This role is responsible for Information Security execution locally in the Philippines, ensuring global security standards are applied effectively in daytoday operations. You will work closely with global InfoSec and local teams to support audits, security operations, and compliance as the Philippines organization continues to grow.
What We're Looking For
- 35 years experience in Information Security, IT Risk, Compliance, or related roles
- Exposure to ISO 27001 and/or SOC frameworks (handson experience is a plus)
- Experience supporting audits, security controls, or compliance activities
- Understanding of riskbased security practices
- Familiarity with Philippines Data Privacy Act (DPA 2012) is an advantage
- Comfortable working with documentation, policies, and procedures
- Strong communication skills and ability to work with nontechnical teams
- Interest in growing into broader InfoSec ownership or leadership responsibilities
Key Responsibilities
- Support the local implementation and ongoing operation of ISO 27001 and SOCaligned controls
- Maintain security documentation, policies, and audit evidence
- Act as the local point of contact for information security matters
- Support internal and external audits, including evidence gathering and remediation tracking
- Assist with daytoday security operations and incident response activities
- Work with IT on vulnerability management, endpoint compliance, and access controls
- Partner with HR, Talent, and Admin teams to embed security into onboarding, offboarding, and office processes
- Contribute to local risk assessments and business continuity activities
