Security Compliance Expert

Posted date:  Sep 9, 2022
Location: 

Bangkok, Bangkok, Thailand

Location: Thailand

Open for External Reference: Yes

 

Background Check: All employment offers to join Ericsson are subject to satisfactory completion of our global pre-employment check.

 

As the tech firm that created the mobile world, and with more than 54,000 patents to our name, we’ve made it our business to make a mark. When joining our team at Ericsson you are empowered to learn, lead and perform at your best, shaping the future of technology. This is a place where you're welcomed as your own perfectly unique self, and celebrated for the skills, talent, and perspective you bring to the team. Are you in?

Come, and be where it begins.

The Security Compliance Expert for is a position reporting to Head of Operation

This unit has interfaces directly with customer team, Global delivery security team, Back office team other delivery units like NOC, Incident Management, Change Management, Automation expert, Quality & Operational Excellence,3PP and external auditors.

Role Definition:

This position will be within local MSIP organization with a primary objective to manage customer and GSC delivery team and identify security control gaps as well as vulnerabilities. Professionals with their wide demonstrated ability would be encouraged to ensure that the Managed Services delivery unit adheres to the security compliance requirements as per the customer’s security policy and any applicable regulatory requirements. The professional will work alongside a highly skilled, diverse team, making sure that the information assets, that we are responsible to protect, are secured.

Key Responsibilities!:

  • Manage customer key stake holders and Global delivery team
  • Ensure any security audit is well managed and handle based on support from respective team.
  • Ensure that Information Security Requirements for the specific contract will be adhered to and maintained
  • Perform periodic risk and security assessments based on compliance, review and propose updates to the Information Security Requirements based on risk and security assessments
  • Maintain the personnel’s awareness of up-to-date security policies and procedures
  • Maintain procedures to ensure management of security for systems under MS contracts
  • Perform periodic checks that only the authorized persons have access rights to information, systems, and facilities, and report findings
  • Perform periodic review of baseline security standard for the operating systems and network devices
  • Track closure of identified gaps and report compliance periodically
  • Ensure that all relevant security process and procedure documents are up to date and reviewed periodically
  • Perform periodic review of the contracted customer delivery against ISO27001 standard v Test the security control efficiency and identify gaps (if any) Assist in security exception handling process v Provide recommendations in lieu of security exceptions, provide risk analysis, and recommend actions

Candidate Prerequisites & Qualifications:

  • BE/ B.Tech (Telecommunication/ Computer Science) / MBA
  • 5+years in security Governance, Risk and Compliance (GRC)

Key Competencies !:

  • ISO 27001 Lead Implementer, ITIL, CEH, OSCP, CISA, CISSP, and CISM certifications will be an advantage
  • Good knowledge and understanding of information security v Good understanding of ISMS (Information Security Management System), ISO27001 standard and prior experience of conducting IT audits
  • Knowledge of data privacy and GDPR
  • Should be adept at conducting gap analysis & risk assessments to identify high risk areas and recommend controls to address the risk areas
  • Understanding of enterprise computing environments, distributed applications, and a solid understanding of TCP/IP networks, also with available security control (technical & process control) for respective layers

Non-technical competencies:

  • Excellent communication skills, English is a must
  • Good documentation, analysis skills
  • The ability to work constructively under pressure
  • Ability to work both in a team as well as individually v Knowledge sharing & teamwork skills v Customer oriented, Service minded v Deliver results & meet customer expectations

 

We are proud to announce at Ericsson Thailand, our employees have once again voted us as a Great Place to Work® and we have been officially Certified™ in 2021. Every year, more than 10,000 organizations from over 60 countries partner with the Great Place to Work® Institute for assessment, benchmarking and planning actions to strengthen their workplace culture and this Certification acknowledges our employees value their employee experience and our workplace culture.”

 

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided a reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request an accommodation.
 

Why Join Ericsson?​
 

At Ericsson, you´ll have an outstanding opportunity. The chance to use your skills and imagination to push the boundaries of what´s possible. To build never seen before solutions to some of the world’s toughest problems. You´ll be challenged, but you won’t be alone. You´ll be joining a team of diverse innovators, all driven to go beyond the status quo to craft what comes next. ​
 

What Happens once you apply?​
 

Click Here to find all you need to know about what our typical hiring process looks like.​

 Encouraging a diverse and inclusive organization is core to our values at Ericsson, that's why we nurture it in everything we do. We truly believe that by collaborating with people with different experiences we drive innovation, which is essential for our future growth. We encourage people from all backgrounds to apply and realize their full potential as part of our Ericsson team. ​
 

Ericsson is proud to be an Equal Opportunity and Affirmative Action employer, learn more. We are committed to providing reasonable accommodations to all individuals participating in the application and interview process. If you need assistance or to request an accommodation due to a disability please reach out to interviewsupport@ericsson.com

Be where it begins

Our Culture

Welcome to an inclusive, global company where your opportunity to make an impact is endless. Share your most innovative ideas, bring your unique perspective and bring your unique perspective in a speak up environment. With us, you will no longer be dreaming of what the future holds – you will be redefining it at a company where you’re empowered to lead and perform at your very best.

Learning and Development

Being a part of our team means having the flexibility to take your career in many different directions, but it also means leveraging the supportive structure of a big organization, with clear personal and professional development opportunities. 

Benefits and Rewards

We believe that great accomplishments deserve great benefits and transparent rewards. We strive to offer competitive, unbiased, and fair rewards for all our people. We empower you to manage your own time and promote flexible working opportunities, along with family-friendly policies.

Click here to find out more about our benefits.


Job Segment: Telecom, Telecommunications, Information Security, Compliance, Change Management, Technology, Legal, Management