Sap Security Consultant

Sap Security Consultant Ph jobs in Manila

Posted 1 day ago

As the AVP for Internal Audit and Regulatory Response, you will help sustain the operational requirements of the Security and Architecture Group (SAG) - MNL Governance, Risk and Compliance, including the Audit and Controls Assurance function. Currently, these responsibilities are being handled full-time by one person and part-time by the SAG MNL Head. With the addition of a new permanent staff member, we are expanding our capacity to focus more deeply on regulatory compliance and advisory efforts.

How You'll Make an Impact

• Assists the Cybersecurity Manager in preparing regular reports to Management, including internal controls assessments, analysis of newly released Information Security or Cybersecurity regulations, and policy compliance with Head Office and regional standards for the MNL Branch.
• Supports in monitoring control programs and remediation activities and help coordinate internal and external system and information security audits.
• Help maintain IS policies and procedures and assist in administering reviews related to overall system security compliance programs.
• Conduct assessments to identify potential risk and root causes of ineffective IS controls and provide actionable recommendations for resolution.
• Perform other duties as assigned by GPAPD Management and Cybersecurity Manager, as needed.

What Sets You Apart

• Graduate of Computer Science, Accountancy, or related course
• Solid understanding and hands-on experience with Identity Access Management (IAM)
• Brings at least 5 years of experience in Information Security, Technology Risk, or Operational Risk
• Upholds ethical business practices, doing the right thing while ensuring full compliance with internal controls and legal/regulatory standards
• Strong problem-solving skills and can adapt quickly when demands and priorities shift
• You use relevant information to make sound, informed recommendations
• You collaborate well with others and communicate effectively across teams and cultures
• You're open-minded and flexible in your interactions with others
• You have a good aptitude for learning and mastering new technology
• Oral and written communication skills are clear, professional, and effective

Posted 1 day ago

Job Description

Company Description

Work with Us. Change the World. At AECOM, we're delivering a better world. We are the world's trusted infrastructure consulting firm, partnering with clients to solve complex challenges and build legacies for future generations.

Job Description

The primary function is to perform advisory and assurance projects of Audit Services Group (ASG) focused on IT, information security and data privacy risks. Duties include planning, scoping, executing risk-based IT, information security, and data privacy assurance projects in line with IIA and ASG standards; testing design and operating effectiveness of controls; communicating audit results to management; and developing action plans with stakeholders.

• Participate in planning, scoping and execution of risk-based IT, information security, and data privacy assurance and advisory projects in accordance with the Institute of Internal Auditors (IIA) and ASG standards
• Perform test of design and operating effectiveness of controls
• Effectively communicate audit results to management
• Work with stakeholders to develop actions plans that address root cause of findings
• Anticipate the impact of new technologies and strategic initiatives of the Company on its information security and privacy risk profile
• Demonstrate up-to-date knowledge in information security and privacy and apply this to the development, execution and improvement of audit programs and recommendations
• Develop and maintain productive working relationships with stakeholders, while maintaining independence and objectivity
• Contribute to various department initiatives to streamline processes, improve stakeholder experience, and increase productivity
• Contribute specialized expertise to different assigned projects and may provide key updates to Project Lead and Manager

Qualifications

• Bachelor's degree in management information systems, computer science, accounting, finance, or other IT related fields is required
• 2-4 years of IT auditing, technology, information security, privacy or other relevant work experience is required
• Must have strong verbal and written communication skills; fluency in English is required
• Knowledge of auditing cloud services, encryption technology, mobile technology, application security, software development methodologies, and common security frameworks preferred
• Ability to travel up to 30% including international travel (valid passport required)
• Professional certifications (e.g., CIA, CISA, CISSP) are preferred

Additional Information

Shift schedule: Morning shift (9AM to 6PM)

About AECOM

More details about benefits and company culture available in the original listing.

Posted today

OpenText - The Information Company

OpenText is a global leader in information management. The Manager, Security Operation Center leads the SOC, incident response, detection, containment, and eradication activities, coordinating with Incident Response, Threat Intelligence and Threat Hunting teams. The role may require EST business hours alignment.

• Define, manage, and implement a comprehensive SOC service
• Lead the response to significant security incidents
• Collaborate with client technical teams for issue resolution and mitigation
• Coordinate with incident response and threat teams to improve detection capability
• Develop and maintain standard operating procedures for security analyst roles
• Interface with internal audit and compliance teams to produce required security artifacts

Qualifications

• 5+ years of information security experience; 3+ years in SOC management or leadership
• Knowledge of PCI, ISO 27001, NIST frameworks; cloud security (Azure, AWS, M365)
• BS in CS, Cyber Security, or related field; certifications such as CISSP, CISM, CISA preferred

Note: This listing consolidates multiple roles from different companies; salary, location and requirements vary by position.