Position: Assistant Chief, Cyber Security

About this role:
You will be a part of the team that provide Risk Assurance Internal Audit - Client Services practice. The team assist clients in developing analytics and technology solutions that help them detect, monitor, and predict risk using advanced technology.

Job Description:

• Responsible for the implementation and support of the IT Cyber Security Management Systems within their assigned facilities in order that the businesses are protected against a cybersecurity events and can appropriately respond if one would occur.

• Identify and develop Cyber Security Strategic opportunities to profitably grow the IT Business.

• Analyze the Cyber Security policy for Project security needs (including laws and local regulations), determine security objectives and main security risks strategy

• Evaluate and analyze threat, vulnerability, impact and risk to security issues discovered from security assessment

• Provide cybersecurity consultation/ advice/ solution to a client, depending on the nature of each engagement. This can be in the form of cybersecurity assessment, policy/ procedures development, cyber-security/ IT security audit, compliance assessment. Etc.

• Build and maintain effective working relationships at a senior/ executive level with the clients in the industry, positioning as a trusted advisor.

Qualification:

• Bachelor's degree in Engineering, Information Technology, Computer Science or related fields

• Minimum of 10 years' experience related area ( IT security management and assessment are preferred)

• Professional certification is a plus

• Certified Information Systems Security Professional (CISSP)

• Certified Information Systems Auditor (CISA)

• Certified Data Privacy Solutions Engineer (CDPSE)

• Cybersecurity Nexus (CSX)

• ICDL Data Protection, CompTIA Security+, BCCS

• Experience in policy analytics as a Cyber Security Assessment lead or Cyber Security Strategic Planner, Security Consultant Manager in IT industry or any related

• Detailed understanding of, and knowledge of main Cyber Security standards, strategy, regulations, and transformation

• Broad understanding of Managed Security Services, Security Operation Centers, Security Incident Response, Identity and Access Management, Data Protection and Privacy

• Experience in working with and influencing executives and senior management to identify requirements/ opportunities and formulate highlevel solutions

• Fluent English and Thai communication skills, ability to lead team, and ability to work collaboratively across functions and offices

​