IT Security Risk Assessment Officer
1 week ago
Must have: Bachelor's degree in Computer Science, Information Technology, or a related field.Must have minimum 3 years of experience in Information Security or related fields. Must be knowledgeable on various compliance and regulatory requirements (i.e., BSP, DPA, PCI-DSS, etc.)Must have experience in various information and IT security domains and controls related to third party risks, data security and risk management, data transmission integrity. This includes understanding various processes related to the service, product or solution provided by vendors to the Bank and its links to bank processes.Must have experience in information security governance, controls assurance, risk assessments and key risk indicators development.Must have experience in IT general controls and auditing. Must have the ability to do research on items assigned to them.Must have strong background on network and application system security risk assessments. Must have experience in planning, executing, and documenting assessment activities following established processes and procedures with minimal guidanceMust have experience in leading and working well with the team, internal, and external clients. Have good teamwork and collaboration skills: good team players with the ability to lead security initiatives.Analytical and risk identification skills to analyze a variety of information security –related risk situations and develop recommendations on the best course of action.Must have Project management skills: to lead and manage accomplishments of assigned tasks/risk assessment activities. Must possess excellent time management skills, thrive in a fast-paced demanding environment. Be a self-managed self-starter with good organizational skills to include good follow-up skillsBe able to work under pressure on multiple assessments/projects simultaneouslyStrong attention to detail, analytical, and problem-solving skills. Strong learning agility with the ability to learn new processesMust have good written and verbal communication skills: to effectively articulate and explain complex security topics in simple language and easy to understand concepts. Analytical and risk identification skills to analyze a variety of information security related risk situations and develop recommendations on the best course of actionMust be knowledgeable in using MS office tools such as PowerPoint, word, excel and project. Job Description:Develop tactical plans and programs for the establishment and maintenance of the Bank's third-party information security risk management framework and ensure alignment with the enterprise risk framework. Performs third party security, system security and information asset-based risk assessment. Analyze and review of complex bank processes, application system and network security implementation and third-party relationships to identify potential risk including the determination of risk mitigation strategies. Analysis and review of complex application system and network security implementation on the current production environments to identify potential risk including the determination of risk mitigation strategies. Recommend strategies to control risks from inadequate protection of confidentiality, integrity and availability of the information assets, processing facilities and connected services.Specific Duties & Responsibilities:Prepares tactical plans and/or programs in the conduct of information, third party and system security risk assessments.Identify the Bank's critical assets, threats to these assets, vulnerabilities, and reviews adequacy of existing security controls to safeguard the confidentiality, integrity and availability of information.Coordinate and assess the security performance of third-party vendors that collect, process, transmit, and store client dataPerforms threat modelling-based system security risk assessment for all IT systems and other IT assets, as applicableAnalyze and assess the impact of changes in process, technical changes and systems enhancements and third-party relationships.Reviews adequacy of existing security controls to safeguard the confidentiality, integrity and availability of information and information processing facilities to mitigate information security risk.Formulates, recommends information security policies and procedures on physical, environmental and personnel security with respect to results of information security assessment activities. Responsible for coordinating across all business units and stakeholders in gathering information in preparation to the conduct of information, third party and system security risk assessment.Articulate security findings and risk remediation strategies through issuance of risk assessment report. Track and follow-up status of risk mitigation activities. Ensures security risk register is maintained and kept updated including status of remediation activities.Executes and monitors accomplishment of the risk assessment plans and programs.Articulate security findings and risk remediation strategies through issuance of risk assessment report; writing comprehensive, concise and understandable to non-technical. Tracking and follow up on status of mitigation activities.Maintain and track library of records and documentation.Investigation of applicable reported incidents related to information handling and data privacy. Keep abreast of and apply information, IT and third-party security trends and regulatory and compliance changes affecting the security of landscape, security best practices, threat landscape (emerging and existing) and apply them in daily work.Review the work of other Security Quality and Assurance Risk Assessors; guides and mentors them.Proactively works with the Department Head in implementing programs for the continuous improvement of the bank's information security plans and strategies.Perform other information security risk management and compliance related duties and responsibilities as directed by the Department Head.
-
IT Security Risk Assessment Officer
3 weeks ago
Taguig, National Capital Region, Philippines Hunter's Hub Incorporated Full timeJob DescriptionJob Summary:Develop tactical plans and programs for the establishment and maintenance of the Bank's third-party information security risk management framework and ensure alignment with the enterprise risk framework. Performs third party security, system security and information asset-based risk assessment. Analyze and review of complex bank...
-
IT Security Risk Assessment Officer
4 weeks ago
Taguig, National Capital Region, Philippines Hunter's Hub Incorporated Full timeJob DescriptionJob Summary:Develop tactical plans and programs for the establishment and maintenance of the Bank's third-party information security risk management framework and ensure alignment with the enterprise risk framework. Performs third party security, system security and information asset-based risk assessment. Analyze and review of complex bank...
-
Risk Assessment and Compliance Officer
5 days ago
Taguig, National Capital Region, Philippines UnitedHealth Group Full timeRole OverviewWe are seeking an experienced Cybersecurity Risk Management Specialist to join our team. In this role, you will be responsible for managing information security and cybersecurity risk for our clients. You will also be responsible for ensuring compliance with regulatory requirements and information security policies.Key Responsibilities:Manage...
-
Third Party Risk Assessment Lead
6 days ago
Taguig, National Capital Region, Philippines UnitedHealth Group Full timeSecurity Risk Assessment LeadThe Security Risk Assessment Lead will be responsible for leading security risk assessments and remediation activities for third-party suppliers.Main responsibilities include:Conducting discovery calls and performing risk-based assessmentsReviewing evidence and supporting documentation from suppliersCommunicating identified...
-
Security Consulting and Risk Officer
3 weeks ago
Taguig, National Capital Region, Philippines Nityo Infotech Full timeSecurity Consulting and Risk OfficerLocation: TaguigSetup: OnsiteSalary: Open Rate Graduate of any Bachelors degree courseGraduate of any college degree in Computer Science or Information Security, or related technical field of expertise.General understanding of regulatory compliance and how it relates to application security and privacy.Certification...
-
Third-Party Risk Assessment Professional
4 days ago
Taguig, National Capital Region, Philippines UnitedHealth Group Full timeBenefits and RequirementsThis is an exciting opportunity for a Third-Party Risk Assessment Professional to make a significant impact on our organization's security posture. If you have a strong background in IT compliance and security, we encourage you to apply.
-
Information Security Risk Management Lead
7 days ago
Taguig, National Capital Region, Philippines Visage Executive Search Full timeWe are seeking a highly skilled Information Security Risk Management Lead to join our team at Visage Executive Search. In this role, you will be responsible for managing risk by regularly assessing the vulnerability of systems to cyber-attacks or other forms of security breaches.The Information Security Strategic Plan is a key aspect of this role, including...
-
Security Compliance Officer
6 days ago
Taguig, National Capital Region, Philippines Cyber Crime Full timeCybersecurity and Risk Management StrategistYou will play a key role in developing and implementing effective cybersecurity and risk management strategies to safeguard CITADEL's global IT assets. As a seasoned strategist, you will collaborate with cross-functional teams to identify, assess, and prioritize potential security threats and develop mitigation...
-
Risk Assessment Expert
2 days ago
Taguig, National Capital Region, Philippines Risewave Consulting, Inc. Full timeRisewave Consulting, Inc. is looking for a seasoned Risk Assessment Expert to join our team.The ideal candidate will possess a deep understanding of risk management principles and practices.Key Responsibilities:Risk Identification: Identify potential risks and develop strategies to mitigate them.Credit Analysis: Conduct thorough credit analysis to assess...
-
Info Security Risk Auditor
4 weeks ago
Taguig, National Capital Region, Philippines Optum Full timeOptum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion,...
-
Security Consulting and Risk Officer
4 weeks ago
Taguig, National Capital Region, Philippines Nityo Infotech Full timeLocation: BGC TaguigSchedule: DayshiftWork Setup: OnsiteQualifications:*Graduate of any college degree in Computer Science or Information Security, or related technical field of expertise*General understanding of regulatory compliance and how it relates to application security and privacy*Certification training may include is CISA, CISM, SANS GIAC, CISSP,...
-
Information Security Risk Manager
17 hours ago
Taguig, National Capital Region, Philippines UnitedHealth Group Full timeAt UnitedHealth Group, we're committed to helping people live healthier lives. And we're looking for talented individuals like you to join our team.Job Summary:We're seeking a highly skilled Information Security Risk Manager to join our team. In this role, you'll be responsible for assessing and mitigating information security risks for our clients.Key...
-
Information Security Consultant
5 days ago
Taguig, National Capital Region, Philippines UnitedHealth Group Full timeAbout the RoleWe are seeking an experienced Information Security Engineer Consultant to join our team. In this role, you will be responsible for assessing and prioritizing information security and cybersecurity risk for our clients. You will also be responsible for ensuring compliance with regulatory requirements and information security policies.Key...
-
Internal Auditor
7 days ago
Taguig, National Capital Region, Philippines 1Rotary Trading Corporation Full timeResponsibilities:Assist in developing audit objectives by reviewing available information and conducting research.Help design, implement, and maintain internal audit procedures and risk assessment processes.Ensure accuracy of auditing information from the team.As an Internal Auditor - Risk Assessment, you will be responsible for identifying and mitigating...
-
Security Architect
1 week ago
Taguig, National Capital Region, Philippines TalentHero Full timeJob Summary:Responsible for the design and engineering of network and systems security infrastructure and connected services in the bank, including network and system security testing and implementation of new products, services or improvements to existing and current security infrastructure. This includes solutions-review of security-related projects and...
-
Security and Risk Management Professional
7 days ago
Taguig, National Capital Region, Philippines Aboitiz Power Corp. Full timeJob SummaryAboitizPower is seeking a highly skilled Security and Risk Management Professional to join our team. As a key member of our cybersecurity governance group, you will play a critical role in identifying and mitigating potential risks to our systems and data.Key Responsibilities- Conduct regular risk assessments and audits to identify potential...
-
Compliance Risk Officer
1 week ago
Taguig, National Capital Region, Philippines Visage Executive Search Full timeBrief Description:The Compliance Risk Officer is primarily responsible in assisting the Chief Compliance Officer inoverseeing the risk management framework of the Bank, ensuring compliance with regulatoryrequirements, and implementing strategies to mitigate risks across various functions.Duties & Responsibilities:1. Risk Assessment and Monitoring:• Conduct...
-
IT Security Consulting and Risk Officer
1 week ago
Taguig, National Capital Region, Philippines Nityo Infotech Full time- Salary: Open rate- Location: BGC Taguig City- Set up: Onsite- Schedule: Dayshift (M-F)QUALIFICATIONS:- At least 3 years experience related to this role- Graduate of any college degree in Computer Science or Information Security, or related technical field of expertise.- General understanding of regulatory compliance and how it relates to application...
-
Information Security Manager
3 weeks ago
Taguig, National Capital Region, Philippines Visage Executive Search Full timeShall represent the bank in all cybersecurity matters and will be responsible for establishing and maintaining an Information Security Management Program to ensure that the information assets are adequately protected. The ISM should be able to identify, evaluate and report the information security risks in relation to the bank's compliance and regulatory...
-
Information Security Manager
1 week ago
Taguig, National Capital Region, Philippines Visage Executive Search Full timeThe candidate needs to fulfill the 3 key functions,- manaage bank micro/digital loan portfolio,- familiar with banking credit regulation and PIC for designing and demonstrating the flow walkthrough,- being able to coordinate with product/IT team on any flow changes since we are a digital bank shall represent the bank in all cybersecurity matters and will be...
