87 Cybersecurity Specialists jobs in Thailand

Summary:
Responsible for researching and analyzing emerging cyber threats, developing threat intelligence reports, and collaborating with security teams to mitigate risks. They proactively monitor for threats, assess potential impacts, and provide actionable intelligence to mitigate risk and enhance organization's security posture.

Responsibilities:- Proactively research emerging cyber threats, analyze their characteristics, and assess their potential impact on the organization
- Collect and analyze threat intelligence from various sources (commercial, government, open-source) and produce actionable reports for different groups of stakeholders ranging from senior executives to technical team
- Provide timely and relevant threat intelligence to support incident response efforts and investigations
- Identify vulnerabilities and provide insights to improve vulnerability management processes
- Collaborate with security teams (SOC, incident response) and other stakeholders to share threat intelligence and improve overall security posture
- At least 4 years of experience in Cyber Threat Intelligence Engineer or related role.
- Technical Proficiency: Strong understanding of networking, operating systems, security concepts, and tools
- Threat Intelligence Expertise: Knowledge of the threat landscape, attack methodologies, and threat actors.
- Understanding of cybersecurity-related legal and regulatory requirements
- Analytical and Problem-Solving Skills: Ability to analyze complex information, identify patterns, and draw meaningful conclusions.
- Communication and Collaboration Skills: Ability to effectively communicate threat intelligence findings to technical and non-technical audiences.
- Experience with Threat Intelligence Platforms: Familiarity with commercial or open-source threat intelligence platforms.
- Experience with cyber forensic procedure: analysis of digital evidence to investigate cybercrimes, reconstruct events, and identify vulnerabilities.
- Programming/Scripting Skills: May be required for custom tool development and automation.

Responsibilities:

• Proactively research emerging cyber threats, analyze their characteristics, and assess their potential impact on the organization
• Collect and analyze threat intelligence from various sources (commercial, government, open source) and produce actionable reports for different groups of stakeholders ranging from senior executives to technical team
• Provide timely and relevant threat intelligence to support incident response efforts and investigations
• Identify vulnerabilities and provide insights to improve vulnerability management processes
• Collaborate with security teams (SOC, incident response) and other stakeholders to share threat intelligence and improve overall security posture

Qualifications

• At least 4 years of experience in Cyber Threat Intelligence Engineer or related role.
• Technical Proficiency: Strong understanding of networking, operating systems, security concepts, and tools
• Threat Intelligence Expertise: Knowledge of the threat landscape, attack methodologies, and threat actors.
• Understanding of cybersecurity-related legal and regulatory requirements
• Analytical and Problem-Solving Skills: Ability to analyze complex information, identify patterns, and draw meaningful conclusions.
• Communication and Collaboration Skills: Ability to effectively communicate threat intelligence findings to technical and non-technical audiences.
• Experience with Threat Intelligence Platforms: Familiarity with commercial or open-source threat intelligence platforms.
• Experience with cyber forensic procedure: analysis of digital evidence to investigate cybercrimes, reconstruct events, and identify vulnerabilities.
• Programming/Scripting Skills: May be required for custom tool development and automation.

Summary:

Responsible for researching and analyzing emerging cyber threats, developing threat intelligence reports, and collaborating with security teams to mitigate risks. They proactively monitor for threats, assess potential impacts, and provide actionable intelligence to mitigate risk and enhance organization's security posture.

Responsibilities:

• Proactively research emerging cyber threats, analyze their characteristics, and assess their potential impact on the organization
• Collect and analyze threat intelligence from various sources (commercial, government, open-source) and produce actionable reports for different groups of stakeholders ranging from senior executives to technical team
• Provide timely and relevant threat intelligence to support incident response efforts and investigations
• Identify vulnerabilities and provide insights to improve vulnerability management processes

• Collaborate with security teams (SOC, incident response) and other stakeholders to share threat intelligence and improve overall security posture

• At least 4 years of experience in Cyber Threat Intelligence Engineer or related role.

• Technical Proficiency: Strong understanding of networking, operating systems, security concepts, and tools
• Threat Intelligence Expertise: Knowledge of the threat landscape, attack methodologies, and threat actors.
• Understanding of cybersecurity-related legal and regulatory requirements
• Analytical and Problem-Solving Skills: Ability to analyze complex information, identify patterns, and draw meaningful conclusions.
• Communication and Collaboration Skills: Ability to effectively communicate threat intelligence findings to technical and non-technical audiences.
• Experience with Threat Intelligence Platforms: Familiarity with commercial or open-source threat intelligence platforms.
• Experience with cyber forensic procedure: analysis of digital evidence to investigate cybercrimes, reconstruct events, and identify vulnerabilities.
• Programming/Scripting Skills: May be required for custom tool development and automation.

Job Title
:
Cybersecurity Analyst (Identity & Access Management)

Position type
: Full time

Place of work
: Bangkok, Silom

Salary
: Negotiable

Working conditions
: Normal working hours

Department/Function
: Technologies & Operations

Reporting to Title
: Head of Operational Security

The company and the mission:

BRED IT (Thailand) a wholly owned subsidiary of the French bank BRED Banque Populaire based out of Paris (BPCE Group).

BRED IT was established in 2008 with the objective to become the IT hub for BRED Group Commercial Banks in South East Asia, Pacific Ocean, and the Horn of Africa areas.

In parallel, BRED IT has expanded its activities since 2011 to also provide remote IT services to Paris Headquarters.

Today, with more than 200 employees, BRED IT fully supports Banque Franco Lao in Laos, BRED Bank Cambodia, BRED Bank Vanuatu, BRED Bank Solomon Islands, BRED Bank Fiji and Banque pour le commerce et l'industrie Mer Rouge (BCIMR) in Djibouti:

BRED IT hosts and manages all layers of BRED International Banks Information Systems: From Infrastructures to Applications (Core Banking, Internet/Mobile Banking, E-Payments…), on a 24x7 basis.

Half of the activity is currently performed for BRED Headquarters, with a focus on Projects (built with Java, COBOL, PHP, DataStage) and Production/Devops.

We are a unique company, thanks to our identity and our history: We place our expertise at the service of BRED Group and develop our activities with an entrepreneurial structure.

By putting BRED group best interests first, it allows us to deliver tailor-made solutions with high value-added.

Main Objectives and Activities

Within the Technologies & Operations department, you will join the Operational Security team to become a key player for the Identity & Access Management (IAM) activities for BRED Headquarters in Paris. Your work will consist in:

• Coordinating and following up the access rights review campaigns for all the BRED Headquarters' applications, in collaboration with the BRED Identity & Access Management team.
• Maintaining, improving, and participating in the existing Identity & Access Management activities and workflows (
  e.g.,
  provisioning process, de-provisioning process, definition of access profiles, and access reviews).
• Monitoring and auditing access controls and user activities, for the BRED Heaquarters' employees.
• Conducting training and awareness programs on IAM best practices, for the BRED Headquarters' employees.

Education

• Bachelor's degree (BSc.) in Computer Science or Bachelor/Master's degree of Business Administration (BBA/MBA) with a first experience in the IT industry.

Language skills

• Very good command of French (both speaking and writing) is mandatory. Native speaker is preferred.
• Good Command of English (both speaking and writing) is mandatory.

Experience and Skills

• 0 to 2 years of experience in the IT or cybersecurity field.
• Strong analytical and interpersonal skills are expected, with the ability to synthesize and communicate with non-specialists, regularly.
• The candidate is expected to be highly energetic, proactive, curious, and persistent.
• The candidate is expected to be well organized and methodical.
• The candidate is expected to have strong writing and formalization skills.

Technical Skills Required

• The candidate is expected to have a general understanding of the Identity & Access Management activities (provisioning, de-provisioning, access review, definition of access profiles, principle of least privileges, SoD matrix) and concepts (e.g., access control models, identity lifecycle, federated identities, SSO).
• The candidate is expected to be proficient with the Microsoft Office suite, particularly Excel and PowerBI.

What we offer:

• Attractive compensation (includes fixed and performance bonus)
• Hybrid working mode with 2 days work from home per week with flexible working hours
• Additional 10 days of work from anywhere per year
• Work from home allowance for you to buy equipment to facilitate working at home
• Standby and Overtime allowance for Level 2 support employees who are required to work on a 24x7 basis
• Annual leave from 14-25 days
• Provident Fund with competitive company contribution rates starting from 6% up to 12%
• Medical insurance and life insurance covering employee and dependent; spouse and child or children from your first day
• Outpatient Department (OPD) coverage of 2,500THB per visit for 31 visits per year.
• In Patient Department (IPD) coverage.
• Dental Care coverage of 4,000THB per year.
• Eye Care coverage of 5,000THB per year.
• Employee Assistance Program (EAP) providing mental support for colleagues to release stress and alleviate employee life problems.
• Learning and Development benefits, including an online e-learning platform
• Staff wellness program including badminton, football, dance classes, and yoga classes.
• Monthly activities such as snacks and food, wine and cheese, games, events, lucky draw, and staff parties.
• Annual Health checkup benefits

As a Cybersecurity Presale at NTT DATA, you will engage with clients to understand their cybersecurity needs and provide tailored solutions from NTT DATA's comprehensive portfolio. You will support clients throughout their security journey, focusing on risk management, compliance, secure business enablement, and enterprise cyber resilience.

• Client Engagement & Advisory

• Consult with clients to identify cybersecurity priorities and challenges.

• Advise on best practices for secure business transformation and cyber resilience.

• Solution Design & Presentation

• Develop and present customized cybersecurity solutions using NTT DATA's offerings, including:

  • Enterprise Risk Management & Advisory (e.g., governance, risk, compliance)
  • Secure Business Transformation (e.g., endpoint, network, and cloud security)
  • Enterprise Cyber Resilience (e.g., unified detection and response)
  • Consulting Services

• Provide consulting on SOC maturity assessment, industry benchmarking (NIST, CMMI), compromise assessment, and crisis management.

• Support SOC platform build, migration, and engineering.

• Platform & Technology Utilization

• Leverage platforms such as Risk Intelligence, Data & Privacy Security Governance, Data Resilience, UXDR, and Digital Identity.

• Integrate ITSM workflows, SOAR, and SIEM for modernized security operations.

• Threat Intelligence & Security Operations

• Collaborate with threat intelligence providers (e.g., VirusTotal, Group-IB, CrowdStrike, Recorded Future).

• Oversee network security (firewalls, WAFs, proxies, NDR, IPS) and endpoint protection (EDR, Windows Security Event monitoring).
• Manage cloud security across AWS, Azure, and Google Cloud.

• Data Source Integration

• Integrate data from endpoints, servers, and cloud environments for comprehensive security monitoring.

• Bachelor's degree in Computer Science, Information Security, or related field.
• Experience in cybersecurity presales, consulting, or solution architecture.
• Strong knowledge of cybersecurity frameworks (NIST, CMMI), SOC operations, and security technologies.
• Excellent communication and presentation skills.
• Ability to work collaboratively with clients and internal teams.

About the Role:

We are looking for a highly skilled Cybersecurity Consultant to advise clients on protecting their critical systems, data, and infrastructure from evolving cyber threats. This role involves assessing security risks, designing practical solutions aligned with industry standards, and guiding organizations through implementation and compliance processes. You will work closely with executives, IT teams, and stakeholders to ensure that security strategies are both technically sound and business-focused, while staying ahead of emerging technologies, regulations, and threat landscapes.

Key Responsibilities:

• Assess, analyze, and evaluate organizational cybersecurity risks and vulnerabilities.
• Design security strategies, frameworks, and measures aligned with industry standards (ISO/IEC 27001, NIST Cybersecurity Framework, CIS Controls).
• Advise and support clients in developing policies, procedures, and incident response plans.
• Collaborate with technical teams and executives to implement and improve security architecture and infrastructure.
• Prepare risk assessment reports, vulnerability/penetration testing findings, and practical recommendations.
• Deliver training, workshops, and awareness sessions to strengthen cybersecurity culture.
• Monitor emerging threats, technologies, and regulatory requirements to ensure proactive adaptation.

Qualifications:

• Bachelor's or Master's degree in Computer Engineering, Computer Science, Cybersecurity, or related fields.
• 2–5 years of experience in cybersecurity, IT security consulting, or IT audit (depending on role level).
• Strong knowledge of network security, cloud security, endpoint protection, and identity & access management (IAM).
• Experience in risk assessment, penetration testing, or security solution design is a strong plus.

Preferred Certifications (an advantage):

• Recognized certifications such as CISSP, CISM, CISA, CEH, OSCP, or ISO 27001 Lead Implementer/Lead Auditor.
• Excellent communication, presentation, and report-writing skills in both English and Thai (if applicable).
• Understanding of cybersecurity-related regulations (e.g., PDPA, GDPR, Cybersecurity Act).
• Strong problem-solving, teamwork, and analytical abilities.

Employee Benefits:

• Social Security
• Provident Fund
• Group Insurance
• Long Service Awards
• Annual Bonus / Performance Bonus
• Annual Health Checkups
• Company Trip
• 5-Day Work Week (off on Saturday and Sunday)
• Flexible Working Hours

About the Role:

We are looking for a highly skilled Cybersecurity Consultant to advise clients on protecting their critical systems, data, and infrastructure from evolving cyber threats. This role involves assessing security risks, designing practical solutions aligned with industry standards, and guiding organizations through implementation and compliance processes. You will work closely with executives, IT teams, and stakeholders to ensure that security strategies are both technically sound and business-focused, while staying ahead of emerging technologies, regulations, and threat landscapes.

Key Responsibilities:

• Assess, analyze, and evaluate organizational cybersecurity risks and vulnerabilities.
• Design security strategies, frameworks, and measures aligned with industry standards (ISO/IEC 27001, NIST Cybersecurity Framework, CIS Controls).
• Advise and support clients in developing policies, procedures, and incident response plans.
• Collaborate with technical teams and executives to implement and improve security architecture and infrastructure.
• Prepare risk assessment reports, vulnerability/penetration testing findings, and practical recommendations.
• Deliver training, workshops, and awareness sessions to strengthen cybersecurity culture.
• Monitor emerging threats, technologies, and regulatory requirements to ensure proactive adaptation.

Qualifications:

• Bachelor's or Master's degree in Computer Engineering, Computer Science, Cybersecurity, or related fields.
• 2–5 years of experience in cybersecurity, IT security consulting, or IT audit (depending on role level).
• Strong knowledge of network security, cloud security, endpoint protection, and identity & access management (IAM).
• Experience in risk assessment, penetration testing, or security solution design is a strong plus.

Preferred Certifications (an advantage):

• Recognized certifications such as CISSP, CISM, CISA, CEH, OSCP, or ISO 27001 Lead Implementer/Lead Auditor.
• Excellent communication, presentation, and report-writing skills in both English and Thai (if applicable).
• Understanding of cybersecurity-related regulations (e.g., PDPA, GDPR, Cybersecurity Act).
• Strong problem-solving, teamwork, and analytical abilities.

Employee Benefits:

• Social Security
• Provident Fund
• Group Insurance
• Long Service Awards
• Annual Bonus / Performance Bonus
• Annual Health Checkups
• Company Trip
• 5-Day Work Week (off on Saturday and Sunday)
• Flexible Working Hours

Design and work on Cybersecurity framework based on business objectives and strategic imperatives of the client organization including goals, vision, mission, and operational plans.

Designing and implementing data protection and privacy programs for our clients and supporting their business.

Evaluating the data protection and privacy practices of our clients and Conducting Privacy Impact Assessments.

Monitor processes and drive improvements in efficiency and quality of cyber-security programs.

Assist in development of workflows for transitioning strategic plans into implementation plans and operational readiness.

Facilitate strategic planning initiatives, documentation, technical roadmaps and security tool rationalization.

Assist in designing the security organization structure including cyber defense.

Develop security policies, procedures, standards based on the security strategy and roadmap.

Review of cyber security policies and processes to identify gaps in design of control based on comprehensive assessment framework.

Maintain continuous communication with key stakeholders in support of the security strategy, and plan and solicit feedbacks, to uplift the programs and capabilities.

Conduct security process implementation reviews to assess security effectiveness and reporting.

Conduct Current State Assessment of cyber security practices against the defined controls and provide recommendations for to-be state.

Run cyber security diagnostic assessments and develop programs for Cybersecurity skill development and enhancement.

Implement security controls for realization of the certification requirements and provide technology roadmap based on the security strategy.

Assisting in delivering privacy projects to acting as a subject matter expert on them or to leading a team towards excellent client experience.

Supporting and guiding our clients in adhering to the complex web of relevant national and international regulations (e.g. EU General Data Protection Regulation, PDPA and etc.).

Deploying processes and tools to help detect and prevent privacy breaches.

Ensuring a harmonized approach towards data protection and privacy by bringing together our client s stakeholders (e.g. legal, compliance, risk, HR, security, business functions ).

Assisting clients in privacy related incident response activities.

Supporting the client s team by acting as an interim team member (e.g. data protection officer, security officer, security manager, security analyst ).

Proactively identifying and pursuing opportunities for further business and team growth.

Preferred skills.

At least three years of experience in cyber-security.

Bachelor s degree in Computer Engineering, Computer Science, Information Systems or a related field.

Have knowledge of industry standard classification schemes, such as ISO 27000, NIST. GDPR, TH PDPA, PCI DSS, Data Loss Prevention etc.

Have demonstrated self leadership, problem solving, including verbal and written communication skills. You need to be able to communicate clearly in both Thai and English.

Have proven analytical, decision-making, and presentation skills.

Have a high level of MS Office proficiency.

Be able to work both independently and as part of a team with professionals at all levels.

Education (if blank, degree and/or field of study not specified).

Degrees/Field of Study required: Bachelor Degree Degrees/Field of Study preferred: Certifications (if blank, certifications not specified).

Required Skills.

Optional Skills.

Desired Languages (If blank, desired languages not specified).

Travel Requirements.

Not Specified

Available for Work Visa Sponsorship.

No

Government Clearance Required.

No

Job Posting End Date.

Job skills required: English, Problem Solving, Compliance, Legal

About Bluebik – Ambition to Reality

Bluebik is the leading consultancy focusing on comprehensive advice on digital transformation to transform the capabilities of our clients through technological application. We provide transformation consulting consists of Management Consulting – advice on strategies and management, Digital Excellence & Delivery covering in-depth recommendations on digital and technological development within organizations, Strategic PMO – advice on tangible benefits and significant cost saving through clients' business process, Big Data & Advanced Analytics – provide end to end solution for Big Data & Advanced Analytics from strategy to implementation, Cybersecurity – advice on managing cybersecurity risk and enhancing maturity and efficiency, and achieving cyber resilience.

About Bluebik Titans

Bluebik Titans is the new cybersecurity pillar of Bluebik Group, built upon a collective of cybersecurity professionals with a definite goal to provide market-leading security consultancy services.

About the role

As a Cybersecurity Consultant (Strategy, Governance, Risk, and Compliance), you will be responsible for leading the development, implementation, and management of cybersecurity strategies, policies, and procedures tailored to meet the unique needs and objectives of our clients. This role involves collaboration with key stakeholders, conducting cybersecurity assessments, and providing expert guidance on best practices and compliance requirements.

Work you will do

• Development, implementation, and management of cybersecurity strategies, policies, and procedures tailored to meet the unique needs and objectives of our clients.
• Collaborate with key stakeholders to assess cybersecurity risks and develop risk management strategies and mitigation plans.
• Conduct cybersecurity gap assessments and audits to identify vulnerabilities, weaknesses, and compliance gaps.
• Develop cybersecurity governance frameworks, including roles, responsibilities, and decision-making processes.
• Provide expert guidance and recommendations on cybersecurity best practices, standards, and compliance requirements, including but not limited to ISO 27001, NIST, and others.
• Monitor regulatory changes and industry trends to ensure ongoing compliance and alignment with best practices.
• Serve as a subject matter expert on cybersecurity governance, risk management, and compliance matters, providing insights and recommendations to clients and internal teams.
• Conduct training sessions and workshops to educate clients and internal stakeholders on cybersecurity strategy, governance, risk, and compliance topics.
• Mentor and coach junior team members, providing guidance and support.

Let us Talk About You

If you are someone with:

• Bachelor's degree or Master's degree in Cybersecurity, Information Technology, Business Administration, or a related field.
• Minimum of 5 years of experience in cybersecurity, with a focus on strategy, governance, risk, and compliance.
• Strong understanding of cybersecurity frameworks, standards, and regulations, such as NIST Cybersecurity Framework, ISO 27001, etc.
• Proven track record of developing and implementing cybersecurity strategies, policies, and programs in complex organizational environments.
• Excellent knowledge of risk management principles and methodologies, with experience in conducting risk assessments and developing mitigation strategies.
• Relevant certifications such as CISSP, CISM, CRISC, CGEIT, or equivalent.
• Strong communication and interpersonal skills, with the ability to effectively interact with clients, executives, and cross-functional teams.
• Ability to work independently and collaboratively in a fast-paced environment.
• Analytical mindset with strong problem-solving skills and attention to detail.
• Excellent command of written and spoken English.

Why work with us

We are a team of experts in a talented community, a collaborative atmosphere where creativity is encouraged. People First, by putting people at the heart of our priorities, we foster a work environment where you can excel and grow personally and professionally. Bluebik is strived for growth and expansion, and you can be part of our success story. We combine strategy, digital delivery excellence and deep technology advisory to help our clients transform their business. At Bluebik, your career advancement starts with actions. You can manage your own career and will advance based on performance. We collaborate to create unique and outstanding experiences with our talents to empower learning and growth opportunities. Whatever your ambitions, Bluebik offers you with a highly inclusive community of talents from both tech and business worlds to realize your full potential.

What we offer

We offer impactful and challenging work with mentorship and support from direct managers and subject matter experts. You will have autonomy to manage your career path with endless opportunities for professional growth. Our comprehensive benefit package covers medical insurance, life, accident and disability insurance, wellness allowance, vaccination allowance, providence fund, flexible working arrangement, and Professional certification. Bluebik provides opportunities to become the best version of yourself

Equal opportunity

Bluebik is an equal opportunity employer. We owe our success to the talents of our diverse team and the varying perspectives they add to our thriving community.