TEAMS

SPACES

CAREERS

INFORMATION SECURITY MANAGER

XTN-D7C7735

City
NA, Philippines
Schedule
Office Location
OFFSITE

Make your next big career move by applying as KMC Solutions' next INFORMATION SECURITY MANAGER

Sodali & Co is a leading provider of strategic advice and shareholders services to corporate clients around the world.  Our firm provides corporate boards and executives with strategic advice and services relating to a broad range of activities, including mergers and acquisitions, annual and special meetings, shareholder activist initiatives, multinational cross-border equity transactions and debt restructuring services.  From headquarters in New York, and offices and partners in major capital markets across APAC and EMEA, we service more than 1,000 corporate clients in 80 countries, including many of the world’s largest multinational corporations. In addition to publicly listed and private companies, its clients include mutual funds, ETFs, stock exchanges and membership associations.

The ISO is a mid senior-level candidate who will be responsible for developing and implementing our information security program, which includes procedures and policies designed to protect enterprise communications, IT systems, and company and customer assets from both internal and external threats.

On top of your salary, here are the exciting benefits you can look forward to:

MONETARY BENEFITS

Leave Monetization of Sick Leaves 

Premium Benefits (eligibility as applicable)

13th MonthPay 

NON-MONETARY BENEFITS

HMO Principal

HMO Dependent 

Carry Over of Leaves 

Paid Leave Credits 

Special Leaves 

Birthday Leave 

The main responsibilities of a INFORMATION SECURITY MANAGER include:

Responsibilities include, but are not limited to:

  • Leads the information security function across the company to ensure consistent and high-quality information security management in support of the business goals
  • Develop, implement, and monitor a comprehensive enterprise information security program that aligns with strategic plan and best-in-class compliance and industry requirements.
  • Maintain our ISO 27001, SOC2 Type, GDPR and UK Cyber Essential certification and related activities. – Non-Negotiable
  • Manage our annual internal and external penetration test and remediation.
  • Monitor the external threat environment for emerging threats and advise relevant stakeholders on the appropriate courses of action
  • Define and facilitate the information security risk assessment process, including the reporting and oversight of treatment efforts to address findings with appropriate compliance business partners
  • Manage security incidents and events to protect corporate IT assets, including intellectual property, regulated data, and the company's reputation
  • Coordinates the development of implementation of incident response plans and procedures to ensure that business-critical services are recovered in the event of a security event; provides direction, support and in-house consulting in these areas
  • Develops, implements and enhances an up-to-date information security management framework
  • Create, implement and manage confidentiality, data safeguarding and data retention policies and procedures
  • Develop, maintain, and roll out training and activities for information security awareness within the organization
  • Evaluates security trends, evolving threats, risks and vulnerabilities and applies tools to mitigate risk as necessary.
  • Provide regular reporting on the current status of the security program to relevant stakeholders as part of a strategic enterprise risk management program. Facilitate a metrics and reporting framework to measure the efficiency and effectiveness of the program, facilitate appropriate resource allocation, and increase the maturity of the security

To apply, you must be an expert on the following requirements:

  • Experience in working in an international organizations is an advantage.
  • Demonstrated ability to build successful cybersecurity programs
  • Expert understanding of cybersecurity concepts, principles and practices.
  • Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
  • Excellent conceptual problem-solving skills with demonstrated ability to bring structure to vaguely defined problems, pragmatically scope problems and manage execution
  • Organizational and political agility; developed negotiation and influence skills
  • Unquestionable personal code of ethics, integrity, diversity and trust
  • Able to successfully navigate within varying degrees of ambiguity in a fast-paced environment
  • Experience of formal risk assessment methodologies.
  • In depth understanding of networks, databases and business applications as they relate to security. Excellent understanding of computer networking concepts and protocols, and network security methodologies.
  • Ability to work in a cross-functional matrix environment
  • Excellent understanding of vulnerability management and associated tools and solutions.
  • Deep expertise with Azure platform.
  • Keeps up to date on all matters pertaining to IT security.
  • Knowledge of leading practice incident management processes.
  • Solution driven with demonstrated ability to meet deadlines and deliver results.

It will also be favorable if you are knowledgeable in:

  • Bachelor’s degree or equivalent program in Computer Science, Business Information Systems, Information Security or Information Technology
  • Relevant Professional certification essential: CISSP, CISA, CISM or CRISC
  • Minimum 10 years in a Senior Information Security or similar role.
  • Experience in setting up and managing information security in a financial services organization.
  • Excellent knowledge and experience of ISO27001, SOC2 Type 2 and GDPR
  • Knowledge of national and international laws, regulations, policies and ethics as they relate to cybersecurity.
  • Knowledge of Risk Management Processes (eg methods for assessing and mitigating risk)

The successful candidate must submit the following pre-employment requirements

  • Scanned copy of valid NBI Clearance
  • Accomplished Medical or PEME Slip (covered by KMC)
  • 2x2 & Half body picture with white background
  • Proof of government numbers (TIN, SSS, Pag-ibig, & Philhealth)
  • Photocopy of 2 valid IDs – front & back (government-issued)
  • Clear copy of your Birth Certificate (PSA or NSO)
  • Accomplished HR Forms & Promissory Note (will be provided by KMC’s Onboarding Team

Click here to view the complete list of KMC’s pre-employment requirements.

KMC Careers

If you're a rockstar at what you do and looking to be a part of our amazing story, we want to hear from you!

We offer attractive salaries and benefits plus you get to work in some of the Philippines' best flexible workspaces. Our employees also get to enjoy exclusive discounts, rewards and freebies, and invites to our monthly events. We are always recruiting for roles in IT & Development, Marketing, Business Administration, HR & Recruitment and Legal & Finance Roles.

KMC provides quality employment opportunities for job-seekers looking for a career that is both challenging and fulfilling. We are also committed to providing equal opportunities at every selection stage. We do not discriminate due to age, gender, sexual orientation, ethnicity, nationality, and religion.

Work with Us. Grow with Us.

KMC Solutions offers a variety of career opportunities in Metro Manila, Cebu and Clark & Iloilo. We are always looking for talented and enthusiastic individuals who are ready to make their next big career move.

Our Culture

At KMC, we foster an inclusive and positive workplace for all. We push our members to succeed in everything they do through our collaborative work environment. We encourage our community to work hard and reach their full potential while delivering results that matter for our members and you as professionals.

We host amazing and quality events and implement people-centric policies to work flexibly. We ensure that everyone in our expansive network is engaged, from our internal employees and those who work on behalf our offshore partners.

Life within KMC: Work Hard Party Harder

At KMC, we work hard and we are committed to putting our best foot forward in everything we do. Everyone is encouraged to be an individual while also working for the collective good of the KMC Community. We believe mistakes are opportunities and that you should not present a solution without a problem.

We also know when hard work deserves to be recognized so we reward our employees with monthly parties, free trips and much much more!

No account yet

Sign up to view exciting career opportunities!

Refer A Friend