Ensure adequate and efficiency of both IT general control and technical control currently practiced within Group
Prepare IT audit engagement plan, engage works and deliver results as timeline
Assess and review adequate and effectiveness of IT control over hardware, software, devices, networking, infrastructure technology, cyber security, internet, and digitalization.
Assess an appropriation of governance, risk management, and control related to IT and provide practical advisory to management
Conduct investigation over cyber security, governance issues and cyber-attracted report to management
Present IT audit results and concrete recommendation to managements as well as follow up action completion
Provide advisory relating to IT controls and governance
Coordinate and support external auditors or assessors when auditing system
Conduct special projects as assigned by supervisor
Bachelor or Master Degree in Computer Engineering, Computer Science, MIS and any IT related fields
At least 5 years-experiences in IT audit, IT security, IT Technical background
Professional license in CIA, CISA, CISM, CISSP, CEH, GPEN, etc. would be advantage
Strong IT security and IT technical knowledge as well as working experiences in any of the following areas:
Penetration testing at network , web & mobile application and wireless level
Penetration testing tools, vulnerability scanning, disassemblers/debuggers
One or more scripting languages is an advantage.
Network security controls including firewall, router, IDS/IPS security configuration and security review
Operating system configuration and security review for any of various platforms: Mainframe, Windows, UNIX, Middleware, Oracle/SQL databases.
Familiarly with COBIT, ITIL, OWASP, OSSTMM, NIST, ISO 27001 and compliance regulations standards such as BOT, SEC, PCI-DSS, etc.
Understanding of IT best practices, security controls and risk management concepts
Strong in written and spoken Thai and English language
Multi-national and/or cross border project experience is an advantage
Relevant experience assisting with proposal development and presentations.
If you would like to apply for this position, please send your resume to firstname.lastname@example.org or fill in your information on the section below.
*All applications will be treated in strict confidentiality. All material submitted in connection with your application will become part of our confidential recruitment files. We regret that only shortlisted candidates will be notified.