Information Security Manager
2 days ago
The Information Security Manager is responsible for safeguarding the organization's information assets by implementing, managing, and overseeing the company's security policies, protocols, and procedures. This role involves identifying and mitigating security risks, ensuring compliance with industry standards, and leading efforts to protect sensitive data across all digital platforms.
- Assess risk and ensure security systems and operations comply with organizational and regulatory requirements
- Lead the development and execution of security strategies and policies
- Responsible for day to day execution of security policies and procedures. Using monitoring tools to identify threats and incidents
- Analyze, design, manage and deliver the services required to minimize the negative impact of security incidents and restoring normal service operation as quickly as possible
Roles and Responsibilities
- Advise appropriate senior leadership on risk levels and changes affecting the organization's cybersecurity posture.
- Work with the necessary resources, including leadership support, financial resources, and key security personnel, to support information technology (IT) security goals and objectives and reduce overall organizational risks.
- Oversee policy standards and implementation strategies to ensure procedures and guidelines comply with cybersecurity policies.
- Assure successful implementation and functionality of security requirements and appropriate information technology (IT) policies and procedures that are consistent with the organization's mission and goals.
- Continuously validate the organization against policies, guidelines, procedures, regulations, laws to ensure compliance.
- Interpret patterns of noncompliance to determine their impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program.
- Identify alternative information security strategies to address organizational security objective.
- Ensure that cybersecurity requirements are integrated into the continuity planning for systems and/or organization(s).
- Prepare, distribute, and maintain plans, instructions, guidance, and standard operating procedures concerning the security of network system(s) operations.
- Ensure that cybersecurity inspections, tests, and reviews are coordinated for the network environment.
- Participate in the development or modification of the computer environment cybersecurity program plans and requirements.
- Support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, compliance monitoring occurs).
- Recognize a possible security violation and take appropriate action to report the incident, as required.
- Supervise or manage protective or corrective measures when a cybersecurity incident or vulnerability is discovered.
- Collect and maintain data needed to meet system cybersecurity reporting.
- Identify information technology (IT) security program implications of new technologies or technology upgrades.
- Identify security requirements specific to an information technology (IT) system in all phases of the system life cycle.
- Lead information security risk assessment during the Security Assessment and Authorization process.
- Evaluate and approve development efforts to ensure that baseline security safeguards are appropriately installed.
- Provide system-related input on cybersecurity requirements to be included in statements of work and other appropriate procurement documents.
- Promote awareness of security issues among management and ensure sound security principles are reflected in the organization's vision and goals.
- Communicate the value of information technology (IT) security throughout all levels of the organization stakeholders.
- Oversee the information security training and awareness program.
- Manage the monitoring of information security data sources to maintain organizational situational awareness.
- Ensure that plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc.
- Track audit findings and recommendations to ensure that appropriate mitigation actions are taken.
Core Competencies:
- Business Continuity
- Computer Network Defense
- Database Administration
- Encryption
- Enterprise Architecture
- Information Systems/Network Security
- Network Management
- Operating Systems
- Policy Management
- Risk Management
- Technology Awareness
- Threat Analysis
- Vulnerabilities Assessment
Additional Knowledge Areas:
- ISO 27000 – NIST – CIS – Data Privacy
Qualifications:
- Bachelor's degree in Information Security, Computer Science, or related field.
- Proven experience (5+ years) in information security management, IT risk management, or similar roles.
- Strong understanding of current IT threats, security protocols, and industry best practices.
- Professional certifications such as CISSP, CISM, or equivalent is an advantage.
- Excellent leadership, communication, and project management skills.
About DAVI
Data Analytics Ventures Inc. (DAVI) is the Gokongwei Group's loyalty and data analytics company, specializing in deep-dive data analysis to enhance business processes and customer experiences. Leveraging rich data, DAVI helps businesses understand brand and category performance, identify growth opportunities, and optimize decisions. With a team of industry leaders and innovators, DAVI fosters a culture of excellence, continuous learning, and mentorship, empowering employees to shape their careers and contribute to the rapidly evolving data industry.
-
Information Technology Security Manager
1 week ago
Mandaluyong City, National Capital Region, Philippines San Miguel Corporation Full time ₱1,500,000 - ₱2,500,000 per yearMinimum RequirementsAround 5 years or more experience in Information Security or equivalent (at least 3 years or more experience if working on Information Security with multiple companies);Background in Information Security Governance Roles such as experience with Information Security Policies, Compliance Audits, Risk Assessments, and Infosec...
-
Information Security Manager
1 week ago
Quezon City, National Capital Region, Philippines Metro Pacific Tollways Corporation Full time ₱2,000,000 - ₱2,500,000 per yearThe Information Security Manager will help develop and implement the organization's cybersecurity strategy and manage a team of Information Security personnel in securing Metro Pacific Tollway Corporation's information systems, infrastructure and data against internal and external threats.Roles and ResponsibilitiesDesign, develop, and implement the...
-
Manager, Information Security
1 week ago
Makati City, National Capital Region, Philippines OpenText Full time $90,000 - $120,000 per yearOPENTEXT - THE INFORMATION COMPANYOpenText is a global leader in information management, where innovation, creativity, and collaboration are the key components of our corporate culture. As a member of our team, you will have the opportunity to partner with the most highly regarded companies in the world, tackle complex issues, and contribute to projects that...
-
Mandaluyong City, National Capital Region, Philippines Jardine Service Centre Full time $90,000 - $120,000 per yearAbout Jardine Service Centre Philippines (JSC)Jardine Service Centre Philippines is an organization fully owned by Jardine Matheson Group which is a diversified Asian-based group with unsurpassed experience in the region, having been founded in 1832. JSC is responsible for providing back-office support to the business units of Jardine Group by administrating...
-
Information Security
1 week ago
Makati City, National Capital Region, Philippines SMBC Group Full time ₱1,200,000 - ₱2,400,000 per yearAs theAVP for Internal Audit and Regulatory Response,you will help sustain the operational requirements of the Security and Architecture Group (SAG) - MNL Governance, Risk and Compliance, including the Audit and Controls Assurance function. Currently, these responsibilities are being handled full-time by one person and part-time by the SAG MNL Head. With the...
-
Information Security Officer
2 weeks ago
Makati City, National Capital Region, Philippines Sumisho Motor Finance Corporation Full time ₱900,000 - ₱1,200,000 per yearQualifications:Must have a Bachelor's degree in information Technology, Computer Science or other security-related field;- Preferably with 3-4 years of experience in information security related to security administration, security operations or security implementation; OR- 5-6 years of experience in security audits focusing on network, servers, database,...
-
Information Security Manager, IAM
2 days ago
Quezon City, National Capital Region, Philippines Manulife Full time ₱1,200,000 - ₱2,400,000 per yearWe're looking for an Information Security Manager, Identity Access Management (IAM) Consultant to join our Group Functions IT Information Security and Business Resilience Team at MBPS. In this role, you are expected to apply identity access security risk knowledge and expertise to assist with IT information security First Line of Defense activities to help...
-
Information Security Analyst
6 days ago
Makati City, National Capital Region, Philippines House of Investments Inc. Full time ₱300,000 - ₱360,000 per yearEnsure the confidentiality, integrity, and availability of the organization's information assetsDuties and ResponsibilitiesRisk Management – govern, manage, and mitigate information assets security risksPolicy Development – create and maintain policies, standards and procedures (InformationSecurity and Data Governance)Security Awareness Training – such...
-
Information Security Lead
16 hours ago
Quezon City, National Capital Region, Philippines Asticom Technology Inc. Full time ₱1,500,000 - ₱2,500,000 per yearJob Roles and ResponsibilitiesI. Strategic Leadership and Governance:Develop and Execute Security Strategy: Lead the formulation, implementation, and continuous improvement of the BPO's information security strategy, aligning it with business objectives, client requirements, and regulatory compliance.Policy and Procedure Development: Create, maintain, and...
-
Information Security Lead
15 hours ago
Quezon City, National Capital Region, Philippines Asticom Technology Inc Full time ₱900,000 - ₱1,200,000 per yearJob Roles and ResponsibilitiesI. Strategic Leadership and Governance:Develop and Execute Security Strategy: Lead the formulation, implementation, and continuous improvement of the BPO's information security strategy, aligning it with business objectives, client requirements, and regulatory compliance.Policy and Procedure Development: Create, maintain, and...