Current jobs related to Security Consulting and Risk Officer - Makati City, National Capital Region - AvantePH Staffing and Consultancy Inc.
-
Operational Risk Manager
2 weeks ago
Makati City, National Capital Region, Philippines Security Bank Corporation Full time ₱1,500,000 - ₱2,500,000 per yearAbout the RoleAs an Operational Risk Manager, you are responsible for carrying out operational risk governance, oversight, consulting, and risk management activities as part of the Bank's Second Line of Defense. Supports the identification, assessment, mitigation, monitoring, and reporting of operational risks by the various businesses and functions within...
-
Risk Consulting
2 weeks ago
Makati City, National Capital Region, Philippines SGV & Co. Full time $80,000 - $120,000 per yearSGV Risk ConsultingIn Risk Consulting, we assist organizations in identifying, assessing, and managing risks to protect their assets and achieve their strategic objectives. Our services include third party risk assessments and management, risk assessment, internal audit, compliance, and cybersecurity. We provide tailored solutions to mitigate potential...
-
Cyber Security Specialist(Risk)
2 weeks ago
Makati City, National Capital Region, Philippines Rockwell Land Corporation Full time $90,000 - $120,000 per yearJob Summary:The Cyber Security Risk Officer is responsible for identifying, assessing, mitigating, and monitoring cyber risks across the organization. This role ensures the company's digital assets, infrastructure, and data are protected from internal and external cyber threats. The officer collaborates with IT, legal, compliance, and business units to...
-
Deputy Chief Risk Officer
2 weeks ago
Makati City, National Capital Region, Philippines HRTX consulting Full time ₱2,400,000 per yearLocation: Makati, On-site (Morning Shift)Budget: 180, ,000The Deputy Chief Risk Officer is responsible for leading the development, implementation, and continuous improvement of the enterprise-wide risk management framework. The role ensures that risk strategies align with business objectives while safeguarding assets and ensuring compliance with...
-
IT Risk Officer
2 weeks ago
Makati City, National Capital Region, Philippines ING Full time $40,000 - $60,000 per yearIf you are good at:The IT Risk Officer will be responsible for (but not limited to):Interpreting ING's IT risk policies and IT minimum standards and ensuring these are applied into practice by IT teams.Demonstrating effectiveness of risk mitigation via Test of Design (ToD) and Test of Operational Effectiveness (ToE) for IT systems and internal IT...
-
Head of Operational Risk
2 days ago
Makati City, National Capital Region, Philippines Security Bank Corporation Full time ₱1,200,000 - ₱3,600,000 per yearJob SummaryThe role is responsible for managing the mitigation of operational risk across the company. This includes operational loss, operational risk incidents / issues, creating a robust control environment, raising the company-wide awareness of operational risks, operational risk reporting, Risk & Control Assessments ("RCA"), Risk & Control Self...
-
Financial Risk Consultant
2 weeks ago
Makati City, National Capital Region, Philippines Indra Full time ₱1,920,000 - ₱2,400,000 per yearNOTE: We are looking to fill Junior and Mid positions.Role PurposeThe Financial Risk Consultant/Analyst will support a Clients to design and implement financial risk programs. This includes but not limited to credit risk policies, fund sourcing frameworks, liquidity monitoring, stress testing, and collections policy development. The focus is on drafting...
-
SAP Security Consultant
5 days ago
Makati City, National Capital Region, Philippines HR TechX Corp. Full time ₱2,000,000 - ₱2,500,000 per yearWe are seeking a skilled and proactive SAP Security Consultant to join our SAP implementation team. The ideal candidate will have hands-on experience in SAP S/4HANA security design and configuration, with a strong understanding of role-based access control, compliance frameworks, and integration with modern identity and access management solutions. This role...
-
Security Adminitrator
4 days ago
Makati City, National Capital Region, Philippines ORIX METRO Leasing and Finance Corporation Full time ₱900,000 - ₱1,200,000 per yearJob Overview:This role will ensures the availability and reliability of any equipment/solutions/platforms categorized by perimeter, network, and endpoint security components not limited to firewalls, web application firewalls, intrusion detection and prevention systems, antivirus or antimalware (EDR/XDR) of ORIX Metro Leasing and Finance Corporation...
-
Makati City, National Capital Region, Philippines SGV & Co. Full time ₱180,000 - ₱300,000 per yearSGV is the largest professional services firm in the Philippines. In everything we do, we nurture leaders and enable businesses for a better Philippines. This Purpose is our aspirational reason for being that ignites positive change and inclusive growth.Our multidisciplinary teams work across a full spectrum of services in assurance, tax, strategy and...
Security Consulting and Risk Officer
4 weeks ago
Responsible for securing data, network, and applications in system development or system implementations. Perform threat modeling, business and technical process analysis, application security and architecture reviews to evaluate, identify vulnerabilities and enforce security controls in IT and application systems. Ensures coordination of penetration testing support and vulnerability validation scans of systems projects.
Key Responsibilities:
● Work closely with cross-functional teams - ITG Infrastructure team, ITG DevOps team, Developers, Solutions and Enterprise Architects, Technical Project Managers, Delivery Managers and Project Proponents.
● Helps to improve the security health of the application systems, information processing
facilities and connected services of the bank by:
● Providing security consulting services on information security related matters for on premise and cloud-based project implementations and deployments.
● Serves as project security technical point of contact for system development as it relates to automation, continuous integration/continuous deployment activities and products/services being developed and deployed across the full application development life cycle.
● Ensure enforcement of security requirements across all new application systems and API deployments.
● Performs threat modeling and business/technical process analysis to identify vulnerabilities/weaknesses on processes and technology implementations thru a documented analysis and assessment report.
● Standardize the technical, functional and administrative security requirements covering areas of application system, technical design and architecture.
● Ensures that the security requirements align with the business objective of the application systems to be implemented.
● Provides consulting on technical designs and solutions to address infrastructure security and application security related weaknesses.
● Collaborate with relevant stakeholders to implement security improvements.
● Collaborate with the appropriate subject matter expert in Security Architecture and Innovation Department in reviewing security architecture and addressing architecture concerns in a project.
● Ensures that source code reviews are performed and validated across all platforms and frameworks.
● Coordinates application vulnerability scanning and penetration testing remediation activities with ITG developers.
● Assist with vulnerability prioritization and provide guidance on resolution.
● Ensures that standard security requirements are kept updated.
● Maintains an expert knowledge in the field of Information Security and the related issues, systems, processes, products, and services. Stay current with best security practices.
● Collaborates with other ITG Servicing units and application teams to harden its operating systems and application systems to better protect user data when implemented.
● Proactively works with the Department Head in implementing programs for the continuous improvement of the bank's information security posture.
● Perform other information security governance, risk and compliance related duties and responsibilities as directed by the Department Head.
Qualifications
● Graduate of any college degree in Computer Science or Information Security, or related technical field of expertise.
● General understanding of regulatory compliance and how it relates to application security and privacy.
● Certification training may include CISA, CISM, SANS GIAC, CISSP, PCI-DSS, etc.)
● Understanding of network and application security risks and how to address them.
● History of designing, developing, or customizing application systems is a plus.
● Extensive and deep technical knowledge/understanding of system development, typically ranging from front-end user interfaces all the way to the back-end systems of both on premise and cloud deployment.
● Working knowledge of on premise and cloud architectures.
● Strong familiarity with web protocols and web services, networking concepts and encryption.
● Understanding of Microsoft, Linux/Unix security architecture.
● Strong attention to detail, analytical, and problem-solving skills. Thinking logically and intuitively; strong learning agility with the ability to learn new processes/patterns
● Result-orientated in terms of disposition for corrective action and security remediation.
● Have good teamwork and collaboration skills, a good team player with the ability to lead.
● Good written and verbal communication skills: to effectively articulate and explain complex security topics in simple language and easy to understand concepts.
● Possess excellent time management skills, thrive in a fast paced demanding environment
● Be a self-managed, self-starter with good organizational skills to include good follow-up skills
● Knowledge in using MS office tools such as PowerPoint, word, excel and project
#J-18808-Ljbffr