Cybersecurity Head

JOB SUMMARY

The Cybersecurity Head ensures that the Information Security Policies, Standards, and Procedures are aligned with industry best practices for enterprise security and security standards governing Industrial Control Systems. Given the industry practices and the risk landscape of the organization, he/she will initiate the planning for security projects and initiatives, and will provide oversight functions to ensure that resources needed to implement the information security projects and initiatives are adequately available. He/she should be knowledgeable on various protective technologies that are needed to strengthen the security posture of CBCI.

He/she will report in a timely manner all information security related issues, risks, and findings to the Chief Information Security Officer of CBCI (CISO). He/she must also implement directives within agreed timelines and expected quality of output.

Further, he/she will support the internal audit for Information Security and will also provide support for external audits, data privacy audits, and compliance checks. He/she will also prepare compliance reports and track action plans.

TECHNICAL COMPETENCIES

• Highly knowledgeable in ISO27000, PH DPA, BSP Circulars on Information Security, COBIT, NIST and SANS
• Highly knowledgeable in ISMS Audits and Risks Assessments
• Knowledge on Payment Card Industry Data Security Standard (PCIDSS)
• Knowledge in Project Management Knowledge Areas and Principles
• Knowledge in endpoint security configuration  Knowledge on Application and Network Security
• Knowledge in cloud technologies such as AWS, Azure  Knowledge in Threat Analysis
• Knowledge in System Development Lifecycle methodologies such as Waterfall, Iterative and Agile
• Knowledge on Enterprise Security Architecture

QUALIFICATIONS

• Bachelors degree in Computer Science, Information Technology, Business-related course or its equivalent
• At least 10 years of relevant work experience in implementing information security program, assurance and solution set
• ISACA or ISC2 Certification is a must
• Has excellent business communication skills
• Has experience in project management
• Leadership and management skills

Hybrid setup (4x onsite, 1x WFH)

Job Type: Full-time

Work Location: In person