Support the development of information security directions, strategies, plans and processes. Develop technical control work instructions. Ensure that the IT and OT environment is compliant with existing policies, laws and regulations. Design and formulate security controls across systems. Evaluate and implement security solutions. Study, research, test security technologies and report threats and vulnerabilities.
- 1. ISMS Implementation & Management
- 2. NIST & CIS Frameworks
- 3. GRC Oversight
- 4. Security Audits & Compliance:
- 5. Client Consultations & Solutions
- solutions for risk mitigation and compliance.
- 6. Risk Assessment & Incident Response
- 7. Security Policy & Control Enforcement
- 8. Reporting & Communication
Qualifications:
- Minimum of 1 yr hands on experience in IT Security audits and policy development
- Has at least 3 years of ICT and business/industry work experience, preferably in security related field
- Familiarity with Information Security frameworks and standards (NIST, AMI, ITIL, COBIT, ISO/IEC 27002, Project Management)
The following certifications (or equivalent) may also be required:
- ISC2 CC
- ISO 22301 Implementer or Auditor
- ISO 27001 Implementer or Auditor
- Security+
Job Types: Full-time, Permanent
Benefits:
- Company events
- Life insurance
- Opportunities for promotion
- Pay raise
- Promotion to permanent employee
Schedule:
- 8 hour shift
- Day shift
- Fixed shift
- Monday to Friday
Supplemental Pay:
- 13th month salary
- Overtime pay
- Performance bonus
Application Question(s):
- How much is your expected salary?
Education:
- Bachelor's (Required)
Experience:
- Governance, Risk and Compliance: 1 year (Preferred)
- Threat Monitoring & Analysis: 1 year (Preferred)
- IT Security audits and policy development: 3 years (Required)
Location:
- Mandaluyong (Preferred)
Work Location: In person