Cybersecurity Consultant

Responsibilities:

• Designing and implementing data protection and privacy programs for our clients and supporting their business
• Evaluating the data protection and privacy practices of our clients and Conducting Privacy Impact Assessments
• Monitor processes and drive improvements in efficiency and quality of cybersecurity programs
• Facilitate strategic planning initiatives, documentation, technical roadmaps and security tool rationalisation
• Assist in designing the security organisation structure including cyber defense
• Develop security policies, procedures, standards based on the security strategy and roadmap
• Review of cybersecurity policies and processes to identify gaps in design of control based on comprehensive assessment framework
• Conduct security process implementation reviews to assess security effectiveness and reporting
• Conduct Current State Assessment of cybersecurity practices against the defined controls and provide recommendations for to-be state
• Run Cyber Security Diagnostic Assessments and develop programs for cybersecurity skill development and enhancement
• Implement security controls for realisation of the certification requirements and provide technology roadmap based on the security strategy
• Assisting in delivering privacy projects to acting as a subject matter expert on them or to leading a team towards excellent client experience
• Supporting and guiding our clients in adhering to the complex web of relevant national and international regulations (e.g. EU General Data Protection Regulation).
• Deploying processes and tools to help detect and prevent privacy breaches

Qualifications:

• Bachelor’s degree in Computer Engineering, Computer Science, Information Systems or a related field. A Master’s degree is a plus
• Have knowledge of industry standard classification schemes, such as NIST, ISO27000, and PCI DSS.
• Be able to conduct and simulate manual penetration tests.
• Be able to code at least in one scripting language such as SQL, C ++, JavaScript, Ruby, or Python.
• Have demonstrated leadership, problem solving, and verbal and written communication skills. You need to be able to communicate clearly in both Thai and English.
• Have proven analytical, decision-making, and presentation skills. 
• Have a high level of MS Office proficiency.
• Be able to adapt and learn new things.
• Be able to prioritize tasks, work on multiple assignments, and manage ambiguity.
• Be able to work both independently and as part of a team with professionals at all levels
• Offensive Security Certified Professional OSCP certifications are beneficial but not required.