Security Engineer (Bangkok)

freeC's Client

As an IT Security, your primary responsibility is to ensure the security and compliance of IT systems and applications within our organization. This role involves reviewing and enhancing best practices in IT security, recommending and deploying technical security enhancements, and managing various information security, data protection, and risk management activities. Additionally, you will play a crucial role in maintaining and developing security processes, monitoring policies and controls, and providing guidance to ensure alignment with Quality Assurance standards.

Key Responsibilities

• Assess controls for information in all formats and recommend solutions for vulnerabilities.
• Coordinate and oversee vulnerability and penetration testing.
• Investigate and document security breaches, providing recommendations for remediation.
• Assist in developing company-wide best practices and information security policies.
• Research security enhancements and stay updated on IT trends and standards.
• Monitor security effectiveness and assess the current state of information security.
• Develop and monitor metrics for information security activities, driving continuous improvements.
• Assist in establishing security requirements for new features and services.
• Identify and eliminate manual processes using automation in information security.

Your Skills and Experience Qualifications

• University degree in fields of Computer Science; Information System Engineer, Management Information System or equivalent required.
• Min 3+ years of working experience as a similar position
• Professional Qualification and/or Regulatory, Licensing requirements:
• CEH, Security+, GSEC, CISA or equivalent certifications.
• Recognized certifications in industry-accepted IT governance standards (ITIL, COBIT, TOGAF) is an advantage.
• Competencies/Skills
• Experience with infrastructure vulnerability, penetration testing (White Box and Black Box) and techniques
• Knowledge of Amazon Web Services (AWS) and information security controls (ISO, NIST, OWASP).
• Security Configuration of Windows, Linux, DBMS (MS SQL/MySQL/PostgreSQL).
• Understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts.
• Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
• Understanding of patch management for servers and end units with knowledge of how patches are deployed and understanding the business impact.
• Experience with malware analysis at a basic level.
• Demonstrable experience with endpoint protection software and configurations.
• Good technical understanding of enterprise IT: web applications, databases, operating systems, server/desktop hardware, mobile devices and networking technologies.
• Ability to multitask, be proactive, build relationships and interact/network effectively with internal and external parties.
• Problem solving skills
• Flexible and team work

• Employee Support: Assistance with accommodation, living expenses, and work visa procurement for all staff.
• Home Visit Support: Financial assistance for employees to visit home fourth a year.
• Competitive Salary: A salary package that reflects your skills, experience, and
• contributions to the company.
• Essential Equipment: Provision of necessary work equipment, including a MacBook and iPhone.
• Development: Continuous development of hard and soft skills through work and
• professional training.
• Holiday Bonus: A holiday and New Year bonus to recognize your hard work and
• dedication.
• Inclusive Environment: A professional, dynamic, and inclusive workplace culture that
• fosters collaboration and innovation.
• Life experience: Enjoy the new culture, living environment in Thailand.