250 Security Governance jobs in the Philippines

Employment type
: Permanent

Location
: Makati City, Metro Manila

Work setup
: Hybrid (open to 2x a week in the office)

Work schedule
: 3PM to 11PM Manila Time

Pay range
: Php 35,000 to Php 47,000

Discover a world of endless possibilities with Cambridge University Press & Assessment, a distinguished global academic publisher and assessment organisation proudly affiliated with the prestigious University of Cambridge.

We are seeking a detail-oriented and committed Security Governance Analyst to join our Manila-based Group Security Team at Cambridge University Press & Assessment. This role supports the Head of Security GRC in advancing security governance practices, ensuring policy compliance, and strengthening supplier risk assurance across the organisation. You'll contribute to internal audits, policy development, and supplier assessments, helping maintain regulatory alignment and operational security excellence.
Why Cambridge?
At Cambridge, our unwavering commitment is to excel in education, learning, and research on a global scale. With a presence in over 170 countries, we empower millions of individuals, unlocking their potential and enabling their success. From dedicated teachers shaping young minds to visionary researchers pushing the boundaries of knowledge, we embody a relentless pursuit of enlightenment, curiosity, and understanding.

We embrace change as an opportunity for growth and progress, constantly adapting to meet the evolving needs of our customers. Collaboration and attentive listening are at the heart of our journey, as we work hand in hand with our customers and each other to innovate and discover more effective ways to achieve our goals. We believe people thrive in an environment where Trust and Empowerment are at the forefront, which is why all our new team members are provided regularisation on their first day so they can start #PursuingPotential from day one.

Joining Cambridge means becoming a part of an extraordinary institution renowned worldwide. Beyond that, you'll become a part of a vibrant and forward-thinking community that transcends tradition, fostering a culture of continuous growth and personal development. Here, we provide the right environment for you to thrive, supporting your professional journey and empowering you to reach your highest potential, that is why our pay philosophy is intricately tied to your skills and competencies, ensuring that your compensation aligns with the unique value you bring to the role you are applying for.

What can you get from Cambridge?
In this role, you'll have the opportunity to collaborate with colleagues from diverse branches, expanding your horizons and enriching your understanding of different cultures. We value your wellbeing and offer stability, fostering your professional and personal growth through internal and external activities and training sessions to help enrich your skillset.

Enjoy work-life balance flexibility through our range of options, including flexible schedules, hybrid work arrangements, and generous paid leave. As a regular employee on Day One, you'll have access to comprehensive healthcare benefits, ensuring your peace of mind with coverage for dependents, group life insurance, and robust well-being programs.

What will you do as a Security Governance Analyst?
As a Security Governance Analyst, you will help shape and maintain our security governance posture across internal teams and third-party suppliers.

Your responsibilities will include:

• Supporting the development and documentation of security policies and ISMS improvements.
• Assisting with internal and external security audits, including ISO 27001 and Cyber Essentials.
• Supporting the supplier security assurance process, including onboarding, assessments, and monitoring.
• Collaborating on compliance tracking and regulatory reporting.
• Promoting security awareness through campaigns and simulations.
• Contributing to risk identification and mitigation activities across the organisation.

What makes you the ideal candidate for this role?
The following will help you excel in this role:

• A degree and 2+ years of experience in a GRC within Information Security.
• Strong working knowledge of ISO 27001, ISO 27005, Cyber Essentials, and supply chain security.
• Certifications in ISO 27001 Foundation, CRISC, or equivalent are a plus.
• Ability to manage multiple tasks with high attention to detail.
• Effective communicator with the ability to explain technical matters to diverse stakeholders.
• Proactive, collaborative, and eager to support continuous improvement in governance and risk practices.

If you are passionate about cybersecurity governance and take pride in building secure, compliant, and well-audited environments, we would love to hear from you. Join us in strengthening our security foundations and making a lasting impact across our global operations.

Deadline of application submission is on July 3, 2025, but may close early if we receive sufficient applications. Therefore, if you are interested, please submit your application as early as possible. Whilst not essential, it is very advantageous if you submit a Cover Letter alongside your CV.

Job Location
MANILA NET PARK OFFICE

Job Description
We are seeking a highly skilled and experienced professional to assume the role of Senior Manager, SAP Basis Security Governance. In this strategic position, you will support our SAP systems' "second line of defense" activities, ensuring compliance, risk management, vulnerability management, and control effectiveness across the entire SAP ecosystem, including the platform, database, and operating system. You will be responsible for establishing P&G's SAP Security Risk and Compliance Management framework, including controls monitoring and automation. Your expertise will be crucial in maintaining the integrity of our SAP landscape and supporting the organization's overall risk management framework. The SAP Security Governance Team oversees, assesses, and manages risk and compliance activities, develops and deploys the Risk and Compliance Management framework, and serves as an expert in the SAP Risk and Compliance domain.

In your role, you will govern key access management, technology controls, hardening, business continuity, resilience, and cybersecurity efforts in collaboration with the Director of SAP Security Second Line of Defense. You will play a critical role in ensuring the integrity, confidentiality, and availability of our SAP systems by governing the design and implementation of robust security measures, managing SAP vulnerabilities, and ensuring compliance with relevant regulations and standards. Additionally, you will help develop vulnerability remediation and risk management processes, help establish SAP security baseline and oversee its implementation. This role requires strategic partnerships with first line of defense teams, internal stakeholders, and external partners to design, adopt, and integrate effective controls while promoting control automation. The ideal candidate will possess in-depth working knowledge of Basis architecture, industry trends, standards, and proficiency with the latest cybersecurity tools and processes, contributing to a secure and efficient SAP environment that supports our business processes and objectives.

Job Responsibilities

• Provide technical governance and is responsible for reviewing and further evolving best practices, polices, standards, framework, guidelines and approach
• Contributes to IT project governance reviews and provides the necessary application governance in support of our standards
• Support the SAP Security Strategy and Governance Framework on an operational level, acting as both a controls framework specialist and control monitoring / automation tool specialist, supporting security related tasks across lines of defense
• Support the development, deployment, and continuous improvement of SAP risk management strategies and frameworks.
• Enforce compliance with relevant industry standards, regulations, and internal IT policies related to SAP systems.
• Work closely with internal audit teams to ensure SAP-related audits are conducted effectively and timely, addressing any findings or deficiencies.
• Design and implement robust control frameworks for SAP processes, collaborating with process owners and IT teams to ensure controls are practical and effective.
• Deliver and maintain incident response plans for SAP systems, ensuring the organization is prepared to address potential security breaches or operational disruptions.
• Establish proper governance to control and proactively spot problems, vulnerabilities, and changes in the underlying systems' risk profile.
• Help application, product, and information owners understand the overall risk profile so that the proper controls may be introduced.
• Proactively identify, assess, and manage inherent risks in our system and promote a risk-mitigating culture.
• Identify threats, risks, vulnerabilities, and relevant mitigation methods to support risk decisions and carry out security risk assessment operations.
• Stay up to date with SAP security trends, patches, and vulnerabilities to ensure the protection of SAP environments.
• Recommend improvements to security policies, role configurations, and user access processes.
• Foster strong working relationships with various customers, including IT, finance, legal, compliance, and external auditors, to align SAP second line of defense activities with broader organizational objectives.
• Support Director of SAP Security Governance: Risk and Compliance Management and be a part of a high-performing team responsible for SAP risk management, controls, and compliance activities.
• Support Director of SAP Security Governance: Risk and Compliance Management communicate risks and outages up to management and across lines of defense for remediation.

Required
Job Qualifications

• Bachelor's degree in business, Information Systems, or a related field
• Extensive experience (5+ years) in Audit, risk management, internal controls, compliance, or a related field, focusing on SAP systems.
• Extensive and broad-based experience and expertise with all stacks of SAP infrastructure and Application stack with demonstrated understanding of SAP Security, Risk, and compliance control within a large and diverse enterprise environment or business community.
• Knowledge of SAP Automation Tools such as; SAP Focus Run, SAP Solution Manager, Security Weaver, Security Bridge.
• Solid understanding of SAP processes, modules, and configurations, including ECC, S/4HANA, BTP, SAP Platform Basis, HANA DB, Integration, OS, and related technologies.
• Proficient in SAP security administration, encompassing OS and HANA database environments, including knowledge of authorization concepts, deployment, and implentation of security controls, conducting audits and vulnerability assessments, alignment to standard methodologies, user management, fix, collaboration with multi-functional teams, and risk mitigation.

Preferred

• Master's degree preferred in business, Information Systems, or a related field.
• Ideally, knowledge of the P&G information security framework and the SAP Enterprise Security Control Framework
• Demonstrable record of accomplishment of leading and managing multi-functional teams, fostering collaboration, and achieving results.
• Identifying key risks and controls, knowledge of Sarbanes Oxley readiness controls optimization, and configuring controls around security, business process, and within the GRC modules.
• Knowledge of IT SAP security tools such as code scanners, GRC tools, or tools for SAP SoD monitoring.
• Relevant certifications such as Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), SAP HANATEC or equivalent are a plus. Experience in working with regulatory requirements and industry standards (e.g., SOX, GDPR) about SAP systems.
• Knowledge of the NIST cybersecurity framework.
• Traditional/waterfall and agile project management skills, strong analytical and problem-solving abilities, with keen attention to detail
• Leading teams to generate a vision, establish direction and motivate members, create an atmosphere of trust, leverage diverse views, coach staff, and encourage improvement and innovation.

About Us
We produce globally recognized brands and we grow the best business leaders in the industry. With a portfolio of trusted brands as diverse as ours, it is paramount our leaders are able to lead with courage the vast array of brands, categories and functions. We serve consumers around the world with one of the strongest portfolios of trusted, quality, leadership brands, including Always, Ariel, Gillette, Head & Shoulders, Herbal Essences, Oral-B, Pampers, Pantene, Tampax and more. Our community includes operations in approximately 70 countries worldwide.

Visit  to know more.

We are an equal opportunity employer and value diversity at our company. We do not discriminate against individuals on the basis of race, color, gender, age, national origin, religion, sexual orientation, gender identity or expression, marital status, citizenship, disability, HIV/AIDS status, or any other legally protected factor.

Job Schedule
Full time

Job Number
R

Job Segmentation
Experienced Professionals (Job Segmentation)

About Jardine Service Centre Philippines (JSC)

Jardine Service Centre Philippines is an organization fully owned by Jardine Matheson Group which is a diversified Asian-based group with unsurpassed experience in the region, having been founded in 1832. JSC is responsible for providing back-office support to the business units of Jardine Group by administrating transactional and rule-based activities. We aim to deliver world-class services to our internal customers in a cost-efficient manner via process harmonization, application of state-of-the-art technologies, automation and process simplification.

We are looking for an Assistant Information Security Manager professional to assist the company and its business units in driving initiatives to improve cybersecurity governance and risk practices. The ideal candidate will have experience in cybersecurity awareness, policy enhancements, and risk mitigation, with the ability to lead a small team and collaborate with business unit representatives to deliver initiatives effectively.

Key Responsibilities:

Governance & Risk management

• Inform management, IT and security teams about the latest cybersecurity incidents, threats, and trends to inform risk management activities and integrate security measures into operational processes.
• Lead development or regular updates of security policies, procedures, and other deliverables in collaboration with technical specialists and business security teams.
• Advise businesses on global data privacy and security laws, regulations, and best practices, such as GDPR, China Cybersecurity Law, ISO 27001, etc.
• Drive maturity improvements by incorporating best practices and thought leadership into risk management and governance procedures and drive education and adoption.

Cybersecurity awareness and communication

• Develop learning and awareness programs to cultivate a culture of cybersecurity across the Group's businesses, using modern learning tools and practices.
• Ensure that security awareness programs address current threat landscape and meet applicable industry regulations, standards, and compliance requirements.
• Develop, maintain, and manage training programs; verify effectiveness of training, such as via phishing tests.

Qualifications & Skills:

• Bachelor's Degree in an IT/Computer related course.
• At least 5 years of working experience in Information Security or IT Audit fields.
• At least 3 years in cybersecurity or information security.
• Excellent writing skills, well organized and attentive to detail.
• Highly conversant in English language.
• Background or experience in IT risk, audit, governance, security awareness training and project management.
• Critical thinking skills with strong attention to detail and follow-up
• Background in IT technologies, processes, and security operations.
• Collaborative, responsible and has personal accountability.
• Able to work with a team and individually with minimal guidance.
• Resourceful, curious to learn and can adapt on emerging security technologies and platforms.

Preferred Qualifications:

• Knowledge of various guides and security frameworks. (NIST, MITRE, CIS, ISO 27001, CVE, etc)
• Knowledge of IOCs, OWASP and types of attacks, malwares, threat actor and vulnerability.
• Knowledge in different security monitoring platforms and cloud technologies.
• Experienced working in a global or regional environment.
• At least One (1) Industry related Security certification (CISA, CISM, ISO27001 LA/LI, CISSP, etc).

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

At JSC, you can play a role in our business success. We understand that key to our success is our people, which is our foundation and priority. We invest in our people to ensure we have the right talent with the leadership and strategic skills the company needs for the future.

We are an equal opportunity employer and do not discriminate on the grounds of sex, race, disability, family status or any other factors.

Come and explore with us

Reference Number

Position Level

TL5

Department

Information Technology Department

Division

Cybersecurity and Compliance Unit, ITD

Location

Asian Development Bank Headquarters

Date Posted

Tuesday, August 19, 2025

Closing Date

Tuesday, September 2, :59 p.m Manila Time, 0800 GMT)

Join Our Mission to Foster Prosperity in Asia

Are you ready to make a difference on the future of Asia and be a catalyst for positive change? We are thrilled to offer a unique opportunity to become an important part of the prestigious Asian Development Bank (ADB). At ADB, our mission is simple yet powerful: to alleviate poverty and promote sustainable development in the Asia-Pacific region.

Organizational Setting and Reporting Relationship

The position is assigned in the Cybersecurity and Compliance Unit (ITOD-CS) within the Information Technology Department (ITD). ITD manages the information systems and technology services required for ADB's Headquarters and Field Offices. ITOD-CS sets the Information Security standards, policies, incident management and Business Continuity approaches for Technology within ADB. The team also monitors compliance with the standards and policies within ITD.

You will be based at our Headquarters in Manila, Philippines. You will report to the Designated Technical International Staff and Senior Officer (as applicable).

Your position title upon appointment is IT Officer (Information Security).

Your Role

As an IT Officer (Security Governance and Architecture), you will oversee the cybersecurity safeguards throughout the system development life cycle (SDLC) for ADB's IT systems and services. You will work closely with other teams in ITD and business users of ADB's systems to ensure they understand the security requirements and enforce the agreed security controls.

You will:

• Facilitate the end-to-end security clearance process for new solution deployments and IT projects by working closely with project/deployment teams to understand the security architecture, draft the security clearance checklist by identifying applicable security controls based on the nature of the IT project/solution and guide on how to fulfill these requirements.
• Oversee the end-to-end security testing process for ADB's business applications and underlying infrastructure to ensure that security findings are addressed, well-documented, and remediated.
• Assess the day-to-day IT change requests (e.g. system enhancements) and ad-hoc consultations from ITD teams and advise applicable security requirements.
• Work closely with project/deployment teams, change administrators, and other relevant teams to guide compliance with security requirements.
• Work closely with ITD risk focal and action owners to monitor the closure of operational risks identified (e.g., due to non-compliance with security requirements).
• Operate security tools/platforms (e.g. web application firewalls) and assist in the enhancement/replacement of these tools.
• Prepare technical evaluation criteria for evaluating security solutions and facilitate request for proposals and proof-of-concept tests.
• Support the cyber security due diligence process of third-party technology solution/service providers.
• Develop, update, or revise cybersecurity architecture standards, guardrails, and processes.
• Develop security training materials, such as presentations and handouts.
• Identify opportunities to improve or strengthen security controls or processes in own areas of work.
• Assist in conducting risk assessments from a security architecture perspective.
• Take up other duties and tasks as assigned.

You will need:

• Bachelor's degree in any IT-related domains, such as Information Systems Management, Information Security, or Computer Science preferably with advance training.
• At least 8 years relevant work experience in IT Security. Relevant certifications in IT security / governance such as CISSP, CISA, CISM, GSEC are highly favored.
• Knowledge in cybersecurity and IT governance frameworks and standards such as NIST CSF, SWIFT CSCF, CIS, COBIT, ITIL, and ISO 27000 series. Actual experience in their implementation and operation is an advantage.
• Fundamental knowledge of cloud computing technologies, such as Microsoft Azure, Amazon Web Services. Relevant experiences and / or certifications are an advantage.
• Basic knowledge about penetration testing methodologies, tools and findings (such as those from OWASP). Actual experience and / or certifications (such as those from Offensive Security or GIAC) are an advantage.
• Demonstrated critical thinking skills to perform security analysis needed in the design, review, or assessment of system architecture, application functions and IT infrastructure.
• Strong communication and interpersonal skills and ability to operate in a matrixed environment, and the ability to articulate / present ideas in a verbal or written context.
• High attention to details and a methodical approach to daily tasks.
• Proficiency in productivity tools like Microsoft 365, Power Platform.
• Please refer to the link for ADB Competency Framework for Technical Local Staff grade 5.

Benefits

ADB offers a rewarding salary and a comprehensive benefits package. The salary will be based on ADB's standards and comparator markets, taking into account your qualifications and experience.

• Retirement plan
• Medical and health benefits
• Paid leave (including parental)
• Life and other insurance plans
• Staff development

Additional Information

This appointment is open to internal and external applicants.

This is a fixed term appointment with option to renew, initially for a period of up to 3 years, or up to the Normal Retirement Date (NRD), whichever comes earlier, for the purpose(s) and conditions determined by ADB, in accordance with Administrative Order No Recruitment and Appointment). After the initial fixed-term period, ADB may choose to renew the appointment for up to an additional 3 years or not renewed. This decision will be made in the overall interest of ADB, based on factors including but not limited to the requirement of Staff's particular blend of skills and experience for the medium-term work program of the organizational unit, sufficient funding to cover the renewed period, and Staff's performance and suitability for employment. There is no limit to the number of renewals up to NRD. However, this appointment is not convertible to a regular appointment.

About Us

Asian Development Bank (ADB) is an international development finance institution headquartered in Manila, Philippines and is composed of 69 members, 50 of which are from the Asia and Pacific region. ADB is committed to achieving a prosperous, inclusive, resilient, and sustainable Asia and the Pacific, while sustaining its efforts to eradicate extreme poverty. ADB combines finance, knowledge, and partnerships to fulfill its expanded vision under our Strategy 2030.

ADB only hires nationals of its 69 members.

To view ADB Organizational Chart, please click here.

ADB wants to ensure that everyone is treated with respect and given equal opportunities to work in an inclusive environment. ADB encourages all qualified candidates to apply regardless of their racial, ethnic, religious and cultural background, gender, sexual orientation or disabilities. Women are highly encouraged to apply.

Visit ADB Careers FAQ for more information.

Stay up to date Subscribe to our newsletter and get the latest issues, news, events, jobs and data in your e-mail inbox.

Role & Responsibilities:

We are looking for a driven and experienced Manager – Service Governance to oversee and strengthen the organization's service governance framework. This position plays a key role in ensuring that service delivery supports business goals, adheres to regulatory standards, and consistently enhances quality, efficiency, and customer satisfaction.

Governance & Compliance:

• Develop, implement, and manage service governance frameworks, policies, and procedures.
• Ensure compliance with ITIL methodologies and recognized industry standards.
• Oversee adherence to both contractual obligations and regulatory requirements.

Performance Monitoring:

• Establish and monitor KPIs and SLAs to assess and optimize service performance.
• Conduct regular service performance reviews with both internal teams and external partners.
• Identify performance gaps and collaborate with service owners to implement necessary improvements.

Vendor & Stakeholder Management:

• Coordinate with external service providers to ensure alignment with service-level commitments.
• Partner with internal departments to integrate governance practices with organizational objectives.

Risk Management:

• Recognize potential risks in service delivery and governance processes and create mitigation plans.
• Take part in audits, reviews, and risk evaluation activities.

Continuous Improvement:

• Champion initiatives that enhance service quality and governance efficiency.
• Lead activities such as Root Cause Analysis (RCA), Problem Management, and Lessons Learned sessions to drive ongoing improvement.

Requirements:

• Bachelor's degree in Information Technology, Business Administration, or a related discipline.
• Minimum of 7 years of experience in service management or IT governance, including 3 years in a leadership role.
• ITIL v4 Foundation certification required (Intermediate or Expert level preferred).
• Strong analytical thinking, reporting, and stakeholder engagement abilities.
• Excellent communication and leadership skills.
• Proficiency in ITSM platforms such as ServiceNow, BMC Remedy, or Jira Service Management.

Job Type: Full-time

Pay: Php80, Php150,000.00 per month

Benefits:

• Additional leave
• Company Christmas gift
• Company events
• Employee discount
• Free parking
• Health insurance
• Life insurance
• Opportunities for promotion
• Paid training
• Pay raise
• Promotion to permanent employee
• Transportation service provided

Work Location: In person

Skills & Experience

Mandatory

o Knowledge of latest ISO 27001 standard, PCI DSS, and HIPAA.

o Internal and External audit experience of ISO standards ISO 27001.

o Knowledge and audit experience of HIPAA compliance and HITRUST requirements.

o Should have knowledge/hand on experience on working on SOC 2/ HITRUST/PCI DSS,

requirements.

o Should have hands-on experience in VAPT, Vulnerability management, and cyber

security management.

o Should have knowledge of the basic ITGC controls/Information Security.

o Certified Lead Auditor for ISMS and Certified PCI DSS implementor.

o Experience in coordinating with vendors and internal stakeholders for different

compliance and information security tasks.

o Should have knowledge of BCP/DR and conduct BCP tests.

o Experience in handling Risk Management Audits, Risk Registers, BIA processes.

o Knowledge and experience of Risk Management standards i.e. ISO 31000.

o Knowledge and experience of all BCM implementation based on ISO 22301.

o Good written and verbal communication skills.

Desired

o Knowledge of Information Security.

o Knowledge of PCI DSS and VAPT assessments.

o Knowledge of SOC 2, HIPAA and HITRUST Audits.

o Hands on experience of managing BCP incidents.

Job Type: Full-time

Pay: Up to Php130,000.00 per month

Benefits:

• Paid training

Work Location: In person

As the
AVP for Internal Audit and Regulatory Response,
you will help sustain the operational requirements of the Security and Architecture Group (SAG) - MNL Governance, Risk and Compliance, including the Audit and Controls Assurance function. Currently, these responsibilities are being handled full-time by one person and part-time by the SAG MNL Head. With the addition of a new permanent staff member, we are expanding our capacity to focus more deeply on regulatory compliance and advisory efforts.

How You'll Make an Impact

• Assists the Cybersecurity Manager in preparing regular reports to Management, including internal controls assessments, analysis of newly released Information Security or Cybersecurity regulations, and policy compliance with Head Office and regional standards for the MNL Branch.
• Supports in monitoring control programs and remediation activities and help coordinate internal and external system and information security audits.
• Help maintain IS policies and procedures and assist in administering reviews related to overall system security compliance programs.
• Conduct assessments to identify potential risk and root causes of ineffective IS controls and provide actionable recommendations for resolution.
• Perform other duties as assigned by GPAPD Management and Cybersecurity Manager, as needed.

What Sets You Apart

• Graduate of Computer Science, Accountancy, or related course
• Solid understanding and hands-on experience with Identity Access Management (IAM)
• Brings at least 5 years of experience in Information Security, Technology Risk, or Operational Risk
• Upholds ethical business practices, doing the right thing while ensuring full compliance with internal controls and legal/regulatory standards
• Strong problem-solving skills and can adapt quickly when demands and priorities shift
• You use relevant information to make sound, informed recommendations
• You collaborate well with others and communicate effectively across teams and cultures
• You're open-minded and flexible in your interactions with others
• You have a good aptitude for learning and mastering new technology
• Oral and written communication skills are clear, professional, and effective

OPENTEXT - THE INFORMATION COMPANY

OpenText is a global leader in information management, where innovation, creativity, and collaboration are the key components of our corporate culture. As a member of our team, you will have the opportunity to partner with the most highly regarded companies in the world, tackle complex issues, and contribute to projects that shape the future of digital transformation.

AI-First. Future-Driven. Human-Centered.

At OpenText, AI is at the heart of everything we do—powering innovation, transforming work, and empowering digital knowledge workers. We're hiring talent that AI can't replace to help us shape the future of information management. Join us.

The Opportunity:

The Manager, Security Operation Center is a member of the Information Protection Center team reporting to the Sr. Manager, Information Security. This position works across Corporate and Production teams to ensure the successful implementation of security tools, services, and technology. The Security operations center manager provides oversight and management of the SOC including security operations management and security incident response, incident detection and analysis, containment, and eradication of cybersecurity incidents. This position will manage resources, priorities, and internal projects, and manage the team directly when responding to business-critical security incidents. Ideally, this role will 8-5pm eastern standard time.

You Are Great At:

• Defining, managing, and implementing a comprehensive SOC service
• Be a leader in the expansion and growth of the SOC
• Lead the response to significant Security incidents, ensuring the SOC teams effective response
• Collaborate with client technical teams for issue resolution and mitigation
• Organizing and prioritizing assessments of security controls and services to ensure accurate coverage reporting and identification of coverage gaps
• Review personnel resources daily to assess workload and quality of work
• Coordinate with Incident Response, Threat Intelligence and Threat Hunting teams to create post-incident feedback loop to educate SOC analysts and enhance detection capability
• Implementing tools and processes to automate and visualize security metrics, reporting, and dashboards for varying audiences
• Develop and maintain Standard Operating Procedures for security analyst roles and responsibilities
• Interfacing with internal audit and compliance teams to produce required security artifacts
• Overseeing technical coordination/project management for security initiatives, projects, and integration of security tools and services
• Coordinating risk assessments for requested deviation to security policy/controls
• Security monitoring, managing security cases& tickets, security incident analysis, and other security tasks.
• Responding to incidents varying from endpoint to server systems
• Researching security advisories, e.g., CERT, and delivering appropriate course of action
• Creating documentation to ensure all team members can perform required tasks
• Creating meaningful and detailed metrics based on security events or activities
• Collecting evidence and artifacts to meet compliance requirements (ISO, SOX, HIPAA, SOC, etc.)
• Optimizing day-to-day shift resources and needs
• Ensuring appropriate staffing and coverage for assigned shifts
• Managing and communicating up effectively to leadership regarding staffing needs, events that occurred, etc

What It Takes:

• Creating and refining metrics to articulate and measure SOC performance.
• Knowledge and experience managing a SOC and security operations
• Experience in a delivery, operational or security program management role and previous experience in a leadership or supervisory role
• Demonstrated experience generating metrics to measure service and program effectiveness
• Understanding of compliance frameworks, like PCI, ISO 27001, NIST, etc.
• Excellent analytical skills, troubleshooting and problem solving
• Must be able to work in a fast paced and changing environment while handling multiple tasks, priorities, and directives. Capable of working under pressure.
• Excellent English writing and verbal communication skills
• BS in Computer Science, Cyber Security, or Information Security preferred
• 7+ years of information security experience
• 4+ years of experience working in a Security Operations Center
• 3+ years of experience managing a Security Operations Center
• CISSP, CISA, CISM, or other industry certifications preferred

OpenText's efforts to build an inclusive work environment go beyond simply complying with applicable laws. Our Employment Equity and Diversity Policy provides direction on maintaining a working environment that is inclusive of everyone, regardless of culture, national origin, race, color, gender, gender identification, sexual orientation, family status, age, veteran status, disability, religion, or other basis protected by applicable laws.

If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please contact us Our proactive approach fosters collaboration, innovation, and personal growth, enriching OpenText's vibrant workplace.