Position: Assistant Chief, Cyber Security
About this role:
You will be a part of the team that provide Risk Assurance Internal Audit - Client Services practice. The team assist clients in developing analytics and technology solutions that help them detect, monitor, and predict risk using advanced technology.
Responsible for the implementation and support of the IT Cyber Security Management Systems within their assigned facilities in order that the businesses are protected against a cybersecurity events and can appropriately respond if one would occur.
Identify and develop Cyber Security Strategic opportunities to profitably grow the IT Business.
Analyze the Cyber Security policy for Project security needs (including laws and local regulations), determine security objectives and main security risks strategy
Evaluate and analyze threat, vulnerability, impact and risk to security issues discovered from security assessment
Provide cybersecurity consultation/ advice/ solution to a client, depending on the nature of each engagement. This can be in the form of cybersecurity assessment, policy/ procedures development, cyber-security/ IT security audit, compliance assessment. Etc.
Build and maintain effective working relationships at a senior/ executive level with the clients in the industry, positioning as a trusted advisor.
Bachelor's degree in Engineering, Information Technology, Computer Science or related fields
Minimum of 10 years' experience related area ( IT security management and assessment are preferred)
Professional certification is a plus
Certified Information Systems Security Professional (CISSP)
Certified Information Systems Auditor (CISA)
Certified Data Privacy Solutions Engineer (CDPSE)
Cybersecurity Nexus (CSX)
ICDL Data Protection, CompTIA Security+, BCCS
Experience in policy analytics as a Cyber Security Assessment lead or Cyber Security Strategic Planner, Security Consultant Manager in IT industry or any related
Detailed understanding of, and knowledge of main Cyber Security standards, strategy, regulations, and transformation
Broad understanding of Managed Security Services, Security Operation Centers, Security Incident Response, Identity and Access Management, Data Protection and Privacy
Experience in working with and influencing executives and senior management to identify requirements/ opportunities and formulate highlevel solutions
Fluent English and Thai communication skills, ability to lead team, and ability to work collaboratively across functions and offices