Practical Operation Control and Continue Improvement The Protection, Detection and Response Sophisticated Cyber Threat coming from Public Channel Interfacing according to Bank's Policy and Standard Defined
Control Configuration, change, review the Cyber Defense Technology e.g. CloudWAF, WAF, IPS, Anti-DDoS, to ensure that visibility and control meet the organization and international standard which always up-to-date cybersecurity capability to protect the cyberthreat
Gathering and preparation, co-ordinate, to build collaboration with Domestic banking sector and National Cyber Security and also Regulation and Banking sector CERT.
Readiness for Assessment and also Simulation Cybersecurity Test preparation in many aspects / angles based upon Statistic Recording and Threat Intelligence from Internal Factor and External Factor.
Co-ordinate and control External Provider or 3rd Party for Business Relation in order to response the Cybersecurity Events and Incident Against Cyber Attacked from public Accessing.
Studying and Educate of TTP (Tactical, Technical and Procedure) of new Cyber Attacked and Gather Information Feeds of Cyber Threat Intelligence purposing to propose new-approach of Cybersecurity Countermeasure
Cyber Risk Mitigation and Control to meet Cyber Risk Appetite according for highest Business outcome and objectives
Qualification :
Bachelor's Degree in Engineering /IT or relevant field with at least 5 years of work experience in Information Security or Cybersecurity.
Robust skills in Cyber Defense Technology and Incident Responder which is certified by a global certificate.
Strong Malicious Activity Identification and Investigate and mature the Network Security Containment strategy and deployment on Digital Banking Technology and environment.
Good Experience and Understanding in Zero-Day Attack/Target Attack, Containment, Virtual Patch, and Mitigation Recommendation.
Develop a Program of Cyber Defense Programs with both Proactive-Reactive Strategies to reduce the impact on the bank.
Exercise Paybook and IR plan for regular and also the red-team blue team.
Good command of English and Explain root-cause of Impact.
Preferable Certified in CEH A or other related Cyber security certifications.
