46 Data Protection jobs in the Philippines

JOB DESCRIPTION:

• Being a member of the Data Protection team, this position will support the efforts of Data Protection and Technology Services to ensure our adherence to regulatory and legal data protection and privacy requirements, supporting all lines of businesses and across all functional areas of our company and its companies globally.

RESPONSIBILITIES:

• Keep abreast of and maintain a current understanding of global data privacy laws and regulatory requirements that apply to our company and its companies.
• Conduct annual privacy inventory of data and processing activities, performing PIA and DPIAs.
• Manage and respond to inquiries received in the privacy mailbox and provide consultation, guidance, or escalate as needed.
• Perform privacy vendor evaluations to assess regulatory and privacy risks and practices associated with the onboarding of third parties.
• Liaise with business lines to identify privacy risk areas and determine appropriate privacy controls to limit privacy risks to new projects, cloud hosing initiatives and/or special projects.
• Draft and/or maintain our privacy policies, procedures and guidelines as needed. Assist other business lines with policies that may have an impact to individuals privacy (e.g., employee handbook, technology usage, social media policy, etc.)
• Assist in the review of changes to applicable laws and regulations and interpretation of impact to the company and its companies.
• Assist with annual privacy training and ongoing awareness program.
• Assist with procedures to address Data Subject Access Requests
• Assist with the annual review of monitoring policies to prevent the loss of personal data/data leakage prevention monitoring.
• Aligns risk and control processes into day-to-day responsibilities to monitor and mitigate risk; escalate appropriately.
• Keep current on evolving technologies (e.g., AI) and the associated risks and impact to data protection.
• Assist with data breach investigations, management reporting, and trend analysis impacting data privacy and/or client confidentiality.
• Support other daily program elements as needed.

**NOTE: The Primary Responsibilities of this role are not limited to the details above. **

QUALIFICATIONS:

• Minimum of 6 years of related experience
• Bachelor's degree preferred or equivalent experience.
• Relevant industry certification (e.g., CIPM, CIPP EU/A/C/US, CISSP, etc.
• Relevant experience to include (e.g, data privacy, audit, information security, risk management, etc.)

Must Have

• Minimum of 6 years of related experience
• Bachelor's degree preferred or equivalent experience.
• Relevant industry certification (e.g., CIPM, CIPP EU/A/C/US, CISSP, etc.
• Relevant experience to include (e.g, data privacy, audit, information security, risk management, etc.)

JOB DESCRIPTION:

• Being a member of the Data Protection team, this position will support the efforts of Data Protection and Technology Services to ensure our adherence to regulatory and legal data protection and privacy requirements, supporting all lines of businesses and across all functional areas of our company and its companies globally.

RESPONSIBILITIES:

• Keep abreast of and maintain a current understanding of global data privacy laws and regulatory requirements that apply to our company and its companies.
• Conduct annual privacy inventory of data and processing activities, performing PIA and DPIAs.
• Manage and respond to inquiries received in the privacy mailbox and provide consultation, guidance, or escalate as needed.
• Perform privacy vendor evaluations to assess regulatory and privacy risks and practices associated with the onboarding of third parties.
• Liaise with business lines to identify privacy risk areas and determine appropriate privacy controls to limit privacy risks to new projects, cloud hosing initiatives and/or special projects.
• Draft and/or maintain our privacy policies, procedures and guidelines as needed. Assist other business lines with policies that may have an impact to individuals privacy (e.g., employee handbook, technology usage, social media policy, etc.)
• Assist in the review of changes to applicable laws and regulations and interpretation of impact to the company and its companies.
• Assist with annual privacy training and ongoing awareness program.
• Assist with procedures to address Data Subject Access Requests
• Assist with the annual review of monitoring policies to prevent the loss of personal data/data leakage prevention monitoring.
• Aligns risk and control processes into day-to-day responsibilities to monitor and mitigate risk; escalate appropriately.
• Keep current on evolving technologies (e.g., AI) and the associated risks and impact to data protection.
• Assist with data breach investigations, management reporting, and trend analysis impacting data privacy and/or client confidentiality.
• Support other daily program elements as needed.

**NOTE: The Primary Responsibilities of this role are not limited to the details above. **

QUALIFICATIONS:

• Minimum of 6 years of related experience
• Bachelor's degree preferred or equivalent experience.
• Relevant industry certification (e.g., CIPM, CIPP EU/A/C/US, CISSP, etc.
• Relevant experience to include (e.g, data privacy, audit, information security, risk management, etc.)

Must Have

• Minimum of 6 years of related experience
• Bachelor's degree preferred or equivalent experience.
• Relevant industry certification (e.g., CIPM, CIPP EU/A/C/US, CISSP, etc.
• Relevant experience to include (e.g, data privacy, audit, information security, risk management, etc.)

IT Governance Support
▪ Monitor compliance with IT governance policies and procedures, reporting any non- br>compliance or areas for improvement.

▪ Participate in internal audits and assessments to evaluate the effectiveness of IT governance controls. < r>
Data Protection Compliance
▪ Assist in the implementation and monitoring of data protection policies, ensuring compliance with data protection laws and regulations. < r>▪ Support the development and delivery of data protection awareness training for employees. < r>
Risk Management
▪ Collaborate with IT and business teams to ensure risk management practices are < r>integrated into daily operations.

Documentation and Reporting
▪ Maintain up-to-date documentation for IT governance and data protection processes, < r>procedures, and guidelines.
▪ Prepare reports on IT governance and data protection activities, including compliance < r>status and risk assessments.

Job Qualifications:

▪ Bachelor’s degree in Information Technology, Computer Science, Information Systems, or any related field.
▪ 1-2 years of experience in IT governance, data protection, or related areas is preferred.

About Us:
MEC is a leading organization in Technology. We are committed to excellence and the continuous improvement of our risk management processes to protect our assets, reputation, and financial standing. We are looking for a detail-oriented and highly organized Risk Management Staff to join our team. br>
Job Description:
We are seeking a proactive and responsible Risk Management Staff to provide essential support in identifying, assessing, and managing various business risks. This role will involve assisting with the development and execution of risk management strategies to minimize potential liabilities and ensure the organization operates smoothly and securely.

Key Responsibilities:
• Assist in conducting risk assessments and evaluations across various departments and projects. < r>• nsure implementation of the internal audit program. < r>• S pport the development, implementation, and maintenance of risk management policies and procedures. < r>• E ecute monthly/quarterly operational audits. < r>• M nitor and record progress of process cases reported and ensure compliance with regulatory requirements accordingly. < r>• A sist in the annual ISO accreditation and compliances of the company < r>• A alyze risk data and provide insights for improving risk mitigation strategies. < r>• P epare and maintain risk reports, tracking potential and existing risks. < r>• A sist with the preparation of documentation for internal audits program and risk management reviews to contribute for process enhancement. < r>• P ovide administrative and logistical support services to assist in business and operational functions < r>• S pport in all audit activities, process enhancements, data management and analysis < r>• H lp and support the Risk Management team in all other ad hoc tasks that the Audit Team is assigned to. < r>
Qualifications:
• E ucation: Bachelor's degree in any Business Course required. < r>• E perience: Minimum of 2-year experience in a Business Process or Employee-facing role is preferred. < r>• S ills: Strong business acumen advanced Excel skills, keen analytical abilities, high aptitude for problem-solving and organizational skills < r>• H s time management, with sharp and unyielding attention to detail, knowledgeable in basic accounting concepts. < r>• S rong and clear communication skills, both written and verbal. And has strong drive for excellence. < r>• A ility to work independently and as part of a team in a fast-paced environment.

Job Summary:
br>The Risk Officer is responsible for supporting the implementation and execution of the enterprise risk management (ERM) framework across the organization. The role focuses on identifying, assessing, monitoring, and reporting risks that could impact on the company’s strategic objectives, operations, and compliance. The Risk Officer works closely with various departments to promote a risk-aware culture and ensure alignment with industry standards such as ISO 31000 and COSO ERM. < r>


Key Responsibilities:

1. Risk Identification & Assessment

Assist in conducting enterprise-wide risk assessments and workshops.

Support business units in identifying and documenting key risks, including strategic, operational, financial, and compliance-related risks.

Help develop and maintain the corporate risk register.

2. Risk Monitoring & Reporting

Track the implementation of risk mitigation plans across departments.

Prepare risk reports and dashboards for senior management and the Board Risk Oversight Committee (BROC).

Monitor Key Risk Indicators (KRIs) and provide early warning alerts for emerging risks.

3. Policy & Framework Support

Help maintain and update risk management policies, procedures, and templates.

Ensure risk activities comply with regulatory requirements and internal standards.

Support internal and external audit activities related to risk.

4. Risk Culture & Training

Assist in promoting risk awareness and a proactive risk culture across the organization.

Coordinate risk training sessions and awareness campaigns.

Support business continuity and crisis management initiatives.

5. Regulatory & Compliance Alignment

Ensure alignment with risk-related regulatory standards, including those from the DOE, ERC, and ISO guidelines.

Monitor industry best practices and recommend enhancements to the risk framework.



Qualifications & Experience:

Bachelor’s Degree in Business, Finance, Risk Management, Engineering, or related field. < r>
At least 3–5 years of experience in risk management, audit, compliance, or operations, preferably in the energy, utilities, or infrastructure sectors. < r>
Familiarity with enterprise risk management frameworks such as ISO 31000 and COSO ERM.

Strong analytical and problem-solving skills.

Effective communication and stakeholder coordination abilities.

Proficiency in MS Excel, PowerPoint, and risk management tools is a plus.

Risk certifications (e.g., CRMP, ISO 31000, ARM) are an advantage.

At Johnson & Johnson,?we believe health is everything. Our strength in healthcare innovation empowers us to build a?world where complex diseases are prevented, treated, and cured,?where treatments are smarter and less invasive, and?solutions are personal?Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity?Learn more at Function:**
Finance
**Job Sub** **Function:**
Risk Management
**Job Category:**
Professional
**All Job Posting Locations:**
Paranaque, National Capital Region (Manila), Philippines
**Job Description:**
Assists with the administration of Risk Management processes.
Conduct processes for compliance with SOPs and SOx compliance with appropriate supervision by manager and senior director.
Execute financial transactions with direction and oversight by manager for expenses and premiums.
Conducts collection of data from other departments and external TPAs, brokers, and insurers and prepare submissions for the placement of property and casualty insurance programs.
Day to day handling of property and casualty claims working with legal department, occupational health, and insurers both in and outside the US.
Maintain claims and other data essential to the operations of $4B captive insurance company.
Assist manager and senior director in contract reviews and M&A Due Diligence
Assists in providing data for internal or external audits or regulatory examinations.
Understands and applies Johnson & Johnson's Credo and Leadership Imperatives in day-to-day interactions with team.
This job does not require any experience. This job is overtime eligible.

Risk Management Analyst
Job ID
224529
Posted
14-Jul-2025
Service line
Corporate Segment
Role type
Full-time
Areas of Interest
Legal, Risk Management
Location(s)
Makati City - National Capital Region - Philippines
**About the Role:**
The Insider Risk Management team is currently seeking a highly motivated and experienced **Insider Risk Analyst** to join our team. The team's mission is to identify, defend and mitigate risks posed by trusted personnel who have access to sensitive and proprietary CBRE resources and information.
As a member of the team, you would be expected to perform a variety of extremely sensitive and confidential security functions and would work closely with other internal business partners such as Legal, Privacy, Human Resources and Cybersecurity teams.
**Key Responsibilities**
+ Responsible for monitoring, investigation and remediation of insider risk events.
+ Perform initial monitoring activity to establish baselines on user behavior and data movement.
+ Conduct highly confidential and sensitive investigations often involving employee misconduct, fraud, intellectual property theft and policy violations.
+ Develop and mature processes, playbooks, workflows, standards and threat models.
+ Conduct risk assessments and recommend security controls to minimize potential threats.
+ Work closely with both internal and external security teams to identify and provide defensive solutions to emerging threats that may impact CBRE assets and systems.
**Required Skills & Knowledge**
+ Bachelor's degree in Cybersecurity, Computer Science or equivalent work experience.
+ 2+ years of technical experience in one or more of the following: insider risk investigations, cyber incident response, data loss prevention, digital forensics or threat analysis.
+ Understanding of tactics, techniques, and procedures associated with malicious insider risk activity.
+ Technical experience conducting digital investigations in an enterprise network environment utilizing data analytics, log analysis and/or forensic tools.
+ Experience leveraging SIEM, UEBA and DLP tools for complex technical analysis and incident reporting.
+ Basic understanding of privacy regulations and requirements associated with data loss incidents.
+ Excellent analytical and problem-solving skills.
+ Proven ability to effectively prioritize and execute tasks in a high-pressure, fast paced environment.
+ Strong verbal and written communication skills with the ability to articulate complex technical ideas in plain language to non-technical audiences.
**Preferred**
+ Prior corporate security, law enforcement, government or military experience in the technical investigation of insider risk incidents.
+ Experience with the technical policy creation, implementation and tuning of UBA, DLP and SIEM technologies.
+ Current industry recognized information security and forensic certifications such as: CISM, CISSP, GCFE, GCFA, CFCE, EnCE or related.
**Company Perks and Benefits:**
+ Government Mandated Benefits
+ Hybrid Work Setup
+ Paid Leaves (15 SL and 15 VL annually)
+ HMO with up to three free dependents
+ Life Insurance
+ Annual Performance Bonus
+ Annual Merit Increase
**Why CBRE Business Services Organization (BSO):**
+ When you join CBRE Business services Organization (BSO), you become part of a global leader in commercial real estate and investment services that help businesses and people thrive.
+ At CBRE- Business services Organization (BSO), Our ambitious is for growth plan creating the space for dynamic colleagues to build a non-linear career path.
+ CBRE Business Services Organization (BSO) fosters a culture where we share commitment to excellence and believe the best work happens in connected communities where respect for each other is foundational.
**CBRE Business Services Organization (BSO) is a part of CBRE Group, Inc. (NYSE:CBRE),** a Fortune 500 and S&P 500 company headquartered in Dallas, is the world's largest commercial real estate services and investment firm (based on 2022 revenue). The company has approximately 130,000 employees serving clients in more than 100 countries. CBRE serves a diverse range of clients with an integrated suite of services, including facilities, transaction and project management; property management; investment management; appraisal and valuation; property leasing; strategic consulting; property sales; mortgage services and development services. With broader and deeper capabilities than any other company, CBRE is the leading full-service real estate services and investment organization in the world.
CBRE, Inc. is an Equal Opportunity and Affirmative Action Employer (Women/Minorities/Persons with Disabilities/US Veterans)

**Description**
**Analyst - Operations Risk Management**
**#4th in Great Place to Work's Best Company To Work For 2025**
**#10th in Fortune Magazine's 2025 World's Most Admired Companies**
**#1st in the J.D. Power 2024 U.S. Credit Card Satisfaction Study of National Credit Card Issuers**
**Top GBS Employers for the Philippines (2025) by the Everest Group**
At American Express, our culture is built on a 175-year history of innovation, shared values and leadership behaviors, and an unwavering commitment to back our customers, communities, and colleagues. As part of Team Amex, you'll experience this powerful backing with comprehensive support for your holistic well-being and many opportunities to learn new skills, develop as a leader, and grow your career.
Here, your voice and ideas matter, your work makes an impact, and together, you will help us define the future of American Express.
**How will you make an impact in this role?**
The Capabilities Analyst will play a critical role in shaping and advancing the development, enhancement, and delivery of technology and product strategies that enable the Global Risk and Compliance organization. This role is instrumental to the success of the operational risk transformation agenda, with responsibilities spanning the design and execution of scalable, forward-looking solutions that meet both regulatory expectations and evolving business needs. The Analyst will drive the gathering and translation of business requirements, assess technology approaches, and partner closely with cross-functional stakeholders across risk, compliance, and Technology to implement tools and capabilities that enhance the overall risk management framework and support long-term organizational resilience.
**Responsibilities:**
+ Work with business and technology teams to gather and document detailed user stories, ensuring functional and non-functional requirements are clearly defined.
+ Assist in User Acceptance Testing (UAT) by preparing test cases, coordinating with end-users, and verifying that system enhancements align with business and regulatory requirements.
+ Support the analysis and documentation of risk management solutions, collaborating with business and technology teams to assess design and implementation approaches.
+ Assist in the development and implementation of risk and compliance technology capabilities, supporting processes related to risk identification, monitoring, reporting, and controls.
+ Conduct research and provide analysis to support product strategies that enhance operational risk systems, ensuring alignment with risk transformation goals.
+ Help track and organize a portfolio of technology initiatives, focusing on improvements in risk data management, workflow automation, and regulatory compliance tools.
+ Contribute to research and support the implementation of advanced technologies such as AI, machine learning, and data analytics within operational risk management.
+ Ensure risk and compliance technology solutions comply with regulatory standards by assisting in documentation and process reviews.
+ Assist in the integration of risk management systems, helping to improve reporting and provide meaningful insights for senior management.
+ Stay up to date on industry trends and best practices to support continuous improvement in risk and compliance capabilities.
**Minimum Qualifications:**
+ 4 years of experience in operational risk management, compliance, or risk technology, with a background in supporting capabilities and product strategy initiatives.
+ Experience assisting in the design, documentation, and implementation of risk management solutions.
+ Familiarity with Agile/Kanban methodologies, including helping to create and prioritize user stories and tasks for multiple projects in a dynamic environment.
+ Hands-on experience in User Acceptance Testing (UAT), including writing test cases, executing test scenarios, and assisting in product reviews and certifications.
+ Experience supporting risk transformation projects, particularly by coordinating activities and assisting with the implementation of large-scale technology platforms.
+ Exposure to product and technology roadmaps, with a focus on operational risk, compliance, and regulatory requirements.
+ Knowledge of global risk management frameworks and financial industry regulations, including Basel, SOX, and CCAR.
+ Familiarity with technological solutions in risk and compliance, including AI, machine learning, and advanced analytics.
+ Ability to collaborate with cross-functional teams and support alignment between technology initiatives and business objectives in risk management.
+ Strong analytical and problem-solving skills, with the ability to assess complex risk environments and contribute to effective solutions.
+ Excellent communication and collaboration skills, with the ability to work with teams and provide risk management insights to stakeholders.
+ A bachelor's degree in Risk Management, Business, Technology, or a related field is required.
**ORMCM**
**Qualifications**
**Additional Details:**
+ Location: BGC Corporate Center 2, 5th Avenue corner 30th Street, Bonifacio Global City, Taguig
+ Workplace Flexibility: Full time. Must be amenable to follow a hybrid work arrangement (onsite and work from home)
+ Work From Home Requirements:
+ Must have at least 25 mbps internet connection plan / speed
+ Must have a private & quiet area to work at home
+ American Express offers a fantastic and diverse working environment. High performance is rewarded with target driven incentives
We back you with benefits that support your holistic well-being so you can be and deliver your best. This means caring for you and your loved ones' physical, financial, and mental health, as well as providing the flexibility you need to thrive personally and professionally:
+ Competitive base salaries
+ Bonus incentives
+ Support for financial-well-being and retirement
+ Comprehensive medical, dental, vision, life insurance, and disability benefits (depending on location)
+ Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need
+ Generous paid parental leave policies (depending on your location)
+ Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
+ Free and confidential counseling support through our Healthy Minds program
+ Career development and training opportunities
Offer of employment with American Express is conditioned upon the successful completion of a background verification check, subject to applicable laws and regulations.
**Employment eligibility to work with American Express in the Philippines is required as the company will not pursue visa sponsorship for these positions.**
**Job:** Risk
**Primary Location:** Philippines-PHL-Taguig City
**Schedule** Full-time
**Tags** ORMCM
**Req ID:** 25008491

As the **Information Risk Manager** , you will work closely with different lines of defense to bolster our information risk management processes. You'll focus on evolving our assurance practices, standardizing procedures, and ensuring compliance with global information risk management standards.
**Position Responsibilities:**
+ Lead the development and refinement of the framework for reporting the organization's risk posture.
+ Manage and perform scenario analyses to evaluate the impact of changes to the risk management framework.
+ Oversee the design and implementation of Power BI solutions to expand and optimize risk reporting capabilities.
+ Collaborate with cross-functional teams and stakeholders to gather requirements and ensure alignment with organizational goals.
+ Ensure the accuracy, consistency, and reliability of data across all reports and dashboards.
+ Provide strategic insights and actionable recommendations based on risk data analysis to inform decision-making.
+ Support the development and maintenance of the global Information Risk Management policies, standards, controls, and related risk assessment, oversight and assurance processes.
+ Support the standardization of information risk management activities by designing and/or researching best practices related to Information Risk Management assessment processes and tools.
+ Mentor and develop team members, fostering a culture of continuous improvement and professional growth.
+ Stay abreast of industry trends, best practices, and technological advancements in information risk management and data reporting.
+ Assist in developing the Information Risk Analysis strategy and framework.
+ Responsible for finding opportunities to improve data quality alignment across all functions/segments.
+ Proactively communicate reporting modifications and process changes to contributors based on senior management requests and personal observations.
**Required Qualifications:**
+ University Degree in Technology, Business, Risk Management, Auditing, or related field. A master's degree or relevant professional certification is a plus.
+ Minimum of 7 years of experience in Microsoft Excel and Power BI, with a track record of designing complex reports and dashboards.
+ Expertise in controls, IT risk management, data analysis, metrics design/development and reporting for risk function, preferably in the financial services industry
+ Strong analytical, problem-solving, and decision-making skills, with a keen attention to detail.
+ Excellent leadership and communication skills, with the ability to influence and engage stakeholders at all levels.
+ Familiarity with risk management principles, frameworks, and methodologies.
+ Ability to Independently undertake projects of an intricate nature and ad-hoc requests as required.
+ Proven experience in a management role within information risk management or a related field.
**Preferred Qualifications:**
+ Experience with data visualization and business intelligence tools.
+ Knowledge of database management, SQL, and data governance.
+ Strong organizational and project management skills, with the ability to manage multiple priorities.
**_When you join our team:_**
+ We'll empower you to learn and grow the career you want.
+ We'll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
+ As part of our global team, we'll support you in shaping the future you want to see.
**Acerca de Manulife y John Hancock**
Manulife Financial Corporation es un importante proveedor internacional de servicios financieros que ayuda a las personas a tomar decisiones de una manera más fácil y a vivir mejor. Para obtener más información acerca de nosotros, visite .
**Manulife es un empleador que ofrece igualdad de oportunidades**
En Manulife/John Hancock, valoramos nuestra diversidad. Nos esforzamos por atraer, formar y retener una fuerza laboral tan diversa como los clientes a los que prestamos servicios, y para fomentar un entorno laboral inclusivo en el que se aprovechen las fortalezas de las culturas y las personas. Estamos comprometidos con la equidad en las contrataciones, la retención de talento, el ascenso y la remuneración, y administramos todas nuestras prácticas y programas sin discriminación por motivos de raza, ascendencia, lugar de origen, color, origen étnico, ciudadanía, religión o creencias religiosas, credo, sexo (incluyendo el embarazo y las afecciones relacionadas con este), orientación sexual, características genéticas, condición de veterano, identidad de género, expresión de género, edad, estado civil, estatus familiar, discapacidad, o cualquier otro aspecto protegido por la ley vigente.
Nuestra prioridad es eliminar las barreras para garantizar la igualdad de acceso al empleo. Un representante de Recursos Humanos trabajará con los solicitantes que requieran una adaptación razonable durante el proceso de solicitud. Toda la información que se haya compartido durante el proceso de solicitud de adaptación se almacenará y utilizará de manera congruente con las leyes y las políticas de Manulife/John Hancock correspondientes. Para solicitar una adaptación razonable en el proceso de solicitud, envíenos un mensaje a .
**Modalidades de Trabajo**
Híbrido