Cyber Security Manager | Hybrid

MakeyournextbigcareermovebyapplyingasKMCSolutions'nextCYBERSECURITYMANAGER Thisisanindividualcontributor rolethatwillberesponsibleinplanning,developingandimplementinginformationsecurityprograms,whichincludesstandardproceduresandpoliciesdesignedtoprotectenterprisecommunications,ITsystems,companyandcustomerassetsfrombothinternalandexternalthreats. Ontopofyoursalary,herearetheexcitingbenefitsyoucanlookforwardto: HealthInsurance/HMO Enjoy unlimited MadMax Coffee Diverse learning & growth opportunities Accessible Cloud HR platform (Sprout) Above standard leaves The main responsibilities of a CYBERSECURITYMANAGER include: Lead the information security function across the company to ensure consistent and high-quality information security management in support of the business goals. Develop, implement, and monitor a comprehensive enterprise information security programs that align with strategic plan and best-in-class compliance and industry requirements. Maintain our ISO27001, SOC2 Type, GDPR and UK Cyber Essential certification and related activities. Manage our annual internal and external penetration test and remediation. Monitor emerging threats and advise relevant stakeholders on the appropriate courses of action. Define and facilitate the information security risk assessment and incident management processes. Manage security incidents and events to protect corporate IT assets, including intellectual property, regulated data, and the company’s reputation. Develop, implement and enhance an up-to-date information security management framework. Create, implement and manage confidentiality, data safeguarding and data retention policies and procedures. Develop, maintain, and rollout training and activities for information security awareness within the organization. Evaluate security trends, evolving threats, risks and vulnerabilities and apply tools to mitigate risks as necessary. Provide regular reporting on the current status of the security program to relevant stakeholders as part of a strategic enterprise risk management program. Facilitate a metrics and reporting framework to measure the efficiency and effectiveness of the program, facilitate appropriate resource allocation, and increase the maturity of the security. To apply, you must be an expert on the following requirements: Bachelor's Degree in Information Technology, Computer Science, Information System or any other related field. At least 10 years of experience in a functional information security or senior-level cyber security role. Experience working with international clients or organizations is a strong advantage. Experience in setting up and managing information security in Financial Services industry is a plus. Has the ability to build and implement successful cybersecurity programs. Has strong background with ISO27001, SOC2 Type2, GDPR and other compliance requirements. Preferably have at least one (1) of the following certifications: CISSP, CISA, CISM, or CRISC. Excellent knowledge in Azure ecosystem/infrastructure; preferably with certification as well. Knowledgeable in risk-management and incident management processes. Has in-depth understanding of networks, security methodologies, databases and business applications as they relate to information security. Strong decision-making capabilities, with a proven ability to weigh relative costs and benefits of potential action and its impact to the company. Excellent conceptual problem-solving skills with demonstrated ability to bring structure to vaguely defined problems, pragmatically scope problems and manage execution. Solution driven with demonstrated ability to meet deadlines and deliver results. Position: IT Cybersecurity Manager Location: BGC, Taguig, Metro Manila Work Set-Up: Hybrid (3 days WFH; 2 days onsite) Work Schedule: Mostly flexible but the client requires at least 4 hours overlap with US (EST) Time (this can be either Mid Shift or Night Shift Manila Time). #J-18808-Ljbffr