Share this Job
Apply now »

Risk Advisory: Consultant/ Senior Consultant/ Manager (Cyber Risk - Penetration Test)

Date:  07-Jun-2021
Service Line / Portfolios:  Cyber & Strategic Risk

Bangkok, TH

What impact will you make?

At Deloitte, we offer a unique and exceptional career experience to inspire and empower talents like you to make an impact that matters for our clients, people and community. Whatever your aspirations, Deloitte offers you a highly inclusive, collaborative workplace and unrivalled opportunities to realize your full potential. We are always looking for people with the relentless energy to push themselves further, and to find new avenues and unique ways to reach our shared goals.

So what are you waiting for? Join the winning team now.

Work you'll do

Cyber Risk Services (CRS) is part of our Risk Advisory (RA) practice. CRS is comprised of professionals with a broad range of information technology, risk management and legal consulting skills. CRS professionals focus on managing risk related to information and technology and drive operational, financial and regulatory compliance processes; as well as solutions that manage risk across the organisation. These professionals perform assessments and implementation of end-to-end solutions in these areas. They also deliver advisory services focused on data protection/privacy risk and compliance to management and senior executives.


Work you'll do


  • Translate data protection and privacy requirements into business processes, scenarios and project implementations for our clients towards elaborating risk-mitigating and remediation plans.
  • Design legal and operational mechanisms to be adopted by clients on various aspects of personal data and privacy (e.g. privacy notices, DPO assistance, international data transfers, etc.).
  • Develop our data protection and privacy services in Thailand by helping our clients to define strategies for risk-based data governance.
  • Advise on legal, operational and technical risks and put in place mitigating controls while leveraging our multidisciplinary capabilities and tools.
  • Apply problem solving skills in line with our Deloitte methodology on engagements.
  • Develop excellent oral and written communication skills in order to establish working relationships with clients.
  • Build industry knowledge to understand data protection and privacy issues relevant to specific business activities and technologies.


Your role as a leader

At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We expect our people to embrace and live our purpose and shared values, challenging themselves everyday to identify issues that are most important to our clients, our people and the communities, and to make an impact that matters. In addition to living our purpose, Managers across our Firm are expected to:


  • Understand the goals of our clients and Deloitte, align our people to these objectives by setting clear priorities and direction.
  • Influence clients, teams, and individuals positively. Lead by example and provide equal opportunity for people to grow, develop and succeed.
  • Establish positive relationship with senior stakeholders.
  • Delivers exceptional client service. Maximizes results and drives high performance from people while fostering collaboration across businesses and geographies.
  • Manage diverse teams within a highly inclusive team culture where people are respected and valued for their contribution.
  • Develop high-performing teams through challenging and meaningful opportunities and recognize them for the impact that they make.



Bachelor or Master degree preferably in Law or in Business, Computer Science/Engineering, Information Technology, Information Systems or other relevant fields.


  • Good analytical and decision-making skills supported by clear communication and presentation skills.
  • Out-of-the-box thinking to help our clients address the data protection and privacy challenges in Thailand and across Asia.
  • Demonstrated leadership, problem solving, and strong verbal and written communication skills in both Thai and English.
  • Ability to prioritize tasks, work on multiple assignments, manage ambiguity, work both independently and as part of a team with professionals at all levels.
  • Experience at least 6 years with GDPR/PDPA compliance preferably in a law firm or professional services firm would be a plus.
  • Familiarity with standards and frameworks such as ISO/IEC 27701, ISO/IEC 27001, COBIT or ITIL would be a plus.
  • Holding one or more professional certifications would be a plus e.g. CIPP/E, CIPP/A, CIPM, CIPT, CISSP, CISM, CISA, ISO/IEC 27001 lead implementer/auditor.


 Due to volume of applications, we regret only shortlisted candidates will be notified.

Requisition ID:  14242

In Thailand, the services are provided by Deloitte Touche Tohmatsu Jaiyos Co., Ltd. and other related entities in Thailand ("Deloitte in Thailand"), which are affiliates of Deloitte Southeast Asia Ltd. Deloitte Southeast Asia Ltd is a member firm of Deloitte Touche Tohmatsu Limited. Deloitte in Thailand, which is within the Deloitte Network, is the entity that is providing this Website.

Apply now »