Job Qualifications:
- At least 4-6 years, experience in Information Security or related domain
- Knowledge and understanding of Information Security and IT Concepts and Security Standards Framework such as NIST, ISO 27001 or PCI
- Okay to accept project-based employment
- Okay to accept hybrid work setup w/ twice a week onsite in Makati
Nice to have:
Desired certifications: CISSP, CRISC, CISA, CISM, or related GIAC
Job Description:
- Facilitate the audit and assessment conduct for internal and external auditors/assessors.
- Evaluate and analyze any audit findings and work with stakeholders to plan remediation activities.
- Identify and report control nonconformities that affect strategic compliance objectives and make recommendations to stakeholders, aimed to reduce the likelihood of system failure.
- Participates in audit conducts to ensure IT Compliance
- Effectively communicate audit findings to stakeholders to ensure compliance and adherance to standards.
- Assess, validate, document and support the implementation of internal controls as part of on-going compliance efforts (Internal/External/Regional/Security Audit.)
- Assist the compliance team with reviewing and tracking outstanding information security findings and remediations, especially as they relate to policy, procedures and risk gaps
- Participate in driving education and awareness of Information security-related risks to Business, Users, IT Teams and reviewing the Information Security Controls implemented in the organization.
- Participate in making recommendations to ensure effective and consistent control implementations and testing procedures to achieve Continuous Monitoring and Continuous Audit capabilities
