Information Security Manager

The Information Security Manager will help develop and implement the organization's cybersecurity strategy and manage a team of Information Security personnel in securing Metro Pacific Tollway Corporation's information systems, infrastructure and data against internal and external threats.

Roles and Responsibilities

• Design, develop, and implement the organization's overall cybersecurity strategy and roadmap.
• Establish and enforce security standards, frameworks, and best practices to protect systems, applications, infrastructure, and data.
• Lead and manage the Information Security team, with responsibilities that include:

o Monitoring, detecting, analyzing, and responding to threat intelligence and security incidents.

o Deploying, configuring, and managing security tools and technologies (e.g., firewalls, data encryption, intrusion detection/prevention systems).

o Overseeing vulnerability management, including patch management, system hardening, and remediation tracking.

• Conduct regular Security Health Checks to assess the effectiveness of security controls.
• Perform ongoing Information Security Risk Assessments to identify, evaluate, and mitigate potential risks.
• Ensure the organization remains compliant with relevant regulatory requirements, including those from the National Privacy Commission (NPC) and the Toll Regulatory Board (TRB).
• Track, manage, and ensure timely mitigation of audit findings related to cybersecurity and information security.
• Position will report to the Head of Information Security

Qualifications

• Bachelor's degree in Information Technology, Computer Science, or a related field.
• Minimum of 10 years of experience in IT, with at least 5 years in an Information Security or cybersecurity-focused role.
• Must have completed Information Security-related training and hold relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+, etc.).
• Proven leadership and team management skills, with the ability to guide, mentor, and motivate security team members.
• Solid understanding of security and privacy-related legal and regulatory requirements, including local compliance obligations (e.g., NPC, TRB).
• Deep knowledge of information security tools, technologies, and threat detection platforms.
• Familiarity with information security frameworks, such as ISO/IEC 27001.
• Demonstrated experience in developing and maintaining information security policies, procedures, standards, and guidelines.

Why Join Us?

We know that your time and well-being are important to you, so we offer a comprehensive benefits package that is designed to support your physical, financial, and emotional health.

Our benefits package includes:

• Health card for employees and dependents
• Life insurance
• Retirement savings plan with company match
• On-site gym and fitness classes
• Employee assistance program
• Guaranteed 14
  th
  -month pay upon regularization
• Paid Vacation Leave
• Sick Leave Conversion
• Rice allowance
• Christmas Basket
• Training and opportunities for Career Development and growth
• Employee Wellness Program

What is it like to be part of MPTC?

Our people are at the core of our business and our success. We are honored that our commitment has been recognized by Investors in People, an internationally respected accreditor, with the Gold Standard certification and the prestigious Employer of the Year 2020 award for NLEX Corporation.

We're a group of visionary and dynamic individuals working together to provide the ultimate mobility experience. Our team members all share a positive attitude, problem-solving abilities, and patience, enabling them to provide excellent customer service even during fast-paced shifts. We're committed to giving you every opportunity to grow as you build your winning career with us.

Be part of our next move to progress and share the vision of transforming lives through unparalleled road infrastructures with us.