Security Compliance And Assurance Manager | It | Sb Finance | Makati

Makati, Makati, Philippines

Applications have closed

About Security Bank

We're one of the Philippines’ leading universal banks. Over the years, we received various awards and accolades for being one of the most stable in the banking industry.

The Role

As Security Compliance & Assurance Manager, you will ensure that the department members with security duties and responsibilities across the SBF are aligned and driving toward the desired organizational control objectives and consistent methods and solutions.

How you'll contribute

1. Executing security certification renewals, ensuring continuous compliance with ISO 27001, ISO27707, SOC 1, SOC 2, DPA, and PCI DSS. 
2. Assist in cybersecurity governance and help in creation of an architecture that ensure SBF’s security programs are aligned with business objectives and compliant with regulations and standards to ensure the security and protection of internet-connected systems such as hardware, software, and data from cyberthreats.
3. Drive cross-organizational collaboration and teamwork in integrating information security controls into business processes and operations through an information security program and risk management process.
4. Addressing Third-Party Security Risk questionnaires, providing detailed insights into SBF security protocols and practices.
5. Evaluating and recommending potential security vendors, ensuring optimal compatibility and efficiency portfolio.
6. Assist in developing security frameworks across SBF security programs. 
7. Assist in managing the resolution and escalation of issues, incidents, and concerns of department members and ensure timely escalation to the Department Head regarding critical or sensitive issues.
8.Serve as a SME on information security regulations and advise employees and management on information security requirements and recommendations.
9. Develop and enhance relationships with Business and Technology stakeholders to understand current challenges and establish a GRC framework to manage risk and compliance levels.
10. Liaise directly with Compliance and various backend Technology teams on regulator inspection, regulatory reporting, external audit, security certificate programs, and internal audit projects to assure compliance with all applicable regulations.
11. Coordinate and perform compliance activities and checks.
12. Assist in collecting feedback from stakeholders periodically to drive service improvements and security enhancements.
13. Assist in ensure the inclusion and implementation of appropriate security controls in the design and development of new projects and/or key changes and the conduct of vetting processes to ensure adequate mitigation of vulnerabilities.
14. Assist in managing and tracking the company overall security program, projects, and KPIs against the defined security roadmap and framework. 

What we’re looking for

  • Bachelor’s Degree in BSIT, Computer Science, or related field
  • At least 5 yrs. experience relevant experience from Banking/Lending Companies/Fintech
  • Experience working in security at a Financial Technology Company or similar environment.
  • Leadership skills to drive large-scale complex programs with high collaboration and leadership.
  • Knowledge of industry standards such as but not limited to PCI-DSS, ISO27001, ISO27701, AWS Best Practice, NIST Cybersecurity Framework, and Data Privacy Act.





* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: AWS Banking Compliance Computer Science Finance FinTech Governance ISO 27001 KPIs NIST PCI DSS Privacy Risk management SOC SOC 1 SOC 2 Vulnerabilities

Region: Asia/Pacific
Country: Philippines
Job stats:  7  1  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.