Security Consulting and Risk Officer (BGC)

Qualifications

• For Consulting and Projects Service Department (CPSD) under Information Security Division (ISD)

Must Have:

• Graduate of any college degree in Computer Science or Information Security, or related technical field of expertise. (Non-negotiable)

Must have 3 5 years of experience in as a Security Consulting and Risk Officer. (Non-negotiable)

• General understanding of regulatory compliance and how it relates to application security and privacy. (Non-negotiable)

Certification training may include is CISA, CISM, SANS GIAC, CISSP, PCI-DSS, etc.)

• Understanding of network and application security risks and how to address them.

(Non-negotiable) History of designing, developing, or customizing application systems a plus.

• Extensive and deep technical knowledge/understanding of system development, typically ranging from front-end user interfaces all the way to the back-end systems of both on premise and cloud deployment. (Non-negotiable)

Working knowledge of on premise and cloud architectures. (Non-negotiable)

• Strong experience with web protocols and web services, networking concepts and encryption

(Non-negotiable) Understanding of Microsoft, Linux/Unix security architecture (Non-negotiable)

• Knowledgeable in using MS office tools such as PowerPoint, Word, Excel and Project (Non-negotiable)

Job Description

• Job Summary:

Responsible for securing data, network, and applications in system development or system implementations. Perform threat modeling, business and technical process analysis, application security and architecture reviews to evaluate, identify vulnerabilities and enforce security controls in IT and application systems. Ensures coordination of penetration testing support and vulnerability validation scans of systems project.

• Non-Exemption/Must Have

Must Have:

• 
  

Graduate of any college degree in Computer Science or Information Security, or related technical field of expertise.

• Must have 3 5 years of experience in as a Security Consulting and Risk Officer.

• General understanding of regulatory compliance and how it relates to application security and privacy.

• Certification training may include is CISA, CISM, SANS GIAC, CISSP, PCI-DSS, etc.)

• Understanding of network and application security risks and how to address them.

• History of designing, developing, or customizing application systems a plus.

• Extensive and deep technical knowledge/understanding of system development, typically ranging from front-end user interfaces all the way to the back-end systems of both on premise and cloud deployment.

• Working knowledge of on premise and cloud architectures.

• Strong experience with web protocols and web services, networking concepts and encryption

• Understanding of Microsoft, Linux/Unix security architecture

• Knowledgeable in using MS office tools such as PowerPoint, Word, Excel and Project

Job Type: Full-time

Pay: Php60,

• 00 per month
  
  Schedule:
• 8 hour shift

Day shift

Supplemental pay types:

13th month salary