IT Infrastructure & Cybersecurity Assistant Manager

The position drives infrastructure modernization and digital transformation through hybrid cloud adoption, strengthens cybersecurity posture in collaboration with the Security Operations Center (SOC), and promotes continuous improvement across IT support, disaster recovery, and governance processes.

1. Infrastructure Strategy & Operations
   • Design, implement, and manage enterprise-wide IT infrastructure across on-premise data centers and hybrid cloud platforms.
   • Ensure high system availability and performance through proactive monitoring and capacity planning.
   • Lead modernization initiatives such as automation, virtualization, and hybrid cloud integration.
2. Cloud Infrastructure Management (AWS, Huawei, etc.)
   • Drive cloud adoption, migration, and optimization across AWS, Huawei Cloud, and other IaaS/PaaS platforms.
   • Monitor costs, performance, and security configurations while maintaining high-availability architecture.
   • Establish governance policies for hybrid cloud integration with on-premise systems.
   • Collaborate with providers and internal teams to ensure resilience, backup, and disaster recovery readiness.
3. Cybersecurity & Risk Management
   • Implement robust infrastructure security controls (e.g., firewalls, access management, patching, endpoint protection).
   • Conduct periodic risk assessments to identify vulnerabilities and ensure compliance with ISO 27001, PDPA, and internal policies.
4. Network Security Management
   • Oversee secure network design and operations for LAN/WAN, VPNs, and Wi-Fi.
   • Manage firewall rules, segmentation, intrusion prevention systems, and remote access.
   • Monitor and respond to threats, anomalies, and unauthorized activities in coordination with SOC.
5. SOC Collaboration & Threat Response
   • Act as the primary liaison with the SOC for threat monitoring and incident response.
   • Review SOC alerts, oversee investigations, and ensure remediation of incidents.
   • Analyze SOC intelligence to strengthen the overall security posture and close vulnerabilities.
6. Infrastructure Support Management
   • Lead teams in resolving Level 1–3 infrastructure and endpoint issues (e.g., servers, VPN, email).
   • Monitor SLA compliance, resolution times, and customer satisfaction.
   • Identify root causes of recurring issues and implement long-term improvements.
7. Governance, Compliance & Audit
   • Ensure infrastructure and cloud systems comply with ISO 27001, PDPA, GRC, and ITGC standards.
   • Maintain documentation and records for audit readiness, and close any compliance gaps.
8. Disaster Recovery & Business Continuity
   • Oversee backup success and restoration processes.
   • Conduct annual disaster recovery drills, validating RPO/RTO.
   • Maintain updated disaster recovery (DR) and business continuity (BCP) documentation.
9. Project & Deployment Readiness
   • Prepare infrastructure and cloud systems for major rollouts (e.g., ERP, WMS, B2B).
   • Support capacity planning, provisioning, and go-live readiness.
   • Validate security, stability, and backup measures pre- and post-deployment.
10. Incident Management & Monitoring
    • Lead resolution of infrastructure, cloud, and security incidents with root cause analysis.
    • Deploy monitoring tools for real-time visibility and proactive alerts across IT layers.
11. Vendor & Contract Management
    • Manage vendor partnerships for cloud, hosting, network, and security solutions.
    • Track SLA compliance, negotiate terms, and assess ROI on services.
    • Ensure vendors deliver services on time and meet business objectives.
12. Team Leadership & Development
    • Lead and nurture a multidisciplinary team across infrastructure, cloud, security, and support functions.
    • Conduct appraisals, design training programs, and support certifications (e.g., AWS, ISO 27001, network security).
    • Foster a culture of accountability, innovation, and continuous improvement.