical information to non-technical stakeholders.
• Good command of English.

Responsibilities

• Plan, design, and implement information security measures to protect systems from cyber threats and attacks.
• Advice on information security for IT projects and conduct security risk assessment.
• Analyze system vulnerabilities and risks, providing recommendations for improvements and threat prevention.
• Develop and update information security policies and procedures, ensuring compliance with ISO 27001 or other relevant security standards.
• Collaborate with IT and other departments to ensure proper security practices are in place across the organization.
• Manage cyber incidents such as data breaches or system intrusions, including root cause analysis and remediation efforts.

Qualifications:

• Bachelor's degree in Computer science, computer engineering or other field related to
• Experiences 5-7 years Field experience in cybersecurity.
• Have a good attitude to work, diligent, patient.
• Have deep knowledge of information technology and understand security in information technology.
• Thorough and attentive to work.
• Having a certificate in information technology security will be an advantage.
• Experienced in IT Security

Field

Job descriptions:

• Capable of demonstrating Proof of Concept (POC) for proposed solutions to illustrate their feasibility and effectiveness.
• Analysis of phishing emails reported by internal end users.
• Escalation of incidents to be handled to L2 SOC team, when relevant.
• Follow up on remediation activities
• Triage on general information security tickets

Qualifications:

• Bachelor's degree or higher in Computer Engineering, Computer Science, IT, or related fields
• At least 1-2 years of Experience in Security Analyst (SOC) Tier 1.
• Basic knowledge and/or experience with common security tools such as anti-virus, intrusion detection and firewalls are required
• Knowledge of CSOC processes, SIEM (Splunk), EDR, SOAR, UEBA.
• Passion for Cyber Security and learning
• Well-developed logical thinking capabilities, in order to be able to investigate cases.
• Having a Security+ certification (CompTIA Sec+) will be considered a plus.

Job description

1. Security requirements (standards / patterns):

2. Support in surfacing recommended refinements to program-level security requirements as part of lower-level squad designs, and by incorporating enterprise standards, regulatory standards, program design principles & standards, and industry best practices.

3. Security assessments:

4. Support program (overall & squad-level) security assessments (e.g., Threat Modelling) to identify critical assets, potential security threats and vulnerabilities within the application and its infrastructure.

5. Security Controls Architecture design:

6. Support development of program's security controls architectures, focusing on requirements gathering, researching & analyzing appropriate controls, that encompasses network security, application security, data protection, and identity and access management. Establish security patterns to be adopted by the program

7. Security squad-level support:

8. Support squads in analyzing & recommending application of program-wide security controls and policies, including identifying specific security threat, analyzing solutions, & helping to ensure squad-level designs appropriately incorporate security requirements

9. Document security findings, recommendations, and remediation plans.

Skills / experience required

• Understanding of Security Principles: Strong foundation in the principles of security, including identity & access management, data security, cryptography, code security, infrastructure protection, etc.
• Experience with banking security architecture for major retail digital banking platforms and addressing the emerging threat landscape with suitable controls.
• Basic understanding & experience with Security Frameworks and Standards: Familiarity with security frameworks and standards such as NIST, ISO 27001, OWASP, and knowledge of banking regulations affecting application security.
• Knowledge of Network and Infrastructure Security: Understanding of network protocols, firewalls, VPNs, and other security measures that protect application infrastructure.
• Strong collaboration and communication skills given need for close working relationships with cross-functional squads

If you require more information, please contact K.Kamonporn Taisub Tel

Working Location :

1. Bangkok Bank Rama 3

2. Bangkok Bank Silom

T.D. Software Co.,Ltd. กำลังเปิดรับสมัครตำแหน่ง งานสัญญาจ้าง/ชั่วคราวSecurity Analyst ที่ เขต สาทร, กรุงเทพมหานคร สมัครเลยเพื่อเป็นส่วนหนึ่งของทีมเรา

สรุปงาน:

• มีเวลาการทำงานที่ยืดหยุ่น
• ต้องมีประสบการณ์มากกว่า 4 ปี ที่เกี่ยวข้องกับการทำงานตำแหน่งนี้
• เงินเดือนที่คาดหวัง: ฿70,000 ต่อ เดือน

IAM Security Analyst

Employment Condition: contract 12 months

Work Type: Hybrid

Responsibilities:

• Liaise with business application owners and system owners to implement Role Based Access Control (RBAC) project.
• Analyze the identity life cycle, articulating access requirements and defining identity & role-based access for applications.
• Follow documented framework, methods, and practices to deliver effective and efficient project and support ISO 27001.
• Follow up cybersecurity non-compliance issues.
• Prepare quality project status report and materials needed to facilitate critical decisions by the management.

Qualifications:

• 5+ years experiences in Cybersecurity and Identity and Access Management or other related fields in insurance, banking business, consulting, or other services industry.
• Experience in Identity and Access Management (IAM) and Role Based Access Control (RBAC) is preferable.
• Experience in ISO 27001 standard implementation
• Experience in cybersecurity awareness training program
• Good communication in English is a plus.