8 Technology Executive jobs in Thailand

The Technology Risk involves overseeing technology risk management across banking and digital asset subsidiaries, ensuring alignment with the parent company's standards and regulatory requirements. This role includes establishing governance frameworks, reporting risk management performance, resolving technology-related incidents, enforcing policies, providing expert advice, managing exemption requests, and developing training programs to promote risk awareness and continuous improvement.

• Oversee the technology risk management practices of banking and digital asset subsidiaries to ensure they align with the parent company's standards and regulatory requirements.
• Establish a robust governance framework to monitor and control technology risks across all subsidiaries.
• Ensure regular and detailed reporting of technology risk management performance, including key metrics and risk indicators, to senior management and the board of directors.
• Oversee the reporting of any technology-related incidents or anomalies, ensuring timely communication and resolution.
• Communicate and enforce technology risk management policies and standards across all subsidiaries, ensuring that all relevant stakeholders are aware of and adhere to these guidelines.
• Provide expert advice and support to subsidiaries on technology risk management issues, helping them to implement best practices and mitigate risks effectively.

If you meet below qualifications and are ready to take on a challenging role, we encourage you to apply.

• Bachelor's degree or higher in Information Technology, Cybersecurity, Risk Management, or a related field.
• Relevant work experience at least 5 years of experience in technology risk management.
• Proficiency in identifying, evaluating, and mitigating technology risks.
• Knowledge of regulatory requirements and best practices in IT governance.
• Familiarity with risk management frameworks and tools, such as NIST, ISO 27001, and COBIT.
• Ability to effectively communicate risk-related information to stakeholders at all levels both Thai and English.
• Commitment to staying updated with the latest trends and developments in technology risk management.

Location: Bangkok, Thailand (with travel as required)

Job Type: Full-time

About Radiant1:

We are revolutionizing the hospitality industry with our cutting-edge, subscription-based software and consultative services. Our platform empowers hotel groups to optimize operations, enhance guest experiences, and drive revenue growth. We are a dynamic, ambitious team looking for a passionate sales professional to spearhead our growth in the vibrant Thai market.

Job & Role Summary :

We are seeking a results-driven and self-reliant Sales Executive to join our team in Thailand. This is not just a business development role; you will be the engine of our local growth, owning the entire sales cycle from initial contact to closing the deal. You will be responsible for selling our sophisticated SaaS platform and expert consultative services directly to hotel groups across Thailand. The ideal candidate is a consultative seller who understands the intricacies of the hotel business and can confidently articulate the value of technology to senior decision-makers.

Role & Responsibilities:

· Full-Cycle Sales Management: Proactively identify, qualify, and develop a robust pipeline of new business opportunities.

· Consultative Selling: Leverage your deep understanding of the hotel industry to act as a trusted advisor.

· Stakeholder Engagement: Skillfully navigate complex hotel group structures to connect with decision-makers.

· Product Expertise: Develop an expert-level understanding of our software and services.

· Achieve Targets: Consistently meet and exceed sales targets.

Qualifications:

· Deep Hotel Industry Experience: Strong grasp of hotel operations, metrics (e.g., RevPAR, ADR, Occupancy), and revenue management.

· Bilingual Communication: Fluent in Thai and English.

· Proven Sales Acumen: Track record in direct B2B sales with full sales cycle responsibility.

· Self-Starter Mentality: Motivated and able to work independently.

· Confidence & Presence: Inspiring and professional personality.

Desirable Skills & Experience (Advantages)

· Hotel Technology Familiarity: Experience with PMS, Channel Managers, CRS, etc.

· SaaS Sales Experience: Previous experience selling SaaS solutions.

· Startup Experience: Experience in a fast-paced tech startup.

About Us

Do you want to be part of Thailand banking transformation? Data is the core of the new financial services era, and we are open for the opportunity to be part to drive this change at the core.

SCB DATAx is a new venture of the Siam Commercial Bank (SCB) holdings, a leading financial services and digital services holdings in Thailand and ASEAN.

As part of the transformation of SCB into a group of product and technology companies, under the SCBx brand, SCB DATAx is the technology company to centralize data and provide AI and data science services and products to the group.

With a leading-edge cloud native data & AI platform, our vision is to support the group to providing everyone in our region with the opportunity to prosper.

We work on forward-thinking challenges of centralizing, analyzing and sharing information. We collaborate with companies and experts in many different domains, embrace diversity and all that while having a good laugh and joy in work.

About Team & Role

Oversight and challenge technology related risks for DataX (a subsidiary of SCBX). Ensure DataX technology & information security (IT & IS) risk management adheres to DataX and SCBX group risk management frameworks, policies and standards.

Work closely with risk owners to identify, assess, treat/mitigate, monitor, and report all IT & IS risks. Assess the effectiveness of IT & IS controls. Develop and maintain communication and collaboration with other risk partners, such as operations, security, data governance (DG), data privacy (DP), as well as with stakeholders across the organization.

This role is part of 2LoD which reports to DataX Chief Risk Officer (CRO).

Your Responsibility

• Operate technology & information security (IT & IS) risks adhere to DataX and SCBX group risk management frameworks, policies, guidelines, processes and procedures, including exception mechanisms. The IT & IS related risks scope for DataX organization and every service which DataX provides to SCBX group companies.

• Work closely with stakeholders across the organization, 1LoD and 2LoD:

• Assist and monitor them to identify potential IT & IS risks, assess impacts, by applying technology risk management tools.

• Ensure the effectiveness of risk mitigation, tailored to the business needs and operations, which should be done in a timely manner.

• Continuous monitoring risk mitigation or any treatment strategies such as exemption or acceptance.

• Assess the effectiveness of IT & IS controls. Implement continuous monitoring of the controls.

• Ensure all technology risk activities are conducted in the GRC tool as centralized repository.

• Oversight technology incidents, analyze the root cause, challenge and monitor the action plans.
• Regular report technology risk indicators and incidents, for effectiveness of risk measurement and early warning for technology risk trends.
• Regularly review the risk register to ensure it covers every area in technology risk taxonomy. Addition to address new and evolving threats and risks.
• Work closely with project owners to perform effectiveness of IT Project Risk management. Assist stakeholders in validating risk assessments, which comprise analyzing, identifying, describing, and quantifying risks that impact all business risks.
• Work with procurement and related functions to enforce IT & IS requirements into third party evaluation process and operate to ensure the effectiveness of IT third party risk management process.
• Incorporate IT & IS risk awareness into new hire orientation, annual training, and other events.

Join the related meetings if need, such as Change Advisory Board (CAB) and/or Technology Steering Committee (TSC).

Qualifications

• Bachelor's degree or higher in Information Technology, Cybersecurity, Risk Management, or a related field.
• Relevant work experience at least 3 years of experience in technology risk management, with a minimum of 3 years in a any technology role. (For the senior specialist, at least 5 years of experience in technology risk management, with a minimum of 3 years in a any technology role.)
• Proficiency in identifying, evaluating, and mitigating technology risks.
• Knowledge of regulatory requirements such as BOT or SEC, and best practices in IT governance.
• Familiarity with risk management frameworks and tools, such as NIST, ISO 27001.
• Ability to effectively communicate risk-related information to stakeholders at all levels both Thai and English.

การบริหารความเสี่ยงด้านเทคโนโลยีสารสนเทศของบริษัท เพื่อให้บริษัทสามารถบริหารจัดการความเสี่ยงได้อย่างมีประสิทธิภาพ เป็นไปตามนโยบาย แผนงาน ระเบียบ กฎเกณฑ์ทางการ และกฎหมายที่เกี่ยวข้อง

Job Objective and Responsibilities

• ร่วมจัดทำนโยบาย แนวทางปฏิบัติ เครื่องมือ วิธีการและเทคนิคต่างๆในการบริหารความเสี่ยงด้านเทคโนโลยีสารสนเทศ รวมทั้งการรายงานความเสี่ยงด้านเทคโนโลยีสารสนเทศ และการปฏิบัติงานอื่นตามที่ได้รับมอบหมาย เพื่อให้บริษัทสามารถบริหารความเสี่ยงด้านเทคโนโลยีสารสนเทศได้อย่างมีประสิทธิภาพ โดยสามารถป้องกัน หรือลดความเสี่ยงลงได้
• การบริหารความเสี่ยงด้านเทคโนโลยีสารสนเทศ ของบริษัทให้สอดคล้องตามระเบียบ กฎเกณฑ์ทางการ มาตรฐานต่างๆ และกฎหมายที่เกี่ยวข้อง
• ให้คำแนะนำ และความรู้ในการบริหารความเสี่ยงฯ เพื่อสนับสนุนหน่วยงานต่างๆ มีการบริหารความเสี่ยงด้านเทคโนโลยีสารสนเทศเป็นไปตามแนวทางที่กำหนดไว้
• กำกับดูแล สอบทาน การบริหารความเสี่ยงด้านเทคโนโลยีสารสนเทศของหน่วยงาน
• ปฏิบัติงานด้านอื่นๆ ตามที่ได้รับมอบหมาย

Job Specification and Qualifications

• วุฒิปริญญาตรีขึ้นไป สาขาเทคโนโลยีสารสนเทศ วิศวกรรมคอมพิวเตอร์ วิทยาศาสตร์คอมพิวเตอร์ วิทยาการการจัดการคอมพิวเตอร์ บริหารธุรกิจคอมพิวเตอร์ หรือ มีประสบการณ์ในงานที่เกี่ยวข้องกับการบริหารความเสี่ยงด้านเทคโนโลยีสารสนเทศโดยตรง
• มีประสบการณ์ทำงานธนาคารหรือสถาบันการเงินหรือธุรกิจบริการด้านการชำระเงิน ตั้งแต่ 5 ปีขึ้นไป
• มีความรู้ด้านเทคโนโลยีสารสนเทศ / ด้านผู้ตรวจสอบด้านเทคโนโลยีสารสนเทศ / ความรู้ด้านการบริหารความเสี่ยง
• มีความรู้ด้านบริการการชำระเงิน ระบบการชำระเงิน และการเงิน การธนาคาร
• มีความเป็นผู้นำ การวางแผน และบริหารจัดกา
• มีทักษะในการวิเคราะห์ ตัดสินใจ และแก้ไขปัญหา
• มีทักษะในการติดต่อประสานงาน การสื่อสาร ให้คำแนะนำ และให้คำปรึกษา
• มีความคิดริเริ่มสร้างสรรค์ และการพัฒนาตนเอง
• มีความรับผิดชอบในงาน ปฏิบัติงานอย่างถูกต้อง ครบถ้วน ในระยะเวลาที่กำหนด
• สามารถทำงานภายใต้ภาวะกดดันได้ดี

About Us

Do you want to be part of Thailand banking transformation? Data is the core of the new financial services era, and we are open for the opportunity to be part to drive this change at the core.

SCB DATAx is a new venture of the Siam Commercial Bank (SCB) holdings, a leading financial services and digital services holdings in Thailand and ASEAN.

As part of the transformation of SCB into a group of product and technology companies, under the SCBx brand, SCB DATAx is the technology company to centralize data and provide AI and data science services and products to the group.

With a leading-edge cloud native data & AI platform, our vision is to support the group to providing everyone in our region with the opportunity to prosper.

We work on forward-thinking challenges of centralizing, analyzing and sharing information. We collaborate with companies and experts in many different domains, embrace diversity and all that while having a good laugh and joy in work.

About Team
& Role

Oversight and challenge technology related risks for DataX (a subsidiary of SCBX). Ensure DataX technology & information security (IT & IS) risk management adheres to DataX and SCBX group risk management frameworks, policies and standards.

Work closely with risk owners to identify, assess, treat/mitigate, monitor, and report all IT & IS risks. Assess the effectiveness of IT & IS controls. Develop and maintain communication and collaboration with other risk partners, such as operations, security, data governance (DG), data privacy (DP), as well as with stakeholders across the organization.

This role is part of 2LoD which reports to DataX Chief Risk Officer (CRO).

Your Responsibility

• Operate technology & information security (IT & IS) risks adhere to DataX and SCBX group risk management frameworks, policies, guidelines, processes and procedures, including exception mechanisms. The IT & IS related risks scope for DataX organization and every service which DataX provides to SCBX group companies.
• Work closely with stakeholders across the organization, 1LoD and 2LoD:
• 1. Assist and monitor them to identify potential IT & IS risks, assess impacts, by applying technology risk management tools.
• 1. Ensure the effectiveness of risk mitigation, tailored to the business needs and operations, which should be done in a timely manner.
• 1. Continuous monitoring risk mitigation or any treatment strategies such as exemption or acceptance.
• 1. Assess the effectiveness of IT & IS controls. Implement continuous monitoring of the controls.
• 1. Ensure all technology risk activities are conducted in the GRC tool as centralized repository.
• Oversight technology incidents, analyze the root cause, challenge and monitor the action plans.
• Regular report technology risk indicators and incidents, for effectiveness of risk measurement and early warning for technology risk trends.
• Regularly review the risk register to ensure it covers every area in technology risk taxonomy. Addition to address new and evolving threats and risks.
• Work closely with project owners to perform effectiveness of IT Project Risk management. Assist stakeholders in validating risk assessments, which comprise analyzing, identifying, describing, and quantifying risks that impact all business risks.
• Work with procurement and related functions to enforce IT & IS requirements into third party evaluation process and operate to ensure the effectiveness of IT third party risk management process.
• Incorporate IT & IS risk awareness into new hire orientation, annual training, and other events.

Join the related meetings if need, such as Change Advisory Board (CAB) and/or Technology Steering Committee (TSC).

Qualifications

• Bachelor's degree or higher in Information Technology, Cybersecurity, Risk Management, or a related field.
• Relevant work experience at least 3 years of experience in technology risk management, with a minimum of 3 years in a any technology role. (For the senior specialist, at least 5 years of experience in technology risk management, with a minimum of 3 years in a any technology role.)
• Proficiency in identifying, evaluating, and mitigating technology risks.
• Knowledge of regulatory requirements such as BOT or SEC, and best practices in IT governance.
• Familiarity with risk management frameworks and tools, such as NIST, ISO 27001.
• Ability to effectively communicate risk-related information to stakeholders at all levels both Thai and English.

Work You Will Do

As a GRC Technology Consultant, you will be part of our Governance, Risk, and Compliance (GRC) team, supporting the delivery of technology-enabled risk transformation projects. In this role, you will perform a functional consultant capacity by gathering business requirements, contributing to the design, implementation, and enhancement of the Information Technology Risk Management (ITRM) module within our GRC platform.

You will act as a bridge between business stakeholders, risk management teams, and the system implementation team, ensuring effective design, testing, and deployment of ITRM functionalities. Your work will align with established risk management frameworks, regulatory requirements, and industry best practices to enable a robust and sustainable risk management environment.

Key Responsibilities

•    Gather business and regulatory requirements from stakeholders.

•    Provide advisory on Information Technology Risk Management to support good design of system functionality to ensure design aligning with relevant regulatory requirement and good practice.

o   Information Technology Risk Management Framework and Matrix

o   Information Technology Risk Management Workflow from end to end including identification, assessment, monitoring, escalation and reporting.

o   Information Technology Risk Indicators

o   Information Technology Risk Inventory and Controls

o   Information Technology Asset (application, devices, IT asset etc.) and Mapping with Control

o   Information Technology Risk Dashboard

o   IT Incident Management Activities from end-to-end process

•    Translate requirements into system specifications and user stories.

•    Prepare documentation including Requirement Traceability Matrix (RTM), Functional Specification Document (FSD), and process flows.

•    Support design, configuration, and integration of the ITRM module within the GRC platform.

•    Develop and execute test cases and UAT scripts for ITRM module.

•    Support accuracy and completeness of data migration and system outputs.

•    Document test results, track defects, and support resolution.

•    Create training materials such as manuals, quick guides, and e-learning modules.

•    Deliver user training sessions and provide adoption support.

Qualifications

•    Bachelor's or Master's degree in Business Administration, Risk Management, Finance, Information Systems, or related field.

For Consultant Level

•    1–3 years of experience in GRC, Internal Audit, or Risk Advisory, preferably in the financial services sector.

For Senior Consultant Level

•    5–8 years of experience in GRC, Internal Audit, or Risk Advisory, preferably in the financial services sector.

•    Strong knowledge of IT Risk Management frameworks and regulatory standards (e.g. ISO, NIST, COBIT, Basel, or BOT).

•    Experience with GRC platforms (RSA Archer, SAP GRC, MetricStream, or equivalent) is a plus.

•    Archer Certified Administrator (Specialist/Expert), ServiceNow CIS (Risk & Compliance), or equivalent certification is a plus.

•    Proficiency in business analysis, documentation, and stakeholder facilitation.

•    Strong problem-solving, analytical, and communication skills.

•    Professional certifications such as GRC, CISA, CRISC, CISM, CISSP are highly desirable.

Technical Skills

•    Exposure to GRC/IRM platforms such as Archer, ServiceNow, or MetricStream.

•    Understanding of workflows, reporting, and dashboard.

•    Proficiency in Microsoft Excel and PowerPoint for analysis and reporting.

Soft Skills

•    Analytical and detail-oriented mindset with the ability to work on multiple projects simultaneously.

•    Strong written and verbal communication, able to engage both technical and business stakeholders.

•    Team-oriented with a willingness to learn and adapt to dynamic client environments.

•    Ability to work in structured consulting environments with deadlines and deliverables.

Industry Focus: FSI

Exposure to banking, asset management, digital asset, insurance, and financial services risk and compliance processes. Understanding of significant risk and compliance domain for specific industry.

Are you ready to unleash your potential?

At Deloitte, our purpose is to make an impact that matters for our clients, our people, and the communities we serve.

We believe we have a responsibility to be a force for good, and WorldImpact is our portfolio of initiatives focused on making a tangible impact on society's biggest challenges and creating a better future. We strive to advise clients on how to deliver purpose-led growth and embed more equitable, inclusive as well as sustainable business practices.

Hence, we seek talented individuals driven to excel and innovate, working together to achieve our shared goals.

We are committed to creating positive work experiences that foster a culture of respect and inclusion, where diverse perspectives are celebrated, and everyone is recognised for their contributions.

Ready to unleash your potential with us? Join the winning team now

Work You Will Do

As a GRC Technology Consultant, you will be part of our Governance, Risk, and Compliance (GRC) team, supporting the delivery of technology-enabled risk transformation projects. In this role, you will perform a functional consultant capacity by gathering business requirements, contributing to the design, implementation, and enhancement of the Information Technology Risk Management (ITRM) module within our GRC platform.

You will act as a bridge between business stakeholders, risk management teams, and the system implementation team, ensuring effective design, testing, and deployment of ITRM functionalities. Your work will align with established risk management frameworks, regulatory requirements, and industry best practices to enable a robust and sustainable risk management environment.

Key Responsibilities

• Gather business and regulatory requirements from stakeholders.

• Provide advisory on Information Technology Risk Management to support good design of system functionality to ensure design aligning with relevant regulatory requirement and good practice.

o Information Technology Risk Management Framework and Matrix

o Information Technology Risk Management Workflow from end to end including identification, assessment, monitoring, escalation and reporting.

o Information Technology Risk Indicators

o Information Technology Risk Inventory and Controls

o Information Technology Asset (application, devices, IT asset etc.) and Mapping with Control

o Information Technology Risk Dashboard

o IT Incident Management Activities from end-to-end process

• Translate requirements into system specifications and user stories.

• Prepare documentation including Requirement Traceability Matrix (RTM), Functional Specification Document (FSD), and process flows.

• Support design, configuration, and integration of the ITRM module within the GRC platform.

• Develop and execute test cases and UAT scripts for ITRM module.

• Support accuracy and completeness of data migration and system outputs.

• Document test results, track defects, and support resolution.

• Create training materials such as manuals, quick guides, and e-learning modules.

• Deliver user training sessions and provide adoption support.

Qualifications

• Bachelor's or Master's degree in Business Administration, Risk Management, Finance, Information Systems, or related field.

For Consultant Level

• 1–3 years of experience in GRC, Internal Audit, or Risk Advisory, preferably in the financial services sector.

• Strong knowledge of IT Risk Management frameworks and regulatory standards (e.g. ISO, NIST, COBIT, Basel, or BOT).

• Experience with GRC platforms (RSA Archer, SAP GRC, MetricStream, or equivalent) is a plus.

• Archer Certified Administrator (Specialist/Expert), ServiceNow CIS (Risk & Compliance), or equivalent certification is a plus.

• Proficiency in business analysis, documentation, and stakeholder facilitation.

• Strong problem-solving, analytical, and communication skills.

• Professional certifications such as GRC, CISA, CRISC, CISM, CISSP are highly desirable.

Technical Skills

• Exposure to GRC/IRM platforms such as Archer, ServiceNow, or MetricStream.

• Understanding of workflows, reporting, and dashboard.

• Proficiency in Microsoft Excel and PowerPoint for analysis and reporting.

Soft Skills

• Analytical and detail-oriented mindset with the ability to work on multiple projects simultaneously.

• Strong written and verbal communication, able to engage both technical and business stakeholders.

• Team-oriented with a willingness to learn and adapt to dynamic client environments.

• Ability to work in structured consulting environments with deadlines and deliverables.

Industry Focus: FSI

Exposure to banking, asset management, digital asset, insurance, and financial services risk and compliance processes. Understanding of significant risk and compliance domain for specific industry.

Due to volume of applications, we regret only shortlisted candidates will be notified.

Please note that Deloitte will never reach out to you directly via messaging platforms to offer you employment opportunities or request for money or your personal information. Kindly apply for roles that you are interested in via this official Deloitte website.