Posting Date: 22 Apr 2026
Job Function: IT and Digital technology
Company: Banpu Public Company Limited
Location:
Thailand
Job Summary
Develop and Update Policies: Create and continuously update digital governance policies and procedures to ensure they align with current regulations, industry standards, and organizational goals.
Responsibilities
- Collaborate with legal, IT, and other relevant departments to develop comprehensive policies.
- Set clear governance objectives and key performance indicators (KPIs).
- Use feedback from audits and assessments to refine and improve the framework.
- Establish a compliance calendar to schedule regular audits and assessments.
- Maintain a risk register to track identified risks and mitigation actions.
- Provide regular reports to senior management on compliance status and risk management efforts.
- Implement data encryption and access controls to safeguard sensitive information.
- Conduct data mapping exercises to understand data flows and storage locations.
- Engage with external experts to ensure compliance with the latest data protection regulations.
- Co-develop advanced security technologies such as firewalls, intrusion detection systems, and anti-malware tools.
- Co-develop incident response plans and conduct regular drills to ensure preparedness.
- Partner with cybersecurity firms to conduct.
- Create engaging training content, including e-learning modules and interactive sessions.
- Measure training effectiveness through assessments and feedback surveys.
- Keep employees informed about the latest threats and regulatory changes through regular communications.
Qualifications
- Bachelor's degree in Information Technology, Computer Science, Cybersecurity, Business Administration, or a related field.
- Advanced degree (MBA, Master's in Information Security, etc.)
- Minimum 5 years of experience in digital governance, IT governance, cybersecurity, or a related field.
- Proven track record of developing and implementing digital governance frameworks and policies.
- Extensive experience in conducting audits and risk assessments.
- Strong understanding of digital governance principles, cybersecurity, and data protection laws.
- Strong project management skills, with the ability to manage multiple initiatives simultaneously.
- Familiarity with digital tools and technologies used in governance, risk, and compliance (GRC) frameworks.
