Job Description

RESPONSIBILITIES

• Perform IT risk assessments, security reviews, solution design, and functional requirements document reviews.
• Run security configuration management tools and work with system administrators to resolve gaps.
• Coordinate security assurance activities on the ground, which consists in requesting & challenging evidence to verify compliance against approved security baselines.
• Assist in coordinating with various business and technical stakeholders on the implementation of IT security recommendations on new and existing solutions (i.e., cloud and websites).
• Work to address security-related audit findings and assist in the closure of the findings in a reasonable amount of time.
• Assist in the development, update, or review of information security regulations, system configurations, and processes.
• Spot opportunities to improve or strengthen security controls or processes in your own areas of work.
• Participate in work planning initiatives and provide inputs to help the team come up with new initiatives.
• Other duties that may be assigned by the supervisor.

QUALIFICATIONS

• Have considerable knowledge and at least 6 years of IT Security, IT Security Governance, IT audit/compliance, or related experience.
• Have experience and knowledge in conducting security risk assessments.
• Bachelor's degree and CISA, CISM, CISSP, Security+ or equivalent certification (or extensive, relevant experience).
• Knowledgeable of IT governance frameworks such as COBIT, ITIL, ISO 27001, ISO 27002. Actual experience in implementing ISMS is an advantage.
• Knowledge and relevant certifications on cloud computing architecture, e.g. Microsoft Azure, Amazon Web Services.
• Has a broad range of knowledge of Information and Communications Technology as applied in an enterprise environment.
• Strong communication and interpersonal skills and ability to operate in a matrixed environment.
• Ability to articulate ideas and present them meaningfully in a verbal or written context.
• Very attentive to details and methodical with work.
• Should have the ability to handle multiple tasks and priorities
• Should be able to establish good networking relationships with colleagues in own unit, within ITD, and in some cases, outside of ITD.
• Should be able to anticipate security risks or issues, provide recommendations to the supervisor on addressing those issues, or address the less complex ones
• Carries out work independently and proactively with minimal supervision or follow-up.

Job Type: Fixed term
Contract length: 12 monthsSchedule:

• 8 hour shift
• Day shift
• Monday to Friday

Ability to commute/relocate:

• Ortigas: Reliably commute or planning to relocate before starting work (Preferred)