Do you want to take the first step in making Filipinos’ lives better everyday? Here in GCash we want to stay at the forefront of the FinTech industry by creating innovative, meaningful, and convenient financial solutions for the nation! G ka ba? Join the G Nation today!
RESPONSIBILITIES
- Consult and work with senior management and internal stakeholders to develop a set of information security policies and related documents tailored to the Company's strategic goals and risk profile. Plan for, implement, and take appropriate action to make information security policies easily understood and accessible to all employees and other interested parties.
- Carry out an assessment to understand which standards or security requirements the organization must comply with, together with ones that add value. Document the outcomes of the assessments with the concerned stakeholders. Align, benchmark and certify information security policies procedures and practices with international standards for information security.
- Conduct reviews to confirm status of information security policy compliance across the organization and carry out regular benchmarking assessments to compare information security measures implementation against a peer group. industry good practice, and legal/regulatory requirements including testing of controls and security measures implemented.
- Develop and implement processes and procedures to validate alignment, compliance and/or certification with chosen standards.
- Conduct review of information security policy and related documents on a periodic basis or as needed. Manage the implementation and continual improvement of ISMS, PIMS, PCI-DSS and other future management systems.
- Develop and maintain management of suitable metrics, certification process, control register, and compliance framework
- Manage, convene, and maintain the establishment of information security steering committee and information security advisory council.
- Review information security related proposals and plans developed by managers to ensure its alignment with the overall information security strategy and control objectives.
- Set strategic mechanisms to drive information security enforcement and compliance across the organization as deemed relevant and necessary.
- Oversee and manage project managers implementing strategic information security initiatives and works with relevant stakeholders in coordinating the necessary requirements, activities, and issues resolutions as deemed relevant and necessary.
QUALIFICATIONS:
- BS/BA in ICT, Computer Science or related field or equivalent work experience.
- 7+ years of work experience in Information Security, Network Security, IT Security, Cybersecurity, IT Risk Management, or related role
- Outstanding communication skills with the ability to clearly articulate complex issues.
- Extensive understanding of project/program management principles, methods, techniques.
- PCI-DSS, ISO27001, NIST Cybersecurity Framework, Data Privacy and other information security related standards program implementation experience.
What We Offer
Opportunity for career growth and development in the #1 FinTech company in the country Working with a dynamic and highly collaborative team who want to change the game A company that values their people with highly competitive and flexible compensation and benefits package