Information Security Manager

3 weeks ago


Makati City, National Capital Region, Philippines Michael Page Full time
  • Step into a high-impact leadership role.
  • Drive enterprise-wide security initiative and influence key stakeholders.

About Our Client

This organization serves as the data science and AI arm of a diversified business group, focused on enabling data-driven transformation across key industries such as energy, finance, and infrastructure. Its mandate is to operationalize data as a strategic asset-leveraging advanced analytics, artificial intelligence, and machine learning to support improved decision-making, enhance operational efficiency, and unlock new sources of value across the enterprise.

Job Description

Key Responsibilities:

  • Lead the organization's information and cyber security governance processes and represent local interests in the group-level Cybersecurity Steering Committee.
  • Design, develop, and maintain a company-wide information security program that integrates business priorities and operational needs.
  • Collaborate with IT and compliance teams to ensure appropriate security controls are embedded in systems and operations, and that Risk Control Matrices (RCMs) and other compliance mechanisms are maintained.
  • Establish and enforce policies and procedures to protect sensitive data, ensuring compliance with legal, regulatory, and contractual obligations.
  • Maintain and enhance the organization's information security framework and documentation, including risk assessments, test results, process flows, and remediation plans.
  • Act as the primary escalation point during critical security incidents; lead incident investigations and convene the Security Incident Response Team (SIRT) when necessary.
  • Oversee periodic audits, vulnerability assessments, and security testing to ensure controls are working as intended.
  • Conduct Business Impact Assessments (BIAs) and Privacy Impact Assessments (PIAs) to identify potential risks and guide mitigation strategies.
  • Develop and deliver security awareness programs to promote a strong culture of security and accountability across the organization.

The Successful Applicant

Qualifications & Experience:

  • Bachelor's degree in Information Technology, Computer Science, Engineering, or a related discipline (or equivalent industry experience).
  • Minimum of 5 years of experience in Information Security, Cybersecurity, or IT Risk Management roles.
  • Proven experience in developing, implementing, and managing security programs aligned with frameworks such as NIST, ISO 27001, and COBIT.
  • Hands-on experience with Governance, Risk, and Compliance (GRC) tools, vulnerability management solutions, and security operations.
  • Strong knowledge of regulatory requirements related to data protection, privacy, and information security.
  • Excellent communication, analytical thinking, and stakeholder management skills.
  • Professional certifications highly preferred, such as:
    • CISSP (Certified Information Systems Security Professional)
    • CISM (Certified Information Security Manager)
    • ISO/IEC 27001 Lead Implementer or Lead Auditor
    • CRISC (Certified in Risk and Information Systems Control)
    • CEH (Certified Ethical Hacker) or CompTIA Security+ (for technical security exposure)

What's on Offer

  • Competitive salary & bonuses
  • Comprehensive health benefits
  • Opportunity to work with a leading organization in data analytics and artificial intelligence
  • Professional development and career advancement opportunities
If you are passionate about information security and ready to take on a leadership role, we encourage you to apply today #J-18808-Ljbffr

  • Makati City, National Capital Region, Philippines House of Investments Inc. Full time ₱250,000 - ₱300,000 per year

    Ensure the confidentiality, integrity, and availability of the organization's information assetsDuties and ResponsibilitiesRisk Management – govern, manage, and mitigate information assets security risksPolicy Development – create and maintain policies, standards and procedures (InformationSecurity and Data Governance)Security Awareness Training – such...


  • Makati City, National Capital Region, Philippines beBeeSecurity Full time ₱6,000,000 - ₱8,500,000

    Role OverviewThe organization's information security is protected by the Security Professional, utilizing advanced security tools and applications.This role collaborates with technology functions to identify areas for improvement and supports initiatives promoting information security within the organization.Key ResponsibilitiesDevelop and implement security...


  • Makati City, National Capital Region, Philippines Smart Communications, Inc. Full time ₱1,500,000 - ₱2,500,000 per year

    Responsibilities:Determine the risk position of PLDT group as a result of changes in the technology architecture, products and services.Execute or review a general security review based on company-accepted standards and good industry practices.Execute or review a compliance assessment of PLDT's technology architecture, products and services to applicable...


  • Makati City, National Capital Region, Philippines beBeesecurity Full time $55,000 - $70,000

    About the RoleThis position plays a vital role in maintaining the security and integrity of our systems. The Junior Information Security Specialist will be responsible for ensuring that our information security infrastructure is properly configured, monitored, and maintained.


  • Makati City, National Capital Region, Philippines Smart Communications, Inc. Full time

    Information Security Analyst - Risk ManagementReports To: Vulnerability LeadCareer Band: Vulnerability Management DivisionAre you ready to be at the frontline of cyber defense? Join our elite Cyber Security Operations Group as a Vulnerability Analyst and help safeguard critical systems against emerging threats. If you're passionate about penetration testing,...


  • Makati City, National Capital Region, Philippines Smart Communications, Inc. Full time

    Information Security Specialist (Capability Delivery)Plans, designs and implements cybersecurity strategies and solutions to prevent critical damage to the organization brought by cyber-attacks.ResponsibilitiesDevelops and implements security controls, systems, remote access solutions, and infrastructure architecture in alignment with defined requirements...


  • Makati City, National Capital Region, Philippines beBeeCybersecurity Full time ₱2,500,000 - ₱3,500,000

    About Cybersecurity RolesCybersecurity professionals protect organizations from cyber threats by leveraging advanced technologies and strategic approaches. They identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.Key ResponsibilitiesAchieve personal growth through continuous learning and skills...


  • Makati City, National Capital Region, Philippines beBeeSecurity Full time ₱450,000 - ₱750,000

    Secure Systems ProfessionalOur organization is seeking an experienced professional to safeguard its digital assets and information against cyber threats and attacks.Key ResponsibilitiesThe ideal candidate will be critical in assessing security risks, developing and implementing effective security measures, and maintaining a vigilant stance against potential...


  • Makati City, National Capital Region, Philippines Smart Communications, Inc. Full time ₱1,200,000 - ₱2,400,000 per year

    Responsibilities:Actively monitor, detect, and respond to security alerts and incidents per defined SLA.Incidents are acknowledged and responded to within the agreed response SLOPerform alert triage and analysis including asset and custodian identification, reputational checking, and alert validationPerform containment and eradication within the agreed...


  • Makati City, National Capital Region, Philippines Maplecrest Group, Inc. Full time $70,000 - $120,000 per year

    Position DescriptionThis role is responsible for the development, implementation, and management of the company's data privacy and information security programs. This individual will ensure the company's compliance with global and local data protection regulations and industry security standards.The role involves an understanding of both regulatory...