Leads the Cyber Security Operations Group (CSOG) governance framework to ensure robust, transparent security practices across the enterprise. Responsible for aligning governance strategies with organizational objectives, integrating policies and processes into operational workflows, and maintaining compliance with regulatory and industry standards. Build strong stakeholder collaboration to drive accountability, integrity, and continuous improvement, strengthening the organization's overall cybersecurity posture. Governance Leadership
Governance Leadership
- Leads the design, implementation, and management of the CSOG governance system, ensuring clear allocation of responsibility, authority, and accountability in alignment with established principles.
Security Integration
- Directs the establishment and integration of security management processes within the PLDT Group's system delivery life cycle, ensuring consistent application and communication across all functions.
Security Framework Maintenance
- Oversees the maintenance of enabling structures, principles, and processes that support CSOG's mission and objectives, ensuring clarity of roles and responsibilities.
Performance Oversight
- Leads the monitoring and evaluation of CSOG Pillar processes and governance mechanisms, driving operational integrity and continuous improvement.
Strategic Alignment
- Ensures cyber security-related processes and decisions are aligned with organizational strategies and objectives, providing oversight and guidance to maintain strategic coherence.
Security Roadmap Development
- Spearheads the development of comprehensive group strategies and roadmaps to strengthen the PLDT Group's cyber security posture.
Demand & Project Management
- Aligns CAPEX and OPEX projects with CSOG's strategic roadmap. Oversees new projects, enhancements, and change requests to ensure timely, on-budget, and in-scope delivery. Implements program tracking and reporting mechanisms and fosters a project-oriented culture to improve maturity within CSOG.
Resource & Financial Stewardship
- Manages optimal allocation of financial resources and oversees capacity planning, resource deployment, and cost-effectiveness across all cyber security pillars.
Metrics & Accountability
- Defines and tracks performance metrics contributing to CSOG's balanced scorecard, promoting transparency and accountability throughout the organization.
Compliance & Audit Readiness
- Ensures adherence to all applicable cybersecurity laws, regulations, and standards. Integrates compliance controls into operational processes and supports audit readiness through thorough documentation and timely remediation of identified gaps.
Project Management
- Ensures timely and high-quality delivery of technical assessments for key information security initiatives, in collaboration with the Capability and Delivery team.
People Engagement and Development
- Encourages a culture of collaboration and growth within CSOG by supporting continuous development. Contributes to building organizational capability through knowledge sharing and fostering readiness for future roles.
Operational Support
- Provide leadership and support for additional duties and responsibilities as assigned, ensuring alignment with organizational priorities and operational excellence.
EDUCATION
Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Engineering, Business Administration, Law, or related discipline.
WORK EXPERIENCE
More than 5 years of progressive leadership in cybersecurity governance and IT risk management, with deep expertise in regulatory compliance and governance frameworks. Proven track record in designing and implementing enterprise-wide governance programs aligned with global standards such as ISO/IEC 27001 and NIST Cybersecurity Framework (CSF). Proven ability to lead cross-functional teams, strengthen security control maturity, and ensure continuous alignment with evolving regulatory and industry standards.
Technical Skills
Experience in any of the following fields:
- Cybersecurity Governance & Lifecycle Management
- Regulatory Compliance Frameworks
- Strategic Planning & Execution
- Leadership & Team Development
- Effective Communication & Stakeholder Engagement
