Supervise the development and maintenance of the organization's overall cybersecurity strategy and roadmap, including risk assessment and mitigation plans.
Develop and design security architecture for the bank (Enterprise Security Architecture), setting standards and requirements for IT security and creating a framework for technologies such as Cloud and Biometric Technology.
Operational Management:
Monitor daily and weekly operations to enforce security policies, standards, and procedures, ensuring compliance with industry regulations and best practices.
Supervise and assess security risks related to information systems provided by external service providers or connected to third parties.
Security Assessment and Compliance:
Conduct security assessments and review IT systems before they are deployed into production as part of the change management process.
Supervise and provide recommendations for IT security projects, including evaluating security risks if systems cannot meet security needs.
DevSecOps Integration:
Enhance the security level of the software development process (SDLC) by implementing DevSecOps practices and integrating them with the development of various bank applications.
Standards and Recommendations:
Supervise and review standards or recommendations for various information technologies used by the bank, applying them as guidelines for configuring technological security systems.
Continuous Improvement:
Stay current with emerging security threats, technologies, and best practices, adapting security strategies as needed.
Job Qualification
Education:
Bachelor’s or Master’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
Experience:
Extensive experience in cybersecurity management, including developing security strategies and managing security operations.
Proven experience with IT security architecture, risk assessment, and compliance.
Experience with DevSecOps practices and integrating security into the software development lifecycle.
Experience with cloud security, biometric technologies, and third-party risk management.
Skills:
Strong understanding of security policies, standards, and best practices.
Excellent leadership, management, and communication skills.
Ability to analyze and address security risks and vulnerabilities.
Up-to-date knowledge of emerging security threats, technologies, and regulatory requirements.
Certifications:
Relevant certifications such as CISSP, CISM, CISA, or similar are preferred.
Skills
Vulnerability Management
Vulnerability Assessment
Information Security
Network Security
Information Security Management
System Administration
Functions
Information Technology (IT)
Job Overview
Job Type:
Hybrid
Company
KASIKORN Business-Technology Group
85 active jobs
Industry:
Technology
Ready to Apply?
Submit your application now and take the next step in your career journey.
