53 Security Specialist jobs in Thailand

Responsibilities;

• Assists Logistics Security in preparation of security audits (internal and external) /risk assessments, investigations and supports them in the follow-up of the corrective actions and liaise with the law enforcement.
• Gives a consultation and coordinates function in security issues with regional /sub-regional Logistics Security management
• Collates details of incidents and reports them to local management and Logistics Security.
• Evaluates information from the branches and checks it for suspicious circumstances.
• Monitors the implementation of DHL Logistics security standards, instructions, guidelines, etc. in close cooperation with the Country Security Management or Regional Security Support Management
• Checks installed physical security devices for possible malfunctions or needed corrections (adjustments)
• Provides general security information and security awareness training (SAFE) to local workforce

Qualifications;

• At least 5 years of working experience in Safety & Security background
• Knowledge of Safety & Security Management System especially in Logistics & Supply Chain business is preferred
• Good integrity and communication skills
• Analytical thinking and systematic problem solving
• Basic knowledge of finance and administration
• Good communication both in Thai and English required
• Local people is an advantage for this role or able to work at Phatthana Chonnabot 3 Road, Lat Krabang area required

What We Do

Coda delivers commerce solutions that accelerate global growth for our partners. With over a decade of experience, we're trusted by 300+ publishers—including Activision, Bigo, Electronic Arts, Moonton, and Riot Games—to grow their revenue and audiences worldwide.

Our suite of solutions includes Custom Commerce, a fully customizable web store; Codapay, enabling seamless direct payments through API integration on publishers' websites; Codashop, the go-to marketplace for millions of gamers to purchase in-game content; and Distribution, extending Codashop content through our network of trusted commerce partners.

Headquartered in Singapore with a team of 400+ Codans, Coda has been recognized as an industry leader, named an APAC High Growth Company by Financial Times, one of Granite Asia's NextGenTech , a payments leader on Fortune's Fintech Innovation Asia list (2024), and listed among The Straits Times Fastest Growing Fintechs

For more on how Coda helps publishers grow faster and smarter, visit 

Security and Compliance at Coda

Join the ranks of Coda's Security and Compliance team, where the mission is to bolster digital safeguards. We do this by leveraging a variety of security tools to consistently detect, monitor, and neutralize emerging cyber threats, ensuring the protection measures remain invincible. Additionally, our technology governance unit maintains the esteemed status and guarantees adherence to compliance standards amid constantly evolving rules and regulations.

As a guardian of Coda's realm, our corporate IT team oversees all company-wide platforms. These include email, file storage, and different collaboration tools.  And that's not all - we also administer a comprehensive suite of service management tasks, from asset, operations, and request workflows to data-driven metrics and dashboards, as well as building up the corporate infrastructure that integrates systems together.

We are looking for an independent, passionate, and persuasive Security Specialist to join our Security Engineering team.

You will play a crucial role in driving vulnerability remediation and securing applications from the outset, utilising cutting-edge solutions to effectively prevent attacks and safeguard the business.

Responsibilities

• Work closely with the engineering team on all security initiatives, ensuring that products are built securely by default and that audits and remediation efforts are managed to ensure smooth and timely resolution
• Be flexible, resourceful in problem-solving, and willing to take on new challenges as the business evolves
• Conduct comprehensive risk assessments and vulnerability analyses to identify potential threats and security gaps in existing and new systems/architectures
• Implement and manage static and dynamic code analysis tools in the CI/CD pipelines
• Perform security reviews of the source code and advise developers on the remediation
• Conduct system vulnerability scanning to identify infrastructure vulnerabilities in networks, systems, middleware and databases
• Conduct vulnerability risk assessments to evaluate the likelihood and potential impacts of each identified vulnerability.
• Manage the remediation lifecycle with a risk-based approach to ensure that all vulnerabilities are remediated in accordance with accepted industry standards.
• Manage the end-to-end process of handling externally reported vulnerabilities or bug bounty reports

Requirements

• Total experience of 5-7 years in the area of cybersecurity
• At least 3 years of experience in the area of vulnerability management
• At least 3 years of experience in the area of software development and scripting (Java, , Python)
• Solid foundations in networking, operating systems, and applications
• Serve as a self-starter, diligently tracking progress and communicating status updates without prompting
• Ability to ask the right questions to understand the parameters of any project they're working on or want to undertake
• Ability to communicate effectively with both technical and non-technical stakeholders
• Ability to work independently, take ownership of tasks, and drive them to completion
• Ability to acquire new skills and knowledge independently

Nice to Have

• Experience in the area of bug bounty, penetration testing and vulnerability assessment is a plus
• Knowledge of cloud security is a plus
• Knowledge of container security is a plus
• Knowledge of DevSecOps and security tools in CI/CD is a plus
• OSCP, OSWE, AWS Certified Security - Specialty, Google Professional Cloud Security Engineer, Microsoft Certified: Azure Security Engineer Associate, GPEN, and/or CREST certification is a plus
• Experience with a tech or financial services company is a plus

Working at Coda

With Codans spread across over 20 countries worldwide, our fast-paced, challenging, and highly collaborative environment breaks down time zones and cultural barriers, empowering you to chase innovative ideas, contribute to Coda's growth, and make a lasting impact.

If you have a passion for pushing boundaries and thrive on continuous improvement through experimentation, we would love to hear from you

Our Perks*

Wellness Boost: Stay healthy with resources for physical and mental well-being with our flexible benefits and Employee Well-being Program - because you matter

Customized Benefits: Tailor your benefits with our flexible plan.

Growth Opportunities: Unlock your potential through clear progression paths.

Skill Development: Access training resources to fuel your personal and professional growth.

Skill Development: Access training resources to fuel your personal and professional growth.

Volunteer Time Off: Enjoy paid time off to make a difference in the world through volunteering.

Family Support: Take advantage of paid Family Care Leave to bond with your family, while our selected Flexible Benefits also cater to your family's needs.

Benefits are reviewed and updated on a yearly basis

We are proud to be an equal opportunity employer, embracing the unique qualities of every individual, regardless of gender, race, age, religion, disability, or other local protected classes. Our goal is to foster an inclusive environment where everyone feels welcome and valued.

Due to the large number of exceptional applications we receive, we can only reach out to shortlisted candidates. If you don't hear from us, rest assured there may be another opportunity at Coda that aligns better with your unique abilities. Remember to check our Careers Page for more exciting job openings

Location: Bangkok (Hybrid Working)

About the Company

Cathcart Technology is assisting a leading technology-driven organization to find an experienced Information Security Specialist. This role will play a critical part in strengthening the security of a financial platform in cloud environments. You'll be working closely with teams, regulators, and external vendors to ensure compliance with regulations, while applying best-practice security standards

Responsibilities

• Design and implement cybersecurity policies and frameworks such as ISO/IEC 27001 & NIST
• Conduct risk and vulnerability assessments, and recommend strategies to mitigate threats
• Develop cybersecurity strategies to ensure protection of internal technology operations
• Collaborate with internal risk owners to develop risk assessment process
• Lead in preparing cybersecurity risk/incidents, and reporting to executive management & regulators.

Qualifications

• Bachelor's Degree in IT, Computer Science, Engineering, or related field
• At least 3 years of experience working in the IT/Information Security field
• Strong knowledge of IT Security standards & best practices (ISO/IEC 27001, NIST, COBIT, PCI DSS, ITIL).
• Skills in cybersecurity assessments and controls
• Experience in a highly regulated industries (Financial) would be advantageous

If you're looking to take a next step in your Cybersecurity Career, we'd love to hear from you.

Please feel free to contact Cathcart Technology at for more details.

Key Responsibilities:

• Design, implement, and manage security controls for cloud environments (AWS, Azure, Google Cloud).
• Perform risk assessments and vulnerability management for cloud-based assets.
• Monitor cloud resources to detect and respond to security incidents.
• Collaborate with IT and development teams to integrate security into the SDLC and DevSecOps.
• Ensure compliance with industry regulations and internal security policies.
• Provide expertise in identity and access management (IAM) within cloud platforms.
• Continuously evaluate and recommend security improvements for cloud operations.

Skills & Competencies:

• Strong understanding of network security, encryption, and cloud infrastructure.
• Analytical thinking and problem-solving abilities.
• Ability to work collaboratively in cross-functional teams.
• Excellent communication skills to present security risks and solutions to non-technical stakeholders.

Qualification

• Bachelor's degree in Computer Science, Information Security, or related field.
• Proven experience in cloud security, with a focus on AWS, Azure, or Google Cloud.
• Experience with cloud security automation and monitoring tools.
• Certifications such as AWS Certified Security Specialty, CISSP, or CCSP are an advantage.

Design, implement, and manage security controls for cloud environments (AWS, Azure, Google Cloud).

Perform risk assessments and vulnerability management for cloud-based assets.

Monitor cloud resources to detect and respond to security incidents.

Collaborate with IT and development teams to integrate security into the SDLC and DevSecOps.

Ensure compliance with industry regulations and internal security policies.

Provide expertise in identity and access management (IAM) within cloud platforms.

Continuously evaluate and recommend security improvements for cloud operations.

Strong understanding of network security, encryption, and cloud infrastructure.

Analytical thinking and problem-solving abilities.

Ability to work collaboratively in cross-functional teams.

Excellent communication skills to present security risks and solutions to non-technical stakeholders.

Bachelor s degree in Computer Science, Information Security, or related field.

Proven experience in cloud security, with a focus on AWS, Azure, or Google Cloud.

Experience with cloud security automation and monitoring tools.

Certifications such as AWS Certified Security Specialty, CISSP, or CCSP are an advantage.

Job skills required: Analytical Thinking, Automation, Compliance

Key Responsibilities:

• Design, implement, and manage security controls for cloud environments (AWS, Azure, Google Cloud).
• Perform risk assessments and vulnerability management for cloud-based assets.
• Monitor cloud resources to detect and respond to security incidents.
• Collaborate with IT and development teams to integrate security into the SDLC and DevSecOps.
• Ensure compliance with industry regulations and internal security policies.
• Provide expertise in identity and access management (IAM) within cloud platforms.
• Continuously evaluate and recommend security improvements for cloud operations.

Skills & Competencies:

• Strong understanding of network security, encryption, and cloud infrastructure.
• Analytical thinking and problem-solving abilities.
• Ability to work collaboratively in cross-functional teams.
• Excellent communication skills to present security risks and solutions to non-technical stakeholders.

Qualification

• Bachelor's degree in Computer Science, Information Security, or related field.
• Proven experience in cloud security, with a focus on AWS, Azure, or Google Cloud.
• Experience with cloud security automation and monitoring tools.
• Certifications such as AWS Certified Security Specialty, CISSP, or CCSP are an advantage.

Roles & Responsibilities:

• Design, Implement and manage security controls for hybrid environments (Cloud & On-prem).
• Configure, deploy, and monitor security solutions such as firewalls, IPS, WAF, VPN, and Anti-DDoS etc.,
• Monitor and respond to security incidents and alerts using SIEM, EDR, XDR and other related solution.
• Implement and manage Identity & Access Management (IAM) and network security controls.
• Develop and maintain security policies, standards, and procedures based on AIS document and aligned with ISO 27001, NIST, and other industry frameworks.
• Integrate and secure CI/CD pipelines using tools such as Jenkins and GitLab CI/CD.
• Stay updated on emerging cloud security threats, tools, and technologies.
• Collaborate across teams and utilize company tools to ensure timely project delivery.

Qualifications:

• Bachelor's degree in computer engineering, Computer Science, Information Security, or a related field.
• 3–5 years of professional experience in IT security, with at least 1-2 years specializing in cloud security.
• Strong knowledge of cloud platforms: AWS, Azure, Huawei, or GCP.
• Experience in cloud security, including RBAC, IAM, NSGs, Key Vaults, and related compliance standards.
• Hands-on expertise with cloud-native security tools (AWS Security Hub, Azure Defender, GCP Security Command Center, Huawei Cloud Security Center) and third-party solutions.
• Strong understanding of IAM, MFA, encryption, firewalls, WAF, VPN, Anti-DDoS, and SIEM.
• Familiarity with CI/CD security integration and automation (Jenkins, GitLab CI/CD).
• Experience with container security (Docker, Kubernetes).
• Knowledge in infrastructure reviews, patch management, and policy compliance.

Location: Bank of China (Thai) (Head Office) 179/4 Bangkok City Tower, South Sathorn Rd., Tungmahamek, Sathorn, Bangkok 10120 Thailand.

Responsibilities:

• Under the cybersecurity framework of BOCHO, this role is responsible for the implementation and daily monitoring of IT system security. The position ensures the effective enforcement of security measures for local servers, endpoints, and network devices, supporting regulatory compliance and business continuity.
• Develop, review, and revise local information security policies and procedures based on Head Office guidelines, local regulatory requirements, and actual operational needs.
• Implement local network security configurations, security baseline checks, patch management, and account and access control operations.
• Maintain the secure operation of information systems (e.g., servers, endpoints, network devices), including log collection, storage, and preliminary analysis.
• Deploy and maintain security protection systems, such as firewalls, antivirus software, intrusion detection/prevention systems (IDS/IPS), and endpoint protection solutions.
• Assist in the local implementation of data security, including data encryption, storage control, access permission setup, and media management at the operational level.
• Conduct regular compliance checks on local systems and devices, as well as employee security compliance audits; prepare relevant security reports and documentation.
• Support security monitoring, abnormal behavior identification, and initial incident response, with timely reporting and handling of basic security incidents.
• Coordinate with the Head Office for external regulatory or compliance inspections, data sampling, and related documentation preparation.
• Plan and organize cybersecurity, information security, and data protection drills.
• Support the delivery of employee information security awareness training.
• Other duties as assigned by GM.

Qualifications:

• Bachelor's degree in Computer Science, Information Systems, or a related field.
• Experience in IT security, Technology risk, IT risk management, Compliance or IT audit function from other sizable financial institutions.
• Good communication skills in English and Mandarin is a must.
• Holding CISA, CISSP, CISM or CIA certificate is preferable.

What We Offer:

At Bank of China (Thai), we are dedicated to creating a supportive and rewarding work environment. We offer competitive salaries and a comprehensive range of benefits to ensure the well-being and satisfaction of our employees:

• Health and Life Insurance:Coverage includes Group Life Insurance, OPD, Dental Benefits, General Hospital Services.
• Financial Security:Provident Fund, Social Security Fund, and Retirement Benefits.
• Wellness Programs:Annual physical checkups
• Special Financial Allowances:Support for marriage, birthday celebrations and sick visits.
• Leave Benefits: Annual Leave, Business Leave, Sick Leave, Maternity Leave, and Ordination Leave.
• Work-Life Balance:A 5-day work week.

Join us to grow your career in a dynamic and supportive environment

** Please be informed that bank conducts criminal background checks for all positions during hiring process

Interested candidates, please submit your resume by click "Quick apply"

Human Resources

Bank of China ( Thai ) Public Company Limited (Head Office)

179/4 Bangkok City Tower, South Sathorn Rd., 

Tungmahamek, Sathorn, Bangkok 10120

T Ext. 2410

2C2P is seeking an Application Security Specialist to join its team in Thailand.

If you have the right skills & experience and are looking for a new, rewarding challenge, don't wait

Join us and share our vision of providing the best payment services in Asia.

Working Location: Empire Tower (100% onsite, accessible via BTS Chong Nonsi)

Job SummaryAs an Application Security Engineer at 2c2p, you will play a pivotal role in ensuring the security and integrity of our applications and software products.

You will work closely with cross-functional teams to identify, assess, and mitigate security risks in our applications, enhancing our overall security posture.

Your expertise will be instrumental in safeguarding our company's data, systems, and reputation.

Responsibilities

• Application Security Assessments: Conduct comprehensive security assessments of applications throughout the development lifecycle, identifying vulnerabilities and recommending appropriate remediation measures.
• Secure Code Review: Review application code for security vulnerabilities and assist development teams in addressing and resolving identified
  
  issues.
• Security Testing: Perform application security testing, including but not limited to penetration testing, vulnerability scanning, and code analysis.
• Security Architecture: Collaborate with software architects and developers to integrate security best practices into the software development process.
• Security Policies and Procedures: Develop and maintain application security policies, procedures, and guidelines in alignment with industry best practices and regulatory requirements.
• Incident Response: Participate in the incident response process, assisting in the investigation and resolution of security incidents related to applications.
• Security Awareness: Promote security awareness and best practices among development and IT teams through training and knowledge sharing.
• Documentation: Maintain accurate records of security assessments, findings, and remediation activities.

Qualifications

• Bachelor's degree in Computer Science, Information Security, or a related field. Advanced degree (e.g., Master's) is a plus.
• Industry certifications such as CISSP, OSCP, eMAPT and similar are highly desirable.
• Min 3 years of experience in application security, including hands-on experience with security tools and practices.
• Proficiency in .Net and C# programming language and familiarity with secure coding principles.
• Strong knowledge of web application security, including OWASP Top Ten vulnerabilities.
• Experience with security testing tools such as Burp Suite, ZAP, WP Scan and others running on Linux (WSL) based on the nature of target application or similar.
• Excellent communication skills, both written and verbal, with the ability to explain complex security concepts to non-technical stakeholders.
• Strong analytical and problem-solving skills.
• Ability to work independently and collaboratively in a team-oriented environment.

We offer an attractive remuneration package, a fast-paced and exciting working environment, and provide challenging opportunities for life-long learning and career development.

Interested candidates are invited to send your comprehensive resume with current and expected salary package via this job ad. Please note that only shortlisted candidates will be notified.

Please consult our Candidate Privacy Notice to know more about how we collect, use, transfer and disclose our candidates' information:

By submitting your resume and information, you understand, acknowledge, and consent that your personal data will be processed in accordance with our Candidate Privacy Notice. You consent to the collection, use, transfer and disclosure of your personal data as well as to receive email and/or other electronic messaging communication from 2C2P.