Security Policies and Compliance Officer

Job title: Security Policies and Compliance Officer

Company:


Job description: Job Purpose Responsible for coordinating walkthroughs and obtaining supporting documents from relevant departments, necessary to assist both internal and external auditors/reviewers. The SPCO shall, keep track of ISG related outstanding issues to support the Security Policies and Compliance Manager (SPCM) in ensuring timely resolution. SPCO shall assist the SPCM in reviewing information security policies and procedures and implementing the Information Security Awareness Program. Job Duties and Responsibilities Security Policies – Develop, Review and Maintain Information Security Policies and Procedures, Operating Manuals, Memorandums, etc. by performing periodic policy reviews and coordinating updates with the concerned units. Compliance – Develop and maintain a Compliance Program with the following functions: Assists the SPCM in monitoring PSBank’s compliance to local laws and bank regulations pertaining to Information Security, and ensuring that the bank’s information security controls are aligned to applicable best practices, required regulatory requirements (ex. BSP Memo / MORB) and applicable laws (ex. Data privacy act, Bank secrecy law). Coordinate walkthroughs and obtain supporting documents necessary to assist both internal and external auditors/reviewers. Support the SPCM in monitoring outstanding audit issues, with the aim to ensure resolution in a timely manner Manage Incident Reports pertaining to Information Security violations in coordination with CXHRG Security Awareness Support – Develop information security awareness materials, supporting SPCM’s initiatives to maintain the Security Awareness Program. Assists the SPCM to ensure that PSBank employees, contractors and third-party users are aware of the bank’s security policies and are advised of security-related news through creative advisories. Key Management Support Acts as SPCM alternate in supporting business unit’s processes that requires key management activities (i.e. HSM password and physical keys, CBPS/ECS encryption and clear keys, application password Manage the inventory and safekeeping of keys Sustainable Finance Framework – Actively participates in the Bank’s sustainable finance-related activities and performs functions as assigned, to help achieve sustainable finance and other sustainability goals of the Bank. Performs other security-related functions that may be assigned from time to time, including participation in ISG’s BCP activities as prescribed in the bank’s BCP guidelines. Job Qualifications Education: Pre-K-12; College graduate; Post K -12: SHS – STEM track Experience: Two-year practical experience in information security operations and project management, specifically on information security risk management, security assessment and disaster recovery. At least two-years practical experience in information security management / information technology Must have worked in an environment where information security controls are assessed; audit experience is a plus License Required: None Certification Required / Recommended: CISM, CISA, CISSP or related level of certification Show more Show less

Expected salary:

Location: Philippines

Job date: Fri, 28 Mar 2025 23:25:57 GMT

To help us track our recruitment effort, please indicate in your email/cover letter where (jobsnear.pro) you saw this job posting.Thanks&Good Luck