SECURITY CONTROL MANAGER

About Security Bank

We are the Philippines' largest independent bank, having won countless awards over the years, including Philippines' Top Employer, named by Statistica, and Best Bank for Diversity and Inclusion, awarded by Asiamoney.​​

We’re changing how people bank. From the moment customers enter our branches to their experience online, we make them feel valued and empowered.​
​
Now, with more than 300+ branches nationwide, BetterBanking has become the gold standard in improving the banking lives of millions of Filipinos. But we’re far from done.​

In our constant pursuit of excellence and improvement, we create teams that support our business and each other. 

About the role:

The Security Control Manager is responsible for helping support Application Security, Risk Assessment, Information Asset Security, Information Asset inventory and the development/implementation of Information Asset Controls.

How you'll contribute: 

• Helps to ensure that security controls on all information assets are implemented, appropriate and effective
• Helps to ensure that application controls are adequate to meet legal, regulatory, policy, standards, and security requirements adopted by the Bank
• Supports all activities required to ensure proper risk management, and compliance with other information-security related requirements; this includes ensuring that long standing issues and concerns are appropriately escalated
• Facilitates coordination with different stakeholders to ensure successful implementation of security controls which protect the networks, hardware, internet, cloud, systems and applications of the Bank and its subsidiaries. This includes vendor certification and accreditation activities which must be performed prior to releasing new systems and software to the production environment
• Researches, trains and advocates novel technologies and tools to ensure the latest trends and developments are considered as part of SBC's security processes
• Supports a positive and collaborative digital delivery culture with a philosophy of continuous improvement, development, innovation and excellence, while remaining in compliance with the bank’s policies and procedures and upholding the highest standards of professional conduct

Qualifications:

• 5-7 years of experience in Information Security or related fields, Demonstrated experience in application security, risk assessment, information asset security, and information asset inventory management.
• Knowledge of information security technologies and controls, such as firewalls, intrusion detection/prevention systems, and encryption.
• Familiarity with information security laws and regulations, such as GDPR, HIPAA, and the Payment Card Industry Data Security Standard (PCI DSS).
• In-depth knowledge of application security and risk management practices.
• Familiarity with information security and risk assessment frameworks, such as NIST, CIS, or ISO 27001.