Information Security Manager
Liberty Insurance Pte Ltd
Bangkok, TH
5 วันที่แล้ว


  • Primary lead for the Information Security Organization in Thailand
  • Contributor to East Region security projects, initiatives and thought leadership
  • Supporting Internal and External Audit activities, total quality assurance program and Incident Response Plan, including operational procedures to prevent any impact to business services.
  • Work with Country and Regional teams to perform security assessment on projects, third party vendor, integration across the organization
  • Provide thought leadership and guidance on security to business and IT partners

  • Develop, implement, and manage the overall process for security strategy and associated architecture and engineering standards
  • Define, identify, and classify critical assets, assess threats and vulnerabilities regarding those assets, and implement safeguard recommendations
  • Driven policies, standards and guidelines related to Regulations and Global standard
  • Define activities to raise awareness and security knowledge to employees
  • Work closely with executives, business managers, regional team, audit and legal counsel to understand requirements related to security and regulatory compliance, and to map those requirements to current security projects
  • Monitor and control utilization of information security OPEX to ensure optimal corporate benefit, as well as alignment with budget plan and understand business strategy
  • Manage and monitor all controls in Security Management Program activities (Related with ISO27001, PCIDSS and SOX)
  • Manage vulnerability assessment, penetration test and security source code review
  • Inform and manage security functions related to information security on Infrastructure, SDLC, Integration
  • Serve as the Country focal point for information security incident response and fraud
  • Assessing, monitoring, and reporting the overall cyber security activities and defense status to management
  • Oversee the continuous monitoring and protection of facilities, personnel and information systems. Evaluate suspected security breaches and recommend corrective actions (including incidents involving outside vendors)
  • Advise business or IT stakeholders and project teams on IT risks and recommended controls, practices and design to mitigate the risks, including meeting compliance requirements
  • Exercise professional judgment on engagements by providing proactive solutions and recommendations
  • Encourage effective teamwork through cross-functional and department engagement
  • Understanding of local data privacy and outsourcing requirements and privacy by design principles

  • Bachelor’s degree in computer engineering, computer science or related field
  • 5+years of total technology experience, with 3+years of experience in IT Security
  • Knowledge of cloud security concepts, principles and protections
  • Experience with threat modeling concepts and practices
  • Good knowledge in vulnerability assessment & penetration testing at infrastructure, application and cloud.
  • Good understanding in IT networking & service, various systems, OS, application and cloud.
  • Good understanding of risk management concepts
  • Certification in Information Security is advantage.
  • Knowledge in IT security compliance and standard such as PCI DSS and ISO 27001.
  • Critical attention to detail, thoroughness and documentation.
  • Customer focus and ability to communicate and engage well with businesses users at all level to understand their need and able to clearly articulate IT solution.
  • Routine travel up-country and aboard.
  • Have positive attitude, good relationship and service-minded.
  • Excellent problem solving and analytical skill, Planning and Organizing skill and Customer Oriented
  • Proficiency in English both written and spoken
  • Ability to work well with others, as well as independently. Attention to detail.
  • Powered by JazzHR


    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    เมื่อคลิกที่ "ต่อ" คุณยอมรับว่า neuvoo เก็บรวบรวมและประมวลผลข้อมูลส่วนบุคคลของคุณซึ่งคุณได้ระบุไว้ในแบบฟอร์มนี้เพื่อสร้างบัญชีใหม่และสมัครรับการแจ้งเตือนทางอีเมลของเราตามนโยบายส่วนบุคคล #open นโยบายความเป็นส่วนตัว ของเรา คุณอาจถอนความยินยอมของคุณเมื่อใดก็ได้โดยทำตาม ขั้นตอนเหล่านี้