Information Security Manager

We at the Lennor Group, are urgently looking for a Information Security Manager for one of our client

About Lennor Group

As a proud Filipino company, we are committed to providing world-class business and workforce solutions. Our deep market expertise, combined with a global perspective, empowers us to serve businesses of all sizes and industries efficiently.

Our brand, Lennor Metier , is a leading recruitment agency and headhunting firm in the Philippines, partnering with reputable companies to source top talent for direct-hire opportunities. It specializes in IT, Finance, Engineering, Sales & Marketing, Supply Chain, HR, and Executive Search.

Salary Range : Up to P150,000

Work Setup : Onsite

Shift Schedule : Day Shift

Location : Taguig City

Job Overview

The Information Security Manager is responsible for overseeing the implementation and maintenance of the organization's information security strategy. This role ensures that security policies, procedures, and controls effectively protecting digital assets and aligning with regulatory requirements. The manager works closely with IT, compliance, and business units to manage risks, respond to incidents, and promote a culture of security awareness.

Your Responsibilities:

• Security Governance & Strategy
• Develop, implement, and maintain security policies, standards, and procedures.
• Align security initiatives with business objectives and regulatory requirements.

• Support internal and external audits and ensure compliance with frameworks (e.g., ISO 27001, NIST, GDPR).

• Risk Management

• Conduct regular risk assessments and vulnerability scans.
• Maintain and update the enterprise risk register.

• Recommend and oversee remediation plans for identified risks.

• Security Operations

• Monitor and manage security tools (e.g., SIEM, firewalls, antivirus, DLP).
• Lead incident response efforts and forensic investigations

• Coordinate with IT teams to ensure timely patching and system hardening.

• Identity & Access Management

• Oversee user access controls and privilege management.

• Ensure proper implementation of multi-factor authentication (MFA) and role-based access.

• Security Awareness & Training

• Develop and deliver security awareness programs for employees.
• Promote best practices and ensure ongoing education on emerging threats. 6. Project & Vendor Security
• Provide security oversight for IT and business projects.
• Review third-party vendor contracts and solutions for security compliance.

What our Client is Looking For:

• A Bachelor's Degree is required with a Master's Degree in cybersecurity, risk management, or IT governance being preferred
• Must possess a strong understanding of security frameworks (ISO 27001, NIST, COBIT)
• Experience with security operations tools and incident response
• Knowledge of cloud security (Azure, AWS, M365)
• Excellent communication and leadership skills
• Ability to manage cross-functional teams and influence stakeholders
• Analytical thinking and decision-making under pressure
• The following certifications are preferred:
• CISM (Certified Information Security Manager) – by ISACA Ideal for managing enterprise security programs.
• CISSP (Certified Information Systems Security Professional) – by (ISC)² Broad coverage of security domains.
• ISO/IEC 27001 Lead Implementer or Auditor – for governance and compliance
• CompTIA Security+ or CySA+ – for foundational and operational security
• CEH (Certified Ethical Hacker) – for threat analysis and penetration testing

Ready to take the next step in your career? Submit your application now

• We kindly request your patience as we receive a significant number of applications. Rest assured that our team will update your application's status soon. In the meantime, we encourage you to follow our LinkedIn page to stay informed about future opportunities and company updates.