Cyber GRC Consultant
Key Responsibilities
- Conduct cyber risk assessments across product, platform, and data domains, aligned with applicable regulatory requirements and industry standards, and support remediation planning of identified risks
- Maintain and update security policies, standards, SOPs, and compliance documentation, including security requirements for third-party products and services
- Assist with internal and external audits, including evidence preparation, control walkthroughs, and issue tracking
- Support continuous compliance monitoring activities such as baseline checks and configuration validation
- Coordinate with engineering, product, and data teams to ensure policy adherence and control implementation
- Contribute to security awareness activities and governance reporting
Qualifications
- Understanding of security frameworks and regulatory requirements (ISO 27001, PDPA, BOT, NCSA Cloud Security, NIST CSF)
- Ability to assess risks, controls, and cloud service configurations
- Familiarity with continuous compliance concepts and cloud governance practices
- Strong documentation, communication, and stakeholder coordination skills
- Experience supporting audits or compliance in a cloud or SaaS environment
- Exposure to cloud platforms (AWS/Azure/GCP) and modern DevOps workflows
Benefits :
- Hybrid Working Arrangement
- World-Class Development Program
- Performance Bonus
- Vacation Leave 15 Days + Maternity Leave
- MacBook Provided
- Housing Loan
- Life Insurance/ Health Insurance/ Dental Care
- Jetts Fitness (Corporate rate and privilege)
- Opportunity to be a part of team that drives Thailand Digital Economy (The contributor of the great impact to millions of Thai people through digital platforms e.g. PaoTang App. and Krungthai Next App)
Working Location :
The ParQ ชั้น 5, 9-10 (Hybrid Work)
ติดกับ MRTสถานีศูนย์การประชุมแห่งชาติสิริกิติ์ ทางออกที่ 2