The position is primarily responsible for leading audits of IT infrastructure and cybersecurity environments to ensure the confidentiality, integrity, and availability of systems, networks, and data.
Duties And Responsibilities
- Experienced in conducting audits of IT infrastructure and cybersecurity controls, including network security, servers, databases, cloud environments, and identity and access management.
- Skilled in assessing IT security controls such as vulnerability management, patching, and system configuration.
- Knowledgeable in reviewing cybersecurity monitoring, incident response, and escalation processes to ensure timely and effective handling of security events.
- Familiar with evaluating Business Continuity and Disaster Recovery (BCP/DRP) arrangements to ensure operational resilience.
- Proficient in performing control testing, risk assessments, and security evaluations across IT environments to determine control effectiveness.
- Able to identify security risks, control gaps, issues, and root causes, and recommend appropriate remediation actions.
- Capable of preparing clear and comprehensive audit reports and presenting findings to stakeholders in a structured and professional manner.
Qualifications
- Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or related field.
- Has 5–6 years of experience in IT audit, IT operations, IT infrastructure, IT security, or cybersecurity.
- Knowledgeable in frameworks such as ISO 27001, NIST, CIS Controls, and COBIT.
- Experienced in vulnerability management, IAM, incident response, and BCP/DRP.
- Holding certifications such as CISA, CISSP, CISM, Security+, or CRISC is an advantage.
- Willing to work in Makati
