Back to job search

Senior IT Compliance Management Associate

Ngernturbo Co., Ltd. / บริษัท เงินเทอร์โบ จำกัด (Mueang Nonthaburi)
Nonthaburi, Thailand 🇹🇭
ข้อมูลบริษัท Ngernturbo is a new consumer finance startup, established in late 2017, currently with 1,000 branches. Our management team are young and talented professionals, with the average age in their 30s, of which have an Ivy League or Master degree from abroad with extensive background in finance, including investment banking, and other related fields. Our primary area of focus is the unbanked sector in Thailand. Those in the unbanked sector usually face difficulties in obtaining credit to finance their shops, their farms, or to meet short term liquidity needs. We aim to provide them credit and other financial products at a very reasonable rate and very generous payment terms. For those willing but unable to pay our debt, we will offer help within reasonable business boundaries for them to amend or defer our payments. We also give them financial advice for them to make it through. While popular among other lenders, liquidations will only be our last resort. We operate our business with great pride to provide financial assistance to those in need, enabling them to have better lives.

Detail posisi

The Senior IT Compliance Management Associate is responsible for advising on security policies, implementing compliance laws, and ensuring adherence to various security standards and regulations.

Kewajiban

• Give advice regarding security policies and recommendations (comply to internal policy). Implement new compliance laws in starting phase and support implement project to comply law/act/regulation.
• Assess new law and regulation related to government IT security requirements.
• Prepare documents to comply with PCI-DSS, ISO 27001, ISO27017, ISO27018, OIC, BOT, ETDA, NDID, mobile ID and other new services if necessary.
• Monitor usage behavior to ensure compliance with enterprise security policies.
• Set security standards and guidelines according to company’s Policy and privacy policy.
• Improve Security Awareness posters and signage displayed in all offices, New Hire Orientation and deliver periodic Security Awareness Presentations.
• Security Software Acquisition / Renewal.
• Coordinate with all stakeholders for role and responsibility to complete all documents.
• Participate with Infra and IT teams to develop effective DR plan.
• Perform risk assessment & prepare security policy improvement periodically.

Kualifikasi

• Bachelor Degree in Computer Engineer, Computer Science, Information Technology or IT related field.
• Knowledge of International Security frameworks, Standards, and Guidelines e.g., COBIT, NIST-800, ISO 27001, PCI-DSS, OWASP, Thai PDPA, Thai Cyber Law Crime Act, Bank of Thailand regulation and etc.
• Strong IT skills including knowledge on software programming.
• Familiarity with security auditing processes.
• Problem solving skills and ability to work with pressure.
• Ability to present ideas in user-friendly language.
• Ability to absorb and retain information quickly.
• Ability to effectively prioritize and execute tasks in a high-pressure environment.
• Ability to conduct research into a wide range of security issues as required.