Join a 2025 award-winning telecommunications company recognized as Australia's Most Trusted Internet Provider and Most Trusted Telco.
The Opportunity
Your expertise in security governance, risk, and compliance will play a key role in managing third-party risk and protecting its information assets. As the
Security Governance, Risk & Compliance Analyst, you'll work closely with the security team to support vendor risk assessments, compliance initiatives, and security best practices across the organization.
Why join us
- Proudly Great Place to Work® certified
- Celebrate globally: Company trips (2025: Hong Kong, 2024: Thailand), Culture Champs, Year-end parties, leadership awards & more
- Grow with stability: 100+ in our 10-Year Club by 2025
- Dynamic talent network: 2,000+ across APAC and beyond
- Competitive compensation with annual reviews
- Comprehensive medical care for you and your family
- Generous paid leave because work-life balance matters
- Level up with LinkedIn Learning and tailored training
- Flexible work setup
Staff Testimonial
Working for the best client and loving what you do makes everything enjoyable at work. - Senior Broker, ASW Philippines.
What You'll Do
- Support the delivery of third-party vendor risk assessments, evaluating security posture and identifying potential risks.
- Review and analyze vendor assurance reports, ensuring alignment with organizational security standards.
- Assist in the implementation and continuous improvement of ISO27001 and broader security frameworks.
- Collaborate with internal and external stakeholders to drive understanding and adoption of security controls and initiatives.
- Develop and support user awareness programs to promote security best practices across the organization.
- Collect, organize, and maintain evidence of compliance with security controls and regulatory requirements.
- Support internal and external audit activities, including preparation of documentation and presentation of findings.
- Contribute to the ongoing improvement of security governance, risk, and compliance processes.
Key Criteria
- Bachelor's degree in Information Security, Cybersecurity, Business, or a related field.
- Minimum three years experience conducting vendor risk assessments and managing third-party security risks.
- Strong understanding of security frameworks, particularly ISO27001 and related compliance standards.
- Experience supporting governance, risk, and compliance (GRC) programs within an organization.
- Excellent communication and stakeholder management skills, with the ability to engage across all levels.
- Strong attention to detail with the ability to manage documentation, evidence collection, and reporting requirements.
- Ability to manage multiple priorities and timelines in a fast-paced environment.
- Strong problem-solving skills with a proactive approach to identifying and mitigating risks.
- Amenable to work on a 12-month term contract.
Work setup:
- Manila (BGC, Taguig): Australian hours (6 am – 3 pm PHT) with a hybrid set up.
