Group Information Security Analyst
เกี่ยวกับตำแหน่งนี้
หน้าที่รับผิดชอบ
• To enforce and operate the Information Security policies, procedures, and controls across the Group of companies.
• To help build the information security first culture mindset by providing information security exercises including awareness training, random security audit/checks and simulations.
• Monitor and operate the security operations including EDR/XDR, Identity Protection, emails and data protection, NGFW, network security, IDS/IPS, and any possible additional tools like SIEM/ SOAR and personal data protection solutions.
• Identify the information security incidents, analyze and respond to them in a timely manner.
• Report to Group Information Security and Data Protection Officer in a prompt manner in every critical information security incidents.
• Work with the IT Operations and Infrastructure, Digital, Business Systems team and outside parties (providers/ outsources/ consultants/ etc.) to strengthen the cyber security across the IT landscape.
• Operate the Information Security procedures including the access control, privilege and change requests.
• To help implement and operate new information security and data protection initiatives/ projects.
• To act as internal police identifying and closing the possible information security and data protection gaps.
คุณสมบัติ
• Good demonstrated knowledges in technical IT such as computer networks, servers & systems, applications, databases, etc.
• Work experience in technical IT fields for at least 1 years is required. However, new graduates with potential will also be considered.
• Knowledges in information security both technical and non-technical (ISO 2700x, NIST, or other related frameworks) will be a plus.
• Knowledge in Personal Data Protection Act or equivalent laws will be a plus.
• Can work in an international and dynamic environment.
• Good command of English both listening/speaking and reading/writing.