About The Role
The Cybersecurity Manager acts as a strategic liaison between CISO, control owners and committee members and oversees cybersecurity governance activities, acting as the secretariat for critical committees (e.g., ISM Working Group, ISRMC), and facilitating for the compliance with regulatory frameworks such as NIST, ISO 27001, and BSP Circulars. The role also leads the organization's information security awareness initiatives, including phishing campaigns, while facilitating governance reporting and monitoring of action plans.
How you'll contribute
- Serve as the primary liaison between the CISO and key stakeholders, ensuring alignment with cybersecurity frameworks and providing governance oversight by tracking and reporting the status of critical cybersecurity action plans.
- Act as main secretariat function that maintains the committee charters, organize and schedule governance committee meetings (e.g. ISRMC and ISM Working Group), prepare agendas, and document decisions and action items in accurate minutes while maintaining compliance and transparency with internal and regulatory standards/framework.
- Design, implement and continuously improve SBC's Information Security Awareness programs to strengthen the organization's security culture
- Facilitate effective engagement and communication among control owners, CISO, board members, senior leadership and other relevant stakeholders to ensure timely diseemination of updates, guidance and requirements for Cybersecurity committee meetings.
- Monitor and track action items and remediation plans arising from committee meetings, ensuring timely updates are reported to the CISO and relevant stakeholders for visibility.
What we're looking for
- Bachelor's Degree in Information Technology, Accounting, or any related field
- With at least 5 years of relevant experience in risk management, technology and security
- Ability to interpret and apply cybersecurity standards and regulatory requirements.
- Strong knowledge of risk management and security control frameworks (NIST, PCI-DSS, ISO, etc.) and the ability to design and evaluate effectiveness of controls embedded within business processes.
- Proficient in analyzing complex information, preparing accurate reports, and maintaining detailed governance records.
- Skilled in building strong relationships and facilitating collaboration among diverse internal and external stakeholders.
- Creative and capable of designing, implementing, and measuring effective security awareness initiatives that drive behavioral change.
- Ability to align cybersecurity governance and awareness programs with organizational objectives and regulatory expectations
About Security Bank
Security Bank is one of the Philippines best capitalized private domestic universal banks.
Established in 1951 and publicly listed with the Philippine Stock Exchange (PSE:SECB) in 1995, our major businesses cover retail, corporate, commercial, and business (MSME) banking.
We're recognized as an Employer of Choice in Philippine banking by various award giving bodies for our values-based culture, industry-leading engagement and benefits, and commitment to work-life balance.
Most recently, we ranked as the #2 best employer in the Philippines and #54 globally on the prestigious Forbes World's Best Employers 2023 list.
At Security Bank, our approach to Human Capital Management (HCM) is embodied by our Employee Value Proposition (EVP): YOU matter.
Start your BetterBanking career with us today.
