6 Data Security jobs in Thailand
Data Center Security Manager, Compliance, Safety, Risk Management
Nong Yai, Chonburi
Google
Posted 17 days ago
Job Viewed
Job Description
Google will be prioritizing applicants who have valid working rights in Thailand and do not require Google's sponsorship of a visa.
**Minimum qualifications:**
+ Bachelor's degree or equivalent practical experience.
+ 5 years of experience in managing, sourcing, or procuring business resources and vendors.
+ 5 years of experience in co-ordinating or managing resources for data center locations, and leading operational or project based work and tasks.
**Preferred qualifications:**
+ Master's degree or equivalent practical experience.
+ Experience in managing workforce.
+ Experience with Google application.
+ Knowledge of physical security, investigations, compliance, or risk management.
+ Knowledge of security technology including access control and CCTV.
Security is at the core of Google's design and development process: it is built into the DNA of our products. The same is true of our offices. You're an expert who shares our seriousness about security and our commitment to confidentiality. You'll collaborate with our Facilities Management team to create innovative security strategies, investigate breaches and create risk assessment plans for the future. You believe that providing effective security doesn't come at the expense of customer service - you will be our bodyguard (and our long lost pal).
As a Data Center Security Manager, you will lead projects with minimal guidance, leveraging your expertise in security technology, data analysis and visualization to drive team efforts. You will collaborate across teams, propose creative solutions and uphold Google's cultural values while contributing to a positive work environment. You will ensure security integrity, investigate breaches and implement effective solutions to safeguard our infrastructure.
Behind everything our users see online is the architecture built by the Technical Infrastructure team to keep it running. From developing and maintaining our data centers to building the next generation of Google platforms, we make Google's product portfolio possible. We're proud to be our engineers' engineers and love voiding warranties by taking things apart so we can rebuild them. We keep our networks up and running, ensuring our users have the best and fastest experience possible.
**Responsibilities:**
+ Oversee compliance, security and risk management programs for the data center campus including incident management, guard agreements and physical security issues.
+ Provide after hours on-call support and serve as the primary contact for emergencies, event response and crisis management.
+ Conduct investigations into code of conduct violations, workplace injuries and security incidents, as well as Threat, Vulnerability and Risk Assessments (TVRA).
+ Enforce compliance processes in alignment with Compliance, Safety, and Risk Management (CSRM) policies, standards and regulatory requirements.
+ Manage security-related budgets, forecasts and invoice control for the assigned campus while supporting financial analysis and decision-making for security requirements.
Google is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also and If you have a need that requires accommodation, please let us know by completing our Accommodations for Applicants form:
**Minimum qualifications:**
+ Bachelor's degree or equivalent practical experience.
+ 5 years of experience in managing, sourcing, or procuring business resources and vendors.
+ 5 years of experience in co-ordinating or managing resources for data center locations, and leading operational or project based work and tasks.
**Preferred qualifications:**
+ Master's degree or equivalent practical experience.
+ Experience in managing workforce.
+ Experience with Google application.
+ Knowledge of physical security, investigations, compliance, or risk management.
+ Knowledge of security technology including access control and CCTV.
Security is at the core of Google's design and development process: it is built into the DNA of our products. The same is true of our offices. You're an expert who shares our seriousness about security and our commitment to confidentiality. You'll collaborate with our Facilities Management team to create innovative security strategies, investigate breaches and create risk assessment plans for the future. You believe that providing effective security doesn't come at the expense of customer service - you will be our bodyguard (and our long lost pal).
As a Data Center Security Manager, you will lead projects with minimal guidance, leveraging your expertise in security technology, data analysis and visualization to drive team efforts. You will collaborate across teams, propose creative solutions and uphold Google's cultural values while contributing to a positive work environment. You will ensure security integrity, investigate breaches and implement effective solutions to safeguard our infrastructure.
Behind everything our users see online is the architecture built by the Technical Infrastructure team to keep it running. From developing and maintaining our data centers to building the next generation of Google platforms, we make Google's product portfolio possible. We're proud to be our engineers' engineers and love voiding warranties by taking things apart so we can rebuild them. We keep our networks up and running, ensuring our users have the best and fastest experience possible.
**Responsibilities:**
+ Oversee compliance, security and risk management programs for the data center campus including incident management, guard agreements and physical security issues.
+ Provide after hours on-call support and serve as the primary contact for emergencies, event response and crisis management.
+ Conduct investigations into code of conduct violations, workplace injuries and security incidents, as well as Threat, Vulnerability and Risk Assessments (TVRA).
+ Enforce compliance processes in alignment with Compliance, Safety, and Risk Management (CSRM) policies, standards and regulatory requirements.
+ Manage security-related budgets, forecasts and invoice control for the assigned campus while supporting financial analysis and decision-making for security requirements.
Google is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also and If you have a need that requires accommodation, please let us know by completing our Accommodations for Applicants form:
This advertiser has chosen not to accept applicants from your region.
0
Division Manager, Data Protection Office
Bangkok, Bangkok
PTT Global Chemical Plc.
Posted today
Job Viewed
Job Description
**Major Responsibilities**
- Implementing designed policies and procedures on Data Privacy in compliance with the PDPA.
- Advising business owners in establishing Privacy by Design and by Default within GC organization.
- Overseeing and providing legal consultation and opinions relating to the collection, use and processing of Personal Data across GC and its group companies to which GC provides DPO shared service.
- Assisting assigned DPO to act as the point of contact to relevant supervisory authority(ies).
- Reporting to DPO and management any key/critical issue or risk relating to Data Privacy.
- Ensuring that GC and its group companies to which GC provides DPO shared service establish and maintain an up-to-date Record of Processing Activities in line with the PDPA.
- Maintaining relevant logs and records relating to Data Privacy as per DPO role.
**Qualification**
- Master's or Bachelor Degree in Legal or related fields such as compliance
- 5-7 years experience in legal, compliance, data governance
- Implementing designed policies and procedures on Data Privacy in compliance with the PDPA.
- Advising business owners in establishing Privacy by Design and by Default within GC organization.
- Overseeing and providing legal consultation and opinions relating to the collection, use and processing of Personal Data across GC and its group companies to which GC provides DPO shared service.
- Assisting assigned DPO to act as the point of contact to relevant supervisory authority(ies).
- Reporting to DPO and management any key/critical issue or risk relating to Data Privacy.
- Ensuring that GC and its group companies to which GC provides DPO shared service establish and maintain an up-to-date Record of Processing Activities in line with the PDPA.
- Maintaining relevant logs and records relating to Data Privacy as per DPO role.
**Qualification**
- Master's or Bachelor Degree in Legal or related fields such as compliance
- 5-7 years experience in legal, compliance, data governance
This advertiser has chosen not to accept applicants from your region.
1
Chief Information Security Officer
Bangkok, Bangkok
PRTR
Posted today
Job Viewed
Job Description
Developing and maintaining company group-level cyber and technology risk policies and governance.
- Overseeing the Cyber Center of Excellence and setting the cyber and technology risk delivery strategy.
- Acting as an advisor to companies and providing CISO on-demand services.
- Providing Cyber and TRM reporting to CTO and CRO as well as related boards.
- Setting up the SOC team.
**Qualifications**:
- Experience in SOC team set-up.
- Worked in technology functions and or consulting background with a focus on technology security.
- Good command of English / Good communication skills.
- More than 10 years of experience.
- Used to interact with C and board-level people.
- Familiar with Technology Security / Risk / Control framework
- Overseeing the Cyber Center of Excellence and setting the cyber and technology risk delivery strategy.
- Acting as an advisor to companies and providing CISO on-demand services.
- Providing Cyber and TRM reporting to CTO and CRO as well as related boards.
- Setting up the SOC team.
**Qualifications**:
- Experience in SOC team set-up.
- Worked in technology functions and or consulting background with a focus on technology security.
- Good command of English / Good communication skills.
- More than 10 years of experience.
- Used to interact with C and board-level people.
- Familiar with Technology Security / Risk / Control framework
This advertiser has chosen not to accept applicants from your region.
2
Information Security Management Manager
Bangkok, Bangkok
Prudential plc
Posted today
Job Viewed
Job Description
Prudential's purpose is to help people get the most out of life. We will deliver our purpose by creating a culture in which diversity is celebrated and inclusion assured, for our colleagues, customers, and partners. We provide a platform for our people to do their best work and make an impact to the business, and in exchange, we support our people's career ambitions. We pledge to make Prudential a place where you can Connect, Grow and Succeed.
This advertiser has chosen not to accept applicants from your region.
3
Information Security Senior Manager
Bangkok, Bangkok
AirAsia
Posted today
Job Viewed
Job Description
**Job Description**:
**Description**:
**Duties and responsibilities**
- Advise CISO on local information and cybersecurity-related regulations and requirements, and then map or recommend changes to existing policies and frameworks.
- Advise local CEO(s) and management on Information Security matters, which may, from time to time, include updates to the Boards of Directors of the various entities.
- Monitor and report on compliance with security and data protection policies, as well as the enforcement of policies.
- Work with in-country Data Protection Officer(s) of Capital A on data protection requirements.
- Maintain a record of up-to-date information security assets (e.g, equipment, documents, etc)
- Participate and facilitate audits and assessment activities to ensure compliance with information security requirements.
- Monitor and investigate local security events and incidents in collaboration with the Group Detection & Response team (Security Operations Center).
- For locally arising security incidents, act as Incident Manager, in coordination with Group Incident Response & Management teams.
- Identify, communicate, and manage current and emerging security threats with relevant stakeholders. To manage end-to-end information security incidents with the assistance of incident management teams.
- Conduct or facilitate periodic and/or ad-hoc information security assessments and testing, as well as manage the findings.
- Analyse management and technical controls to ensure specific security and compliance requirements are met through verification of documented processes, procedures, and standards in order to validate the maintenance of secure configurations.
- Monitor and facilitate the entitlements review process to ensure compliance.
- Monitor third-party risk assessments and assist in performing internal risk assessments.
- Support development and reviews of security policies, processes, and procedures and support service-level agreements to ensure that security controls are managed and maintained.
- Collaborate on IT projects to ensure that security policy/risk issues are addressed throughout the project life cycle.
- Information Security Awareness - Participate in the development of information security awareness training in conjunction with other members of the GRC. Provide consultation, education, and awareness on information security requirements to various levels of management and Allstars.
- Liaise with the Group Information Security Architecture team to ensure local requirements and activities are aligned with the strategies and objectives of group information security design.
- Monitor local guest accounts, payments, and fraud risks and advise Group Business Security (SuperApp accounts and payments anti-fraud, Fraud Operations Team, and Continuous Monitoring Team) on local business security requirements and threats.
**Requirements**:
- Bachelor's Degree in Information Technology, or Business with IT, Computer Science, or equivalent
- Minimum 6 years experience in managing Information Security Operation/Governance, Risk Management, and Compliance, or related fields
- Relevant industry certification is an advantage (ISO 27001, CISA, CISSP, CGEIT, etc)
- Working knowledge in common IT/information security-related regulations or standards, especially ISO 27001 and PCI-DSS
- Working knowledge of local information and cybersecurity-related regulations and requirements is a huge advantage
- Ability to develop, review and maintain documentation in a timely manner
- Strong communication (spoken and written), interpersonal, and conflict resolution skills. The ability to establish and maintain rapport with stakeholders is highly desired.
- Strong analytical and critical thinking skills
- Result-oriented, high level of attention to detail, self-starter and motivator, ability to multitask and adjust to shifting priorities.
**We are all different** - one talent to another - that is how we rely on our differences. At AirAsia, you will be treated fairly and given all chances to be your best.We are committed to creating a diverse work environment and are proud to be an equal opportunity employer.
**Description**:
**Duties and responsibilities**
- Advise CISO on local information and cybersecurity-related regulations and requirements, and then map or recommend changes to existing policies and frameworks.
- Advise local CEO(s) and management on Information Security matters, which may, from time to time, include updates to the Boards of Directors of the various entities.
- Monitor and report on compliance with security and data protection policies, as well as the enforcement of policies.
- Work with in-country Data Protection Officer(s) of Capital A on data protection requirements.
- Maintain a record of up-to-date information security assets (e.g, equipment, documents, etc)
- Participate and facilitate audits and assessment activities to ensure compliance with information security requirements.
- Monitor and investigate local security events and incidents in collaboration with the Group Detection & Response team (Security Operations Center).
- For locally arising security incidents, act as Incident Manager, in coordination with Group Incident Response & Management teams.
- Identify, communicate, and manage current and emerging security threats with relevant stakeholders. To manage end-to-end information security incidents with the assistance of incident management teams.
- Conduct or facilitate periodic and/or ad-hoc information security assessments and testing, as well as manage the findings.
- Analyse management and technical controls to ensure specific security and compliance requirements are met through verification of documented processes, procedures, and standards in order to validate the maintenance of secure configurations.
- Monitor and facilitate the entitlements review process to ensure compliance.
- Monitor third-party risk assessments and assist in performing internal risk assessments.
- Support development and reviews of security policies, processes, and procedures and support service-level agreements to ensure that security controls are managed and maintained.
- Collaborate on IT projects to ensure that security policy/risk issues are addressed throughout the project life cycle.
- Information Security Awareness - Participate in the development of information security awareness training in conjunction with other members of the GRC. Provide consultation, education, and awareness on information security requirements to various levels of management and Allstars.
- Liaise with the Group Information Security Architecture team to ensure local requirements and activities are aligned with the strategies and objectives of group information security design.
- Monitor local guest accounts, payments, and fraud risks and advise Group Business Security (SuperApp accounts and payments anti-fraud, Fraud Operations Team, and Continuous Monitoring Team) on local business security requirements and threats.
**Requirements**:
- Bachelor's Degree in Information Technology, or Business with IT, Computer Science, or equivalent
- Minimum 6 years experience in managing Information Security Operation/Governance, Risk Management, and Compliance, or related fields
- Relevant industry certification is an advantage (ISO 27001, CISA, CISSP, CGEIT, etc)
- Working knowledge in common IT/information security-related regulations or standards, especially ISO 27001 and PCI-DSS
- Working knowledge of local information and cybersecurity-related regulations and requirements is a huge advantage
- Ability to develop, review and maintain documentation in a timely manner
- Strong communication (spoken and written), interpersonal, and conflict resolution skills. The ability to establish and maintain rapport with stakeholders is highly desired.
- Strong analytical and critical thinking skills
- Result-oriented, high level of attention to detail, self-starter and motivator, ability to multitask and adjust to shifting priorities.
**We are all different** - one talent to another - that is how we rely on our differences. At AirAsia, you will be treated fairly and given all chances to be your best.We are committed to creating a diverse work environment and are proud to be an equal opportunity employer.
This advertiser has chosen not to accept applicants from your region.
4
Cio - Information Security Detection & Response
ธนาคารทหารไทย จำกัด (มหาชน)
Posted today
Job Viewed
Job Description
**Responsibilities**:
- Handle 24x7 Cyber-attack and malicious activity detection
- Ensure Detects, analyzes, and combats advanced and emerging threats, including detecting vulnerabilities and mitigating the associated cybersecurity risk before it affects the organization
- Search for cyber threats and risks hiding inside the data before attacks occur
- Gather as much information on threat behavior, goals, and methods as possible
- Organize and analyze the collected data to determine trends in the security environment of the organization
- Make predictions for the future and eliminate the current vulnerabilities
- Perform Security Incident Handling
- Manage and Define Proactive Rule the Cyber Defense Perimeter and endpoint security i.e., WAF, IPS, Anti-DDoS, Anti-Phishing, and other security controls
**Qualifications**:
- Bachelor's Degree in Engineering /IT or relevant field with at least 5 years of work experience in Information Security or Cybersecurity.
- Strong Malicious Activity Identification and Investigate and mature the containment strategy and deployment on Digital Banking Technology and environment.
- Expert in Investigation Tools and Forensic Investigation.
- Good Experience and Understanding in Zero-Day Attack/Target Attack, Live Response, Cyber kill chain, Containment, Virtual Patch, and Mitigation Recommendation.
- Develop a Program of Threat hunting Programs with both Proactive-Reactive Strategies to reduce the impact on the bank.
- Exercise Paybook and IR plan for regular and also the red-team blue team.
- Good command of English and Explain root-cause of Impact.
- Preferable Certified in CEH A or other related Cyber security certifications.
**Location : Head Office**
**For more information**:
- Handle 24x7 Cyber-attack and malicious activity detection
- Ensure Detects, analyzes, and combats advanced and emerging threats, including detecting vulnerabilities and mitigating the associated cybersecurity risk before it affects the organization
- Search for cyber threats and risks hiding inside the data before attacks occur
- Gather as much information on threat behavior, goals, and methods as possible
- Organize and analyze the collected data to determine trends in the security environment of the organization
- Make predictions for the future and eliminate the current vulnerabilities
- Perform Security Incident Handling
- Manage and Define Proactive Rule the Cyber Defense Perimeter and endpoint security i.e., WAF, IPS, Anti-DDoS, Anti-Phishing, and other security controls
**Qualifications**:
- Bachelor's Degree in Engineering /IT or relevant field with at least 5 years of work experience in Information Security or Cybersecurity.
- Strong Malicious Activity Identification and Investigate and mature the containment strategy and deployment on Digital Banking Technology and environment.
- Expert in Investigation Tools and Forensic Investigation.
- Good Experience and Understanding in Zero-Day Attack/Target Attack, Live Response, Cyber kill chain, Containment, Virtual Patch, and Mitigation Recommendation.
- Develop a Program of Threat hunting Programs with both Proactive-Reactive Strategies to reduce the impact on the bank.
- Exercise Paybook and IR plan for regular and also the red-team blue team.
- Good command of English and Explain root-cause of Impact.
- Preferable Certified in CEH A or other related Cyber security certifications.
**Location : Head Office**
**For more information**:
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Data security Jobs in Thailand !
5