Job Requirements:
 

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 3-5 years of experience with security technologies, including firewalls, intrusion detection systems, and encryption.

Job Summary:

The Cyber and Information Security Officer is responsible for developing, implementing, and maintaining a comprehensive information security program to protect the organization's critical assets. This role requires a strong understanding of cybersecurity best practices, risk management, and regulatory compliance.

Job Responsibilities:
 

Information Security Strategy:

• Develop, implement, and maintain a robust information security strategy aligned with business objectives.
• Conduct regular risk assessments and vulnerability scans to identify potential threats.
• Develop and implement policies, procedures, and standards to ensure information security compliance.
   

Incident Response:

• Establish and maintain an incident response plan.
• Lead incident response activities, including investigation, containment, eradication, and recovery.
• Coordinate with relevant teams to minimize impact and restore operations.
   

Security Awareness and Training:

• Develop and deliver security awareness training programs for employees.
• Promote a culture of security awareness and responsible computing practices.
• Conduct regular phishing simulations and security awareness campaigns.
   

Security Operations:

• Monitor network traffic and system logs for security threats.
• Implement and maintain security controls, such as firewalls, intrusion detection systems, and encryption.
• Conduct regular security audits and penetration testing.
   

Compliance and Regulatory:

• Ensure compliance with relevant industry standards and regulations (e.g., PDPA, GDPR, , etc…).
• Conduct regular compliance audits and assessments.
• Stay updated on emerging threats and security best practices.
• Any other related responsibilities assigned by direct manager.

Knowledge and Skills:
 

• Relevant industry certifications
• Strong understanding of information security frameworks and standards (e.g., NIST Cybersecurity Framework, ISO 27001).
• Experience with security technologies, including firewalls, intrusion detection systems, and encryption.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Ability to work independently and as part of a team.

If you are ready to take the next step in your career, be part of a dynamic team, and contribute to the growth of a leading organization, we invite you to apply.