4 Information Security jobs in Thailand
Senior Security Consultant, ProServe (ASEAN), Security, Risk & Compliance
Bangkok, Bangkok
Amazon
Posted 27 days ago
Job Viewed
Job Description
Description
Are you a Security, Risk, and Compliance specialist who can address the challenges of migrating systems and workloads to the Cloud? Are you skilled at helping customers and partners address their information security requirements using Cloud computing architectures? Do you want to learn the very latest in Cloud services and apply that knowledge to some of the most interesting computing workloads in the world?
Your mandate will be to help our customers and our partners with their Cloud adoption journey. Our Security, Risk, and Compliance consultants will deliver architecture guidance, design and implement security controls on cloud projects, and consult with and enable customer/partner in cloud security domains and support ProServe field engagements as the security subject matter expert. AWS consultants will collaborate with customers and partners to address the security, risk, and compliance needs of their AWS engagements.
This role will specialize in all aspects of information security management as well as business and regulatory compliance using cloud services in large-scale computing environments.
Key job responsibilities
Expertise - Collaborate with AWS field sales, training and support teams to help partners and customers learn and use the latest and most effective AWS services.
Solution Design - Define and deliver on-site technical engagements with partners and customers. Activities include participating in pre-sales, understanding customers' security, risk, and compliance requirements, and providing advice and deliverables based on AWS services.
Implementation - Lead teams that include Amazonians, partners, and customers to build & deploy security infrastructure and automate security operations to achieve desired customer business outcomes.
Insights - Work with AWS Engineering, Support and Business Development teams to convey partner and customer feedback as input to AWS technology roadmaps.
Mentorship - Coach and invest in the career and capability development of aspiring team members across AWS.
This is an ASEAN customer facing role. You will be required to travel to client locations to deliver professional services when needed.
A day in the life
Working with customers to understand their business challenges around security "in" the cloud and to help design / architect technical solutions to address those business needs.
Support Amazonians and customers across ASEAN region in ongoing projects as the field security SME to consult with and provide prescriptive guidance on standards of good practice around AWS's well-architected, secure and resilient design principles to ensure all customer deliverables and work products are secure by design and in practice.
Lead builders in innovation and build initiatives to deliver innovative solutions to address emerging business needs.
About the team
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why AWS?
Amazon Web Services (AWS) is the world's most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating - that's why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.
Inclusive Team Culture
Here at AWS, it's in our nature to learn and be curious. Our employee-led affinity groups foster a culture of inclusion that empower us to be proud of our differences. Ongoing events and learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences, inspire us to never stop embracing our uniqueness.
Mentorship & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve in the cloud.
Basic Qualifications
- 10 years' experience in IT security, compliance, or risk management.
- BA/BS degree or equivalent experience.
- Hands-on technical expertise in technology automation, implementation, integration, and/or deployment.
Preferred Qualifications
- Effectively communicates to both IT and Non-IT audience, C-Level / Senior Business Leaders in conveying how security processes and technologies enable business outcomes.
- Demonstrable credentials as technology leader or subject matter expert in complex technology projects that involve enterprise wide solutions with a global / regional scale impact.
- Hands-on technical expertise in building and deploying security solutions, capabilities and infrastructure, with strong scripting skills, i.e., PowerShell, Python, Node.js, JavaScript, Bash, Ruby, Perl, etc.
- Technical expertise (design and/or implementation) in Cloud Computing technologies and implementation experience with enterprise security solutions such as SSO, Federation, WAF, IPS, Anti-DDOS, and SIEM.
- Experience with Infrastructure-as-Code Tools such as CloudFormation, Terraform, Chef, Puppet, Salt, or Ansible in production environments at scale.
- Understanding architectural implications of meeting industry standards such as PCI DSS, ISO 27001, GDPR, and NIST frameworks and relevant regulatory frameworks such as Thailand's Personal Data Protection Act B.E. 2562 (2019), BOT Notifications SorNorSor 21/2562, 6/2561, 11/2561, etc.
- Language proficiency: English, Thai (Thailand).
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.
Are you a Security, Risk, and Compliance specialist who can address the challenges of migrating systems and workloads to the Cloud? Are you skilled at helping customers and partners address their information security requirements using Cloud computing architectures? Do you want to learn the very latest in Cloud services and apply that knowledge to some of the most interesting computing workloads in the world?
Your mandate will be to help our customers and our partners with their Cloud adoption journey. Our Security, Risk, and Compliance consultants will deliver architecture guidance, design and implement security controls on cloud projects, and consult with and enable customer/partner in cloud security domains and support ProServe field engagements as the security subject matter expert. AWS consultants will collaborate with customers and partners to address the security, risk, and compliance needs of their AWS engagements.
This role will specialize in all aspects of information security management as well as business and regulatory compliance using cloud services in large-scale computing environments.
Key job responsibilities
Expertise - Collaborate with AWS field sales, training and support teams to help partners and customers learn and use the latest and most effective AWS services.
Solution Design - Define and deliver on-site technical engagements with partners and customers. Activities include participating in pre-sales, understanding customers' security, risk, and compliance requirements, and providing advice and deliverables based on AWS services.
Implementation - Lead teams that include Amazonians, partners, and customers to build & deploy security infrastructure and automate security operations to achieve desired customer business outcomes.
Insights - Work with AWS Engineering, Support and Business Development teams to convey partner and customer feedback as input to AWS technology roadmaps.
Mentorship - Coach and invest in the career and capability development of aspiring team members across AWS.
This is an ASEAN customer facing role. You will be required to travel to client locations to deliver professional services when needed.
A day in the life
Working with customers to understand their business challenges around security "in" the cloud and to help design / architect technical solutions to address those business needs.
Support Amazonians and customers across ASEAN region in ongoing projects as the field security SME to consult with and provide prescriptive guidance on standards of good practice around AWS's well-architected, secure and resilient design principles to ensure all customer deliverables and work products are secure by design and in practice.
Lead builders in innovation and build initiatives to deliver innovative solutions to address emerging business needs.
About the team
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why AWS?
Amazon Web Services (AWS) is the world's most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating - that's why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.
Inclusive Team Culture
Here at AWS, it's in our nature to learn and be curious. Our employee-led affinity groups foster a culture of inclusion that empower us to be proud of our differences. Ongoing events and learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences, inspire us to never stop embracing our uniqueness.
Mentorship & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve in the cloud.
Basic Qualifications
- 10 years' experience in IT security, compliance, or risk management.
- BA/BS degree or equivalent experience.
- Hands-on technical expertise in technology automation, implementation, integration, and/or deployment.
Preferred Qualifications
- Effectively communicates to both IT and Non-IT audience, C-Level / Senior Business Leaders in conveying how security processes and technologies enable business outcomes.
- Demonstrable credentials as technology leader or subject matter expert in complex technology projects that involve enterprise wide solutions with a global / regional scale impact.
- Hands-on technical expertise in building and deploying security solutions, capabilities and infrastructure, with strong scripting skills, i.e., PowerShell, Python, Node.js, JavaScript, Bash, Ruby, Perl, etc.
- Technical expertise (design and/or implementation) in Cloud Computing technologies and implementation experience with enterprise security solutions such as SSO, Federation, WAF, IPS, Anti-DDOS, and SIEM.
- Experience with Infrastructure-as-Code Tools such as CloudFormation, Terraform, Chef, Puppet, Salt, or Ansible in production environments at scale.
- Understanding architectural implications of meeting industry standards such as PCI DSS, ISO 27001, GDPR, and NIST frameworks and relevant regulatory frameworks such as Thailand's Personal Data Protection Act B.E. 2562 (2019), BOT Notifications SorNorSor 21/2562, 6/2561, 11/2561, etc.
- Language proficiency: English, Thai (Thailand).
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.
This advertiser has chosen not to accept applicants from your region.
0
Senior Associate Information Security Incident
Bangkok, Bangkok
NTT Ltd
Posted today
Job Viewed
Job Description
At NTT we believe that by using innovative technology we can solve global challenges and create a world that is sustainable and secure. We are looking for curious people, from diverse backgrounds, that are keen to work in a fast-paced and agile environment.
At NTT we trust our employees to do the right thing, even when no one is watching, which is why we offer flexibility in the workplace. The majority of our roles are hybrid, meaning we encourage a balance of working from home and our local office. Ask our recruitment team if this is a hybrid role.
**Want to be a part of our team?**
Develops and executes security controls, defences and countermeasures to intercept and prevent internal or external
Responds to cybersecurity breaches, identifies intrusions and isolates, blocks and removes unauthorized access. Researches and evaluates cybersecurity threats and performs root cause analysis. Assists in the creation and implementation of security solutions.
Provides information to management regarding impact on the business caused by theft, destruction, alteration or denial of access to information and systems.**Working at NTT**
**Job Description**:
**Key Roles and Responsibilities**:
- Assist with the prevention and resolution of security breaches and ensure incident and problem management processes are initiated.
- Support access management activities according to the policy.
- Assist with the implementation of and discuss security service audit schedules, review access authorisation and perform the required access controls and testing to identify security weaknesses.
- Support global team of Cyber Security Analysts and specialists.
- Notify internal and/or external teams according to agreed alert priority levels, escalation trees, 2nd level triaging of security alerts, events, and notifications.
- Communicate status of response, resolution and final root cause analysis to the appropriate stakeholders.
- Ability to follow and update established and/or ad-hoc processes and work instructions and create procedures where deficiencies are identified.
- Logging, managing and coordinating service requests through to resolution including the identification, isolation, resolution and escalation of IT infrastructure faults.
- Develop an understanding of current and emerging threats, vulnerabilities, and trends.
- Support the review of current configurations of NTT Ltd production information systems and networks against compliance standards.
- Provide support in the investigation of information security incident causes and follow processes to resolve these causes.
- **Knowledge, Skills and Attributes**:
- Good working knowledge of technological advances within the information security arena
- Understanding of inter-relationships in an overall system or process
- Knowledge of information security management and policies
**Academic Qualifications and Certifications**:
- Relevant degree
- SANS GIAC Security Essentials (GSEC) or equivalent
- SANS GIAC Certified Intrusion Analyst (GCIA) or equivalent
- SANS GIAC Certified Incident Handler (GCIH) or equivalent
**Required Experience**:
- Moderate experience in a Technology Information Security Industry
- Experience using End Point Protection Software
- Experience using Enterprise Detection & Response software
- Experience or knowledge of SIEM and IPS technologies
- Experience with Wireshark or tcpdump to identify normal and abnormal/malicious traffic patterns and behaviours
**What will make you a good fit for the role?**
Standard career level descriptor for job level:
- Develops professional experience
- Applies policy and procedures to solve variety of issues
- Problems are moderate in nature
- Build productive internal and external working relationships
- Receives general instructions on routine work
- Receives detailed instructions on new work
- Typically needs a Bachelor’s or equivalent and entry or basic level experience; or an advanced or equivalent degree without experience; or equivalent work experience
**Equal opportunity employer**
NTT is proud to be an equal opportunity employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, color, sex, religion, national origin, disability, pregnancy, marital status, sexual orientation, gender reassignment, veteran status, or other protected category.
At NTT we trust our employees to do the right thing, even when no one is watching, which is why we offer flexibility in the workplace. The majority of our roles are hybrid, meaning we encourage a balance of working from home and our local office. Ask our recruitment team if this is a hybrid role.
**Want to be a part of our team?**
Develops and executes security controls, defences and countermeasures to intercept and prevent internal or external
Responds to cybersecurity breaches, identifies intrusions and isolates, blocks and removes unauthorized access. Researches and evaluates cybersecurity threats and performs root cause analysis. Assists in the creation and implementation of security solutions.
Provides information to management regarding impact on the business caused by theft, destruction, alteration or denial of access to information and systems.**Working at NTT**
**Job Description**:
**Key Roles and Responsibilities**:
- Assist with the prevention and resolution of security breaches and ensure incident and problem management processes are initiated.
- Support access management activities according to the policy.
- Assist with the implementation of and discuss security service audit schedules, review access authorisation and perform the required access controls and testing to identify security weaknesses.
- Support global team of Cyber Security Analysts and specialists.
- Notify internal and/or external teams according to agreed alert priority levels, escalation trees, 2nd level triaging of security alerts, events, and notifications.
- Communicate status of response, resolution and final root cause analysis to the appropriate stakeholders.
- Ability to follow and update established and/or ad-hoc processes and work instructions and create procedures where deficiencies are identified.
- Logging, managing and coordinating service requests through to resolution including the identification, isolation, resolution and escalation of IT infrastructure faults.
- Develop an understanding of current and emerging threats, vulnerabilities, and trends.
- Support the review of current configurations of NTT Ltd production information systems and networks against compliance standards.
- Provide support in the investigation of information security incident causes and follow processes to resolve these causes.
- **Knowledge, Skills and Attributes**:
- Good working knowledge of technological advances within the information security arena
- Understanding of inter-relationships in an overall system or process
- Knowledge of information security management and policies
**Academic Qualifications and Certifications**:
- Relevant degree
- SANS GIAC Security Essentials (GSEC) or equivalent
- SANS GIAC Certified Intrusion Analyst (GCIA) or equivalent
- SANS GIAC Certified Incident Handler (GCIH) or equivalent
**Required Experience**:
- Moderate experience in a Technology Information Security Industry
- Experience using End Point Protection Software
- Experience using Enterprise Detection & Response software
- Experience or knowledge of SIEM and IPS technologies
- Experience with Wireshark or tcpdump to identify normal and abnormal/malicious traffic patterns and behaviours
**What will make you a good fit for the role?**
Standard career level descriptor for job level:
- Develops professional experience
- Applies policy and procedures to solve variety of issues
- Problems are moderate in nature
- Build productive internal and external working relationships
- Receives general instructions on routine work
- Receives detailed instructions on new work
- Typically needs a Bachelor’s or equivalent and entry or basic level experience; or an advanced or equivalent degree without experience; or equivalent work experience
**Equal opportunity employer**
NTT is proud to be an equal opportunity employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, color, sex, religion, national origin, disability, pregnancy, marital status, sexual orientation, gender reassignment, veteran status, or other protected category.
This advertiser has chosen not to accept applicants from your region.
1
Information Security Manager
Bangkok, Bangkok
Greenline Synergy
Posted today
Job Viewed
Job Description
Roles & Responsibility:Serve as an expert in delivering and coordinating technical analysis, business impact assessments and mitigation recommendations for security incidents.Responsible for security analysis, triage and escalation procedures, workflows and tasks.Schedule periodic security audits, vulnerability scanning and penetration testing.Identifies opportunities to improve security monitoring, vulnerability management, threat management and operational tasksEvaluate existing SIEM rules, filters, events and use cases and adapt to meet the business requirements.Strategic Planning and communications.Qualifications:Bachelor"s degree or higher in Cyber Security, Computer Science, Information Technology or a related technical fieldAt least 7 Years of experience as SOC, Cyber Security Incident Response, Security Analyst, Security Vendor Management, or similar leadership role.Knowledge of Cybersecurity Framework, CIS Critical Security Control, Cyber Kill Chain, MITRE ATT&CK, MITRE D3FEND, MITRE ENGAGE, RE&CT Framework, ISO/IEC 27001, GDPR, PDPAKnowledge of digital forensic, vulnerability management, patch management, firewalls and intrusion detection/prevention systems.Knowledge of Strong Authentication: Network Security, Application Security, Data Security Endpoint Security, Cloud Security and Container Security.
This advertiser has chosen not to accept applicants from your region.
2
Information Security Officer (French Speaking)
Bangkok, Bangkok
Optima Search Recruitment Co. Ltd.
Posted today
Job Viewed
Job Description
Location Sathorn, Bangkok, Thailand.
- Salary up to 140K THB/Month.
- Expats are welcome (A work permit is provided)
**Mission***:
- Member of second line of defense team, which reviews the actions of the first line of defense (operational IT team) and analyzes the impact of those actions to determine their effectiveness in mitigating cyber risks
- Coordinate IT's security work between the various IT teams
- Update annually the operational entity's security risk analysis in relation to the IT teams
- Carry out security reviews on projects and monitor customer audits,
- Report security incidents to management and then monitor action plans,
- Perform the necessary monthly reporting to the CISO,
- participate in the permanent control work of ISS
**Experience**:
- A first experience in IT field is required.
**Personal Competencies**:
- Deep knowledge of at least one field of cybersecurity (governance of cybersecurity, network security, secure coding, endpoint security, configuration hardening, AD security ) and good knowledge of the others.
- Strong analytical skills and excellent synthesis skills: He/she is able to cross-check multiple sources of information on technical matters to produce synthesis for non-specialists.
**Soft skills**:
- Ability to interact with non-specialists on a daily basis
- Communication skills and ability to present his/her work to potentially large audiences
- Curiosity and willingness to keep track with technical evolutions
**Education**:
- Minimum Bachelor’s degree BSc. Computer Science.
**Language skills**:
- Good command in English.
- **Good command in French mandatory for this position.
- Salary up to 140K THB/Month.
- Expats are welcome (A work permit is provided)
**Mission***:
- Member of second line of defense team, which reviews the actions of the first line of defense (operational IT team) and analyzes the impact of those actions to determine their effectiveness in mitigating cyber risks
- Coordinate IT's security work between the various IT teams
- Update annually the operational entity's security risk analysis in relation to the IT teams
- Carry out security reviews on projects and monitor customer audits,
- Report security incidents to management and then monitor action plans,
- Perform the necessary monthly reporting to the CISO,
- participate in the permanent control work of ISS
**Experience**:
- A first experience in IT field is required.
**Personal Competencies**:
- Deep knowledge of at least one field of cybersecurity (governance of cybersecurity, network security, secure coding, endpoint security, configuration hardening, AD security ) and good knowledge of the others.
- Strong analytical skills and excellent synthesis skills: He/she is able to cross-check multiple sources of information on technical matters to produce synthesis for non-specialists.
**Soft skills**:
- Ability to interact with non-specialists on a daily basis
- Communication skills and ability to present his/her work to potentially large audiences
- Curiosity and willingness to keep track with technical evolutions
**Education**:
- Minimum Bachelor’s degree BSc. Computer Science.
**Language skills**:
- Good command in English.
- **Good command in French mandatory for this position.
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Information security Jobs in Thailand !
3