ตำแหน่ง System Engineer and Security focal point (Contract)

บริษัท IBM Solution Delivery Company Limited.

ที่อยู่บริษัท

เงินเดือน สำหรับสมาชิกเท่านั้น

ลักษณะงานที่ทำ
Bank of Ayudhya Project
• Security management and internal process follow IBM and Customer security policy.
- Security patches assignment.
- Hardening and Re-Hardening server.
- Server Security Health checks.
- Fix Vulnerability.
- Noncompliance issue tracking.
- Tech spec.
- System registration.
- Inventory reconciliation.
• Implement Configuration and Troubleshoot on Microsoft products.
- Windows server 2003, 2008R2, 2012R2, 2016
- Active Directory, Group Policy, DNS, DHCP, Files Sharing Permission, File screening, Quota, IIS
• Maintenance Configuration and Troubleshoot on VMware products.
- VMware vCenter, vSphere, vMotion, HA, ESXi
• CCB, ARB Meeting with customers before implement or maintenance server.
• Implement and Decommission VMware and Physical Windows Servers.
• Perform system refreshment, installation and migration.
• Monitor and perform report from Symantec Endpoint Protection for support customer.
• Coordinate with Network, Storage, Backup, UNIX and Application team for implement, deployment and Troubleshoot on Windows Servers and VMware Infrastructure.
• Supporting day-to-day operation and manage change, incident, problem follow ITIL Process.
• 24/7 on-call and Site support for support incident.

Project
• Swap site servers physical and VMware between Bangna datacenter to RAMA3 datacenter
• Disaster recovery site relocation from Bangna datacenter to Amatankorn NTT Datacenter.
• DHCP Server refreshment from Windows 2003 to Windows Server 2012 R2.
• Upgrade VMware ESXi 5.1 to ESXi 6.0
• Hardening server and application follow new Techspec One BAY.
• Create script for checking and collect result from server (CMD and Power shell).
• Manage and configuration IBM BigFix Endpoint Management and Security.
• Risk Assessment and planning before installing security patch quarterly.

ตำแหน่ง System Support

บริษัท In360 Company Limited.

ที่อยู่บริษัท

เงินเดือน สำหรับสมาชิกเท่านั้น

ลักษณะงานที่ทำ
Teleintel Project, Intimex Project
• Project plan and problem management about IT infrastructure.
• Implement Configuration and Troubleshoot on Microsoft products.
- Windows 10, 7, XP, Vista
- SharePoint2010, Exchange2010
- Windows server 2003, 2008R2, 2012R2, SBS2011
- Active Directory, Group Policy, DNS, DHCP, Files Sharing Permission, File screening, Quota, Profile path, and Backup
• Maintenance Configuration and Troubleshoot on VMware products.
- VMware vCenter, vSphere, ESXi
• Maintenance Configuration and Troubleshoot on access control products.
- ZK Attendance Management, 701Client Proximity
• Maintenance Configuration and Troubleshoot on Firewall Product and Monitoring tool.
- pfSense, Forefront TMG, Endian, Zabbix
• Implement Configuration and Troubleshoot on Telephony Systems.
- Nice Logger, Avaya, Free PBX, Nortel PBX, MDF, Digital Phone, Analog Phone and IP Phone
• Training users about IT Security policy and in-house application.
• Advise team about Server Configuration and Security risk.
• Generate Custom Bill form Crystal Report (Microsoft Access Database).
• Routine operation Server Health Check and create document report.
• Troubleshoot technical problem on Server, Network and in-house application.
• ISO/IEC 27001 Information security management system (ISMS).
• ISO 9001 Quality management system (QMS).
• Monitoring and Troubleshoot on ESET NOD32 Antivirus.
• Configuration and Maintenance CCTV Camera.

Project
• Migrate Telephony system from Analog to IP Phone base on Free PBX system.
• Design VLAN and Configuration core switch on all operation room

ตำแหน่ง Chief of IT Information Security

บริษัท AEON Thana Sinsap (Thailand) Public Company Limited.

ที่อยู่บริษัท

เงินเดือน สำหรับสมาชิกเท่านั้น

ลักษณะงานที่ทำ
• Analyze security risks in IT systems and business operations, and give recommendations.
• Follow up IT Organization to perform align with IT security procedures and processes.
• Coordinate with relate team in the planning for test DRP and BCP to respond to business operations in an emergency plan.
• Provide IT Security standard and compliance advisory i.e. ISO27001, PCI DSS , BOT and Data Privacy.
• Security awareness training
- Create security awareness and policy contents.
- Perform security awareness training program and procedures to the whole organized.
• Privileged Access Management
- Manage user access management follow IT security policy by using CyberArk.
• Patch management
- Announce Security patches assignment and tracking all servers and other platform.
• Hardening
- Implement IT Security baseline and review recommend configuration for server and other platform.
- Review Security Technical Implementation Guide document and revise configuration for apply with new policy and new IT Security baseline.
• Internal & External VA
- Project leader for VA Project.
- Perform Vulnerability Scan by using Nessus and Qualys scanner.
• Pentest Web Application / Windows Application / Mobile application
- Project leader for Pentest project by hiring, managing and control 3rd party Pentester.
- Create Proposal, Scope of work, Project plan and relate document for Pentest project.
• Security Operations Center
- Review event log by using McAfee Security Information and Event Management (SIEM).
- Supervise Security Operation Center (SOC Manager)
- Create rule and alert follow Indicators of Compromise (IOC) and zero day exploit.
• File Integrity Monitoring
- Review files Integrity by using McAfee ePolicy Orchestrator.

Project:
• Nessus vulnerability scanner P2V and Network design for scanner.
• Redesign CyberArk Privileged Access Management flow approval and user privileged.
• Review PCI report, rules and alert on McAfee Security Information and Event Management (SIEM).