Information Security and Risk Officer
2 weeks ago
Job Summary
We are seeking a dedicated Information Security and Risk Officer to join Enterprise Technology & Services team. This is a 1st line of defense IT Governance role in which the incumbent will enable businesses and IT partners to recognize and handle their cyber and information security risks in a vibrant business environment. You will be part of the team which will work with different service areas within ETS and serve as a trusted partner and domain expert to the business and help them protect their information assets. Participate in critical global projects and initiatives to ensure Information risk is always appropriately managed, perform security risk assessments and consulting on various projects & implementation of tools or services. Work closely with infrastructure, development, application teams on implementation of security controls to ensure the integrity of information security policies, procedures and standards; also report to senior management on the efficiency of such controls.
Qualifications
• 2 to 5 years of relevant information security and information risk management experience.
• Professional certification(s) related to information security or information risk management such as CISSP, CRISC, CISM, CISA, GIAC are preferred.
• Solid understanding and experience in the following areas:
• Security architecture and controls in various infrastructure platforms (i.e. Windows, Unix, RH Linux, Virtual hosting, networking, end user technology, cloud computing including Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS)).
• Security systems such as privilege management system, SIEM/big data solution for security monitoring, NAC, vulnerability management solution and operating model, PKI/Encryption technology, APT solutions (FireEye, Z-scaler), Firewall/IPS, WAF etc.
• Knowledge of application security standard methodologies such as secure coding, security testing techniques
• Knowledge of OWASP, SANS, or other security-related frameworks and penetration testing methodologies
• Working experience with Cloud platforms such as Azure, AWS or GCP
• Windows and related services (i.e. Active Directory, DNS, IIS, MSSQL), Active Directory Federated Services and Protocols (i.e. ADFS, SAML)
• Collaboration and messaging platforms (i.e. Office 365, SharePoint)
• Mobile Devices along with Mobile Device Management / Mobile Application Management Platforms and Services
• Validated ability to establish relationships, engage and influence others, and work with diverse internal and international user communities as well as vendors
• Experience implementing and/or supporting a large-scale corporate enterprise solution.
Nice to Have
• Experience with FAIR or comparable quantitative risk management frameworks is a plus
• Previous experience in the Financial, Insurance or Healthcare sectors considered an asset.
Responsibilities:
• Assisting project teams with identifying and validating security requirements or leading the completion of information risk assessments.
• Performing in-depth risk assessments on projects from technical security perspective to ensure that the security safeguards and controls are in-line with the organization's Security policy and standards.
• Providing input and recommendations to the ETS Service Areas on information security requirements and standard methodologies.
• Assisting with security incident investigations & service provider threat notifications.
• Support other operational security activities including oversight of ongoing security processes (e.g., incident response, ad hoc queries, periodic access reviews and vulnerability management)
• Help define and improve Information Security practices.
• Working with the ETS Service Areas on Go Live Acceptance Reviews for new infrastructure & services associated with that.
• Reporting on security metrics and compliance with company policies/standards.
• Take on other information risk management tasks as required.
#J-18808-Ljbffr
-
Information Security Officer
2 weeks ago
Makati City, National Capital Region, Philippines Philip Morris International Management SA Full timeJoin PMI as an Information Security OfficerPMI wants to work with the best talent available. Our diverse workforce of around 73,500 people speaks more than 80 languages. Our priority is to attract, support, and retain individuals from across the planet – no matter their age, gender, religion, or disability. Our people are our greatest strength, and we're...
-
Information Security Officer
4 weeks ago
Makati City, National Capital Region, Philippines Philip Morris International Full timePMI wants to work with the best talent available. Our diverse workforce of around 73,500 people speaks more than 80 languages. Our priority is to attract, support, and retain individuals from across the planet – no matter their age, gender, religion, or disability. Our people are our greatest strength, and we're proud of our culture of openness and...
-
Information Security Officer
1 month ago
Makati City, National Capital Region, Philippines Philip Morris International Full timePMI wants to work with the best talent available. Our diverse workforce of around 73,500 people speaks more than 80 languages. Our priority is to attract, support, and retain individuals from across the planet – no matter their age, gender, religion, or disability. Our people are our greatest strength, and we're proud of our culture of openness and...
-
Chief Information Security Officer
2 weeks ago
Makati City, National Capital Region, Philippines weSource Management Consultancy Firm Full timeRole: Chief Information Security OfficerJob Rank: Senior Manager to AVPIndustry: BankingLocation: MakatiSet up: OnsiteSchedule: Mon-FriSalary: Up to 250KGeneral FunctionThe Chief Information Security Officer (CISO) shall be the primary responsible for formulating the Information Security Strategic Plan (ISSP) and Information Security Program (ISP) of the...
-
Information Technology Risk Manager
2 weeks ago
Quezon City, National Capital Region, Philippines Cobden & Carter International Full timeIT Risk Manager (Banking)Work Setup: OnsiteOffice Location: BGC, TaguigBudget: Up to 120kRole Purpose: Assumes the direct accountability of the technology risk management activities and ensures the branch satisfies the technology risk management provisions of the Bank and local regulators.Responsibilities:Establish and maintain local technology risk and...
-
Information Technology Officer I
2 weeks ago
Makati City, National Capital Region, Philippines Credit Information Corporation Full timePosition: INFORMATION TECHNOLOGY OFFICER IPlace of Assignment: Credit Information Management Services Group - Information Security Unit (CIMSG-ISU)Monthly Rate: Php 46,725.00Mode of Employment: Contract of ServiceNo. of Vacancy: Two (2)Opening Date: MAY 14, 2024Closing Date: MAY 24, 2024Qualification Standards:Education: Bachelor's Degree relevant to the...
-
Information Risk Management Senior Specialist
2 weeks ago
Quezon City, National Capital Region, Philippines Manulife Insurance Malaysia Full timeInformation Risk Management Senior Specialist page is loaded Information Risk Management Senior Specialist Apply locations Quezon City time type Full time posted on Posted Yesterday job requisition id JR We are a leading financial services provider committed to making decisions easier and lives better for our customers and colleagues around the world. From...
-
Information Technology Officer I
2 weeks ago
Makati City, National Capital Region, Philippines Credit Information Corporation Full timePosition: INFORMATION TECHNOLOGY OFFICER IPlace of Assignment: Credit Information Management Services Group - Data Center (CIMSG-DC) Salary: JG 11Monthly Rate: Php 46,725.00Mode of Employment: Contract of ServiceNo. of Vacancy: Two (2)Opening Date: MAY 14, 2024Closing Date: MAY 24, 2024Qualification Standards:Education: Bachelor's Degree relevant to the...
-
Information Risk Management Senior Specialist
2 weeks ago
Quezon City, National Capital Region, Philippines Manulife Insurance Malaysia Full timeInformation Risk Management Senior Specialist page is loaded Information Risk Management Senior Specialist Postuler locations Quezon City time type Temps plein posted on Publié hier job requisition id JR Nous sommes un fournisseur de services financiers qui s'emploie à faciliter les décisions de nos clients et de nos collègues partout dans le monde et...
-
Information Risk Assessment Specialist
2 weeks ago
Makati City, National Capital Region, Philippines Manulife Insurance Malaysia Full timeInformation Risk Assessment Specialist page is loaded Information Risk Assessment Specialist Apply locations Makati City time type Full time posted on Posted 30+ Days Ago job requisition id JR We are a leading financial services provider committed to making decisions easier and lives better for our customers and colleagues around the world. From our...
-
Associate Senior Information Security Analyst
2 weeks ago
Quezon City, National Capital Region, Philippines Greater Giving, Inc. Full timeSummary of This Role Evaluates, tests, recommends, develops, coordinates, monitors, and maintains information security policies, procedures and systems, including hardware, firmware and software . Ensures that IS security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with IS standards and overall IS...
-
information security specialist
2 weeks ago
Mandaluyong City, National Capital Region, Philippines Unilab, Inc. Full timePress Tab to Move to Skip to Content Link Select how often (in days) to receive an alert: CREATE JOB ALERT Select how often (in days) to receive an alert: It is the spirit of Bayanihan that drives us to continue our legacyof excellence and commitment to care. As an organization, we achieve our successes through good, honest, and persevering hard work -...
-
IT Risk Officer
2 weeks ago
Makati City, National Capital Region, Philippines ING Full timeIf you are good at:The IT Risk Officer will be responsible for (but not limited to):· Interpreting ING's IT risk policies and IT minimum standards and ensuring these are applied into practice by IT teams.· Demonstrating effectiveness of risk mitigation via Test of Design (ToD) and Test of Operational Effectiveness (ToE) for IT systems and internal IT...
-
IT Risk Officer
3 days ago
Makati City, National Capital Region, Philippines ING Full timeIf you are good at:The IT Risk Officer will be responsible for (but not limited to):· Interpreting ING's IT risk policies and IT minimum standards and ensuring these are applied into practice by IT teams.· Demonstrating effectiveness of risk mitigation via Test of Design (ToD) and Test of Operational Effectiveness (ToE) for IT systems and internal IT...
-
Information Security Manager
2 weeks ago
Makati City, National Capital Region, Philippines AXA Group Full timeResponsible for establishing and maintaining information security management program to ensure that information assets are adequately protected. This position is responsible for identifying, evaluating and reporting on information security risks in a manner that meets compliance and regulatory requirements, and aligns with and supports the risk posture of...
-
Junior Information Systems Security Officer
2 weeks ago
Makati City, National Capital Region, Philippines CITCO Philippines Full timeJunior Information Systems Security Officer (Rolling Intake) Manila Opportunity Expired Citco expands your expertise to excel in your role and advance your career with confidence. Join now Opportunity details Opportunity Type Graduate Job Start Date Ongoing Applications Close 17th of January 2024 (Prosple estimate closing date) Citco is a global...
-
Quezon City, National Capital Region, Philippines Manulife Insurance Malaysia Full timeInformation Security Manager, Controls Testing and Governance page is loaded Information Security Manager, Controls Testing and Governance Apply locations Quezon City time type Full time posted on Posted Yesterday job requisition id JR We are a leading financial services provider committed to making decisions easier and lives better for our customers and...
-
Senior Information Risk Management Specialist
2 weeks ago
Quezon City, National Capital Region, Philippines Manulife Insurance Malaysia Full timeSenior Information Risk Management Specialist page is loaded Senior Information Risk Management Specialist Postuler locations Quezon City Lapu Lapu City, time type Temps plein posted on Publié hier job requisition id JR Nous sommes un fournisseur de services financiers qui s'emploie à faciliter les décisions de nos clients et de nos collègues partout...
-
Quezon City, National Capital Region, Philippines Manulife Full timeInformation Security Manager, Controls Testing and GovernanceManila, Manulife Business Processing Services Manulife Manulife is a leading financial services group. We provide financial advice, insurance, as well as wealth and asset management solutions for individuals, groups and institutions. View company page We are a leading financial services provider...
-
Information Officer V
2 weeks ago
Makati City, National Capital Region, Philippines Credit Information Corporation Full timePosition: INFORMATION OFFICER VPlace of Assignment: Business Development and Communications GroupMonthly Salary: Php 80, AllowanceItem Number: MBDG-002Opening Date: MAY 22, 2024Closing Date: JUNE 02, 2024Note: Submission of application documents should not be later than the closing date. Incomplete requirements and late submissions will not be...
