20 Security Leader jobs in the Philippines
SAP Platform Security Leader Operations and Audit & Compliance
Manila, Metropolitan Manila
Procter & Gamble
Posted 19 days ago
Job Viewed
Job Description
Job Location
MANILA SIX/NEO OFFICE
Job Description
We seek a highly skilled and experienced professional to assume the Senior Manager of SAP Platform Security Operations and Audit & Compliance role. In this high impact position, you will support all security aspects beneath our SAP Basis Application - including Infrastructure, Operating Systems, Databases, and any horizontal software components shared across multiple applications. Your technical expertise will be crucial in maintaining the integrity of our SAP landscape and supporting the organization's overall security operations - including ensuring audit & compliance requirements and delivering key security projects.
As a Senior Security Engineer, you will be responsible for enhancing the security posture of our organization. You will handle day-to-day design, build, implementation, testing, deployment/release management, and monitoring of security solutions and platforms. You will engage in information security projects that evaluate existing security infrastructure and propose changes as defined by security leadership and architects. Additionally, you will communicate vulnerability results in a manner understood by technical and non-technical business units based on risk tolerance and threat to the business and gain support through influential messaging.
The SAP Platform Security Operations and Audit & Compliance Team oversees, assesses, and manages:
+ Security approach driven by business, compliance, and regulatory requirements.
+ Security solutions that align with the key principles outlined within P&G's Info Security policies.
+ Security structure that imposes the minimum administrative overhead from a sustainability perspective.
+ Restrict access authorizations to the user's job requirements and responsibilities.
+ Provide expertise, best practices, and guidance on SAP security standards.
+ Provide appropriate security monitoring to reduce the risk of any audit & compliance deviations.
Key Responsibilities:
Support the SAP Security Operations & Audit & Compliance Team on an operational level. He/she will deliver support that is consistent, of the highest quality, and complete as it relates to all security aspects beneath our SAP Basis Application - including Infrastructure, Operating Systems, Databases, and any horizontal software components shared across multiple applications.
+ Handle day-to-day design, build, implementation, testing, deployment/release management, and monitoring of security solutions and platforms.
+ Engage in information security projects that evaluate existing security infrastructure and propose changes as defined by security leadership and architects.
+ Communicate vulnerability results in a manner understood by technical and non-technical business units based on risk tolerance and threat to the business.
+ Identify, analyze, and respond to malicious behaviors from a variety of sources and create action plans to mitigate future incidents.
+ Research new tactics, techniques, and procedures (TTPs) in public and closed forums, assessing risk and implementing/validating controls as necessary through the CI/CD pipeline.
Job Qualifications
+ Extensive experience (6+ years) in SAP Platform Security, SAP Basis, HANA DB, internal controls, compliance, or a related field, focusing on SAP systems.
+ Extensive and broad-based experience and expertise with all stacks of SAP Infrastructure and Application stack with demonstrated understanding of SAP Security and Compliance within a large and diverse enterprise environment or business community.
+ Strong understanding of SAP processes, modules, and configurations, including ECC, S/4HANA, BTP, SAP Platform, Basis, Integration, OS, and related technologies.
+ Ideally, knowledge of the P&G information security framework and SAP Enterprise Security Control
+ Knowledge of IT SAP security tools such as code scanners, GRC tools, or tools for SAP SoD monitoring.
+ Relevant certifications such as ITIL, SAP HANATEC, Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or equivalent are a plus.
+ Excellent communication, presentation, and interpersonal skills.
+ Ability to manage conflicting priorities and multiple tasks incl. reasoning and problem-solving skills (especially in the task force phase).
+ Traditional/waterfall and agile project management skills.
+ Strong analytical and problem-solving abilities, with keen attention to detail.
+ Experience in working with regulatory requirements and industry standards (e.g., SOX, GDPR) SAP systems.
+ Create an atmosphere of trust, leverage diverse views, and encourage improvement and innovation.
+ Prior success in roles managing in a professional services firm or large enterprise as a consultant, auditor or business process specialist is preferred.
+ Demonstrates breadth of applied IT skills across at least two IT job profiles.
+ Applies Integrated Risk Management, IT Operations, IT Project Management, and Enterprise Architecture skills relevant to the work.
+ Requires at least two relevant roles with experience managing or influencing people or organizations to achieve significant IT outcomes.
+ Demonstrates ability to define strategy and leads the delivery and transformation of business outcomes through IT within major sub-OU services, products, or programs.
About us
We produce globally recognized brands and we grow the best business leaders in the industry. With a portfolio of trusted brands as diverse as ours, it is paramount our leaders are able to lead with courage the vast array of brands, categories and functions. We serve consumers around the world with one of the strongest portfolios of trusted, quality, leadership brands, including Always®, Ariel®, Gillette®, Head & Shoulders®, Herbal Essences®, Oral-B®, Pampers®, Pantene®, Tampax® and more. Our community includes operations in approximately 70 countries worldwide. Visit to know more.
We are an equal opportunity employer and value diversity at our company. We do not discriminate against individuals on the basis of race, color, gender, age, national origin, religion, sexual orientation, gender identity or expression, marital status, citizenship, disability, HIV/AIDS status, or any other legally protected factor.
"At P&G, the hiring journey is personalized every step of the way, thereby ensuring equal opportunities for all, with a strong foundation of Ethics & Corporate Responsibility guiding everything we do.
All the available job opportunities are posted either on our website - pgcareers.com, or on our official social media pages, for the convenience of prospective candidates, and do not require them to pay any kind of fees towards their application."
Job Schedule
Full time
Job Number
R000132511
Job Segmentation
Experienced Professionals
MANILA SIX/NEO OFFICE
Job Description
We seek a highly skilled and experienced professional to assume the Senior Manager of SAP Platform Security Operations and Audit & Compliance role. In this high impact position, you will support all security aspects beneath our SAP Basis Application - including Infrastructure, Operating Systems, Databases, and any horizontal software components shared across multiple applications. Your technical expertise will be crucial in maintaining the integrity of our SAP landscape and supporting the organization's overall security operations - including ensuring audit & compliance requirements and delivering key security projects.
As a Senior Security Engineer, you will be responsible for enhancing the security posture of our organization. You will handle day-to-day design, build, implementation, testing, deployment/release management, and monitoring of security solutions and platforms. You will engage in information security projects that evaluate existing security infrastructure and propose changes as defined by security leadership and architects. Additionally, you will communicate vulnerability results in a manner understood by technical and non-technical business units based on risk tolerance and threat to the business and gain support through influential messaging.
The SAP Platform Security Operations and Audit & Compliance Team oversees, assesses, and manages:
+ Security approach driven by business, compliance, and regulatory requirements.
+ Security solutions that align with the key principles outlined within P&G's Info Security policies.
+ Security structure that imposes the minimum administrative overhead from a sustainability perspective.
+ Restrict access authorizations to the user's job requirements and responsibilities.
+ Provide expertise, best practices, and guidance on SAP security standards.
+ Provide appropriate security monitoring to reduce the risk of any audit & compliance deviations.
Key Responsibilities:
Support the SAP Security Operations & Audit & Compliance Team on an operational level. He/she will deliver support that is consistent, of the highest quality, and complete as it relates to all security aspects beneath our SAP Basis Application - including Infrastructure, Operating Systems, Databases, and any horizontal software components shared across multiple applications.
+ Handle day-to-day design, build, implementation, testing, deployment/release management, and monitoring of security solutions and platforms.
+ Engage in information security projects that evaluate existing security infrastructure and propose changes as defined by security leadership and architects.
+ Communicate vulnerability results in a manner understood by technical and non-technical business units based on risk tolerance and threat to the business.
+ Identify, analyze, and respond to malicious behaviors from a variety of sources and create action plans to mitigate future incidents.
+ Research new tactics, techniques, and procedures (TTPs) in public and closed forums, assessing risk and implementing/validating controls as necessary through the CI/CD pipeline.
Job Qualifications
+ Extensive experience (6+ years) in SAP Platform Security, SAP Basis, HANA DB, internal controls, compliance, or a related field, focusing on SAP systems.
+ Extensive and broad-based experience and expertise with all stacks of SAP Infrastructure and Application stack with demonstrated understanding of SAP Security and Compliance within a large and diverse enterprise environment or business community.
+ Strong understanding of SAP processes, modules, and configurations, including ECC, S/4HANA, BTP, SAP Platform, Basis, Integration, OS, and related technologies.
+ Ideally, knowledge of the P&G information security framework and SAP Enterprise Security Control
+ Knowledge of IT SAP security tools such as code scanners, GRC tools, or tools for SAP SoD monitoring.
+ Relevant certifications such as ITIL, SAP HANATEC, Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or equivalent are a plus.
+ Excellent communication, presentation, and interpersonal skills.
+ Ability to manage conflicting priorities and multiple tasks incl. reasoning and problem-solving skills (especially in the task force phase).
+ Traditional/waterfall and agile project management skills.
+ Strong analytical and problem-solving abilities, with keen attention to detail.
+ Experience in working with regulatory requirements and industry standards (e.g., SOX, GDPR) SAP systems.
+ Create an atmosphere of trust, leverage diverse views, and encourage improvement and innovation.
+ Prior success in roles managing in a professional services firm or large enterprise as a consultant, auditor or business process specialist is preferred.
+ Demonstrates breadth of applied IT skills across at least two IT job profiles.
+ Applies Integrated Risk Management, IT Operations, IT Project Management, and Enterprise Architecture skills relevant to the work.
+ Requires at least two relevant roles with experience managing or influencing people or organizations to achieve significant IT outcomes.
+ Demonstrates ability to define strategy and leads the delivery and transformation of business outcomes through IT within major sub-OU services, products, or programs.
About us
We produce globally recognized brands and we grow the best business leaders in the industry. With a portfolio of trusted brands as diverse as ours, it is paramount our leaders are able to lead with courage the vast array of brands, categories and functions. We serve consumers around the world with one of the strongest portfolios of trusted, quality, leadership brands, including Always®, Ariel®, Gillette®, Head & Shoulders®, Herbal Essences®, Oral-B®, Pampers®, Pantene®, Tampax® and more. Our community includes operations in approximately 70 countries worldwide. Visit to know more.
We are an equal opportunity employer and value diversity at our company. We do not discriminate against individuals on the basis of race, color, gender, age, national origin, religion, sexual orientation, gender identity or expression, marital status, citizenship, disability, HIV/AIDS status, or any other legally protected factor.
"At P&G, the hiring journey is personalized every step of the way, thereby ensuring equal opportunities for all, with a strong foundation of Ethics & Corporate Responsibility guiding everything we do.
All the available job opportunities are posted either on our website - pgcareers.com, or on our official social media pages, for the convenience of prospective candidates, and do not require them to pay any kind of fees towards their application."
Job Schedule
Full time
Job Number
R000132511
Job Segmentation
Experienced Professionals
This advertiser has chosen not to accept applicants from your region.
0
IT Security Specialist
Ortigas, National Capital Region
Hunters hub Incorporated
Posted 11 days ago
Job Viewed
Job Description
-Computer Science or Information Technology Graduate (non-nego)
-With background in Information Technology and Information Security experience will be an advantage (non-nego) br>-Basic programming skills/knowledge in process enhancements. (non-nego)
-Experience or knowledge with Active Directory (non-nego)
-Nature of work is on shifting schedule (7am-4pm / 8:30am-5:30pm & 10am-7pm) Shifting schedule Mondays-Saturday
- Fresh graduates are welcome to appy
-With background in Information Technology and Information Security experience will be an advantage (non-nego) br>-Basic programming skills/knowledge in process enhancements. (non-nego)
-Experience or knowledge with Active Directory (non-nego)
-Nature of work is on shifting schedule (7am-4pm / 8:30am-5:30pm & 10am-7pm) Shifting schedule Mondays-Saturday
- Fresh graduates are welcome to appy
This advertiser has chosen not to accept applicants from your region.
1
Workday Security Specialist
Manila, Metropolitan Manila
Fresenius Medical Care North America
Posted 6 days ago
Job Viewed
Job Description
The role can be located in any of our GBS location:
- India - Bangalore
- Philippines - Manila
- Poland - Wrocław
**PURPOSE AND SCOPE:**
The Workday Security Specialist plays a key role in the organization by analyzing, designing, and applying solution approaches for Security specific requirements and changes, for production configuration changes in Implementation projects, Change Requests and for break/fixes in the support model going forward. This individual is responsible for the correct Security configuration and maintenance in Workday, based on approved and aligned requirements, approaches and policies in collaboration with the relevant stakeholders like global process owners and Functional SMEs. This role follows global vs local change guidelines, as well as data privacy/compliance requirements. This role prepares audits regarding security and access working closely with HR and functional configuration SMEs. This individual will provide role assignments to users based on approved requests
**PRINCIPAL DUTIES AND RESPONSIBILITIES:**
+ Configure Business Process Security Policies and Domain Securities across functional areas including Core HCM, Recruiting, Benefits, Absence (Time Off and Leave), Compensation, Adv Comp, Talent and Reporting
+ Research and help resolve day-to-day configurable security challenges
+ Collaborates with Data Privacy, Functional SMEs, and HR to ensure Security is configured according to our Global Design and adheres to Privacy and Compliance requirements
+ Help identify new enhancements, review feature releases for configurable Security
+ Prepare, execute and troubleshoot Security issues during testing
+ Support company audits on Workday Security
+ Ensure access of Workday Tenants through role assignment gathering activities
+ Understand the business and HR requirements suggesting solutions with pros and cons and improvements when and where applicable in close collaboration with the HR stakeholders on Workday Security
+ Define role-based and user-based security, and aligns with functional SMEs to ensure business processes reflect the agreed upon roles
+ Max. 10% travel
**EDUCATION AND REQUIRED CREDENTIALS:**
+ Bachelor's Degree; Advanced Degree desirable or an equivalent combination of education and experience
**EXPERIENCE AND SKILLS** **:**
+ Minimum 1-2 years professional experience with Workday, experience in HCM implementation Security Configuration and role assignment maintenance Knowledge in Workday Security Configuration
+ Knowledge in Workday Security Configuration
+ Experience within a global company as employee or as a consultant implementing and/or supporting Workday Security
+ Customer facing support experience
+ Experience with Data Privacy and Audit requirements
+ Analytical and conceptual skills and data/fact driven approach to problem solving
+ Strong attention to detail
+ Strong communication skills with service-oriented thinking
+ Ability to work and deliver results across geographies and effectively engage different people and teams
+ Business English
- India - Bangalore
- Philippines - Manila
- Poland - Wrocław
**PURPOSE AND SCOPE:**
The Workday Security Specialist plays a key role in the organization by analyzing, designing, and applying solution approaches for Security specific requirements and changes, for production configuration changes in Implementation projects, Change Requests and for break/fixes in the support model going forward. This individual is responsible for the correct Security configuration and maintenance in Workday, based on approved and aligned requirements, approaches and policies in collaboration with the relevant stakeholders like global process owners and Functional SMEs. This role follows global vs local change guidelines, as well as data privacy/compliance requirements. This role prepares audits regarding security and access working closely with HR and functional configuration SMEs. This individual will provide role assignments to users based on approved requests
**PRINCIPAL DUTIES AND RESPONSIBILITIES:**
+ Configure Business Process Security Policies and Domain Securities across functional areas including Core HCM, Recruiting, Benefits, Absence (Time Off and Leave), Compensation, Adv Comp, Talent and Reporting
+ Research and help resolve day-to-day configurable security challenges
+ Collaborates with Data Privacy, Functional SMEs, and HR to ensure Security is configured according to our Global Design and adheres to Privacy and Compliance requirements
+ Help identify new enhancements, review feature releases for configurable Security
+ Prepare, execute and troubleshoot Security issues during testing
+ Support company audits on Workday Security
+ Ensure access of Workday Tenants through role assignment gathering activities
+ Understand the business and HR requirements suggesting solutions with pros and cons and improvements when and where applicable in close collaboration with the HR stakeholders on Workday Security
+ Define role-based and user-based security, and aligns with functional SMEs to ensure business processes reflect the agreed upon roles
+ Max. 10% travel
**EDUCATION AND REQUIRED CREDENTIALS:**
+ Bachelor's Degree; Advanced Degree desirable or an equivalent combination of education and experience
**EXPERIENCE AND SKILLS** **:**
+ Minimum 1-2 years professional experience with Workday, experience in HCM implementation Security Configuration and role assignment maintenance Knowledge in Workday Security Configuration
+ Knowledge in Workday Security Configuration
+ Experience within a global company as employee or as a consultant implementing and/or supporting Workday Security
+ Customer facing support experience
+ Experience with Data Privacy and Audit requirements
+ Analytical and conceptual skills and data/fact driven approach to problem solving
+ Strong attention to detail
+ Strong communication skills with service-oriented thinking
+ Ability to work and deliver results across geographies and effectively engage different people and teams
+ Business English
This advertiser has chosen not to accept applicants from your region.
2
Technology Security Specialist
NCR
Career Connect
Posted 456 days ago
Job Viewed
Job Description
Your key responsibilities will be:
Represent information security organization in large IT integration projects.To participate in ACE Rapid Risk Reduction program by reviewing configuration and technology design documentation, evaluating potential security issues, and defining associated risks and mitigation steps.Preparation of executive summary reports.Assisting local technical teams with vulnerability remediation activities identified by immune systems.Maintaining remediation burndown list containing the latest status and plans.Management of acquisition related compliance and support requests.Proper escalation of challenges and problems complicating vulnerabilities remediation.Close cooperation with Security Posture Management team on regular reporting.RequirementsIdeal candidate should have the following skills and experience:
3+ years of work experience in IT, Information Security or similar.Good understanding of information security paradigms.Basic knowledge of network security concepts.Basic server administration skills.Basic understanding of security in Azure, AWS, GCP.Confident written and verbal communication skills in English. Nice to have: • IT certification such as CISSP, CISA, ISO 27001 LA, or Security+.
This advertiser has chosen not to accept applicants from your region.
3
Information Security Auditor
AECOM
Posted 4 days ago
Job Viewed
Job Description
**Company Description**
**Work with Us. Change the World.**
At AECOM, we're delivering a better world. Whether improving your commute, keeping the lights on, providing access to clean water, or transforming skylines, our work helps people and communities thrive. We are the world's trusted infrastructure consulting firm, partnering with clients to solve the world's most complex challenges and build legacies for future generations.
There has never been a better time to be at AECOM. With accelerating infrastructure investment worldwide, our services are in great demand. We invite you to bring your bold ideas and big dreams and become part of a global team of over 50,000 planners, designers, engineers, scientists, digital innovators, program and construction managers and other professionals delivering projects that create a positive and tangible impact around the world.
We're one global team driven by our common purpose to deliver a better world. Join us.
**Job Description**
**Job Brief**
The primary function is to perform advisory and assurance projects of Audit Services Group (ASG) focused on IT, information security and data privacy risks. ASG is responsible for evaluating the adequacy and effectiveness of the company's systems of internal controls that guide company activities toward accomplishing key business objectives.
**Duties and Responsibilities**
+ Participate in planning, scoping and execution of risk-based IT, information security, and data privacy assurance and advisory projects in accordance with the Institute of Internal Auditors (IIA) and ASG standards
+ Perform test of design and operating effectiveness of controls
+ Effectively communicate audit results to management
+ Work with stakeholders to develop actions plans that address root cause of findings
+ Anticipate the impact of new technologies and strategic initiatives of the Company on its information security and privacy risk profile
+ Demonstrate up-to-date knowledge in information security and privacy and apply this to the development, execution and improvement of audit programs and recommendations
+ Develop and maintain productive working relationships with stakeholders, while maintaining independence and objectivity.
+ Contribute to various department initiatives to streamline processes, improve stakeholder experience, and increase productivity.
+ Contribute specialized expertise to different assigned projects and may provide key updates to Project Lead and Manager.
**Qualifications**
**Minimum Requirements**
+ Bachelor's degree in management information systems, computer science, accounting, finance, or other IT related fields is required
+ 2-4 years of IT auditing, technology, information security, privacy or other relevant work experience is required
+ Must have strong verbal and written communication skills; fluency in English is required
+ Knowledge of auditing cloud services, encryption technology, mobile technology, application security, software development methodologies, and common security frameworks preferred
+ Ability to travel up to 30% including international travel (valid passport required)
+ Professional certifications (e.g., CIA, CISA, CISSP) are preferred
**Additional Information**
Shift schedule: Morning shift (9AM to 6PM)
**About AECOM**
AECOM is proud to offer comprehensive benefits to meet the diverse needs of our employees. Depending on your employment status, AECOM benefits may include medical, dental, vision, life, AD&D, disability benefits, paid time off, leaves of absences, voluntary benefits, perks, flexible work options, well-being resources, employee assistance program, business travel insurance, service recognition awards, retirement savings plan, and employee stock purchase plan.
AECOM is the global infrastructure leader, committed to delivering a better world. As a trusted professional services firm powered by deep technical abilities, we solve our clients' complex challenges in water, environment, energy, transportation and buildings. Our teams partner with public- and private-sector clients to create innovative, sustainable and resilient solutions throughout the project lifecycle - from advisory, planning, design and engineering to program and construction management. AECOM is a Fortune 500 firm that had revenue of $16.1 billion in fiscal year 2024. Learn more at aecom.com.
**What makes AECOM a great place to work**
You will be part of a global team that champions your growth and career ambitions. Work on groundbreaking projects - both in your local community and on a global scale - that are transforming our industry and shaping the future. With cutting-edge technology and a network of experts, you'll have the resources to make a real impact. Our award-winning training and development programs are designed to expand your technical expertise and leadership skills, helping you build the career you've always envisioned. Here, you'll find a welcoming workplace built on respect, collaboration and community - where you have the freedom to grow in a world of opportunity.
As an Equal Opportunity Employer, we believe in your potential and are here to help you achieve it. All your information will be kept confidential according to EEO guidelines.
**ReqID:** J10134928
**Business Line:** Geography OH
**Business Group:** DCS
**Strategic Business Unit:** GBS
**Career Area:** Finance
**Work Location Model:** Hybrid
**Legal Entity:** AECOM Global Business Services - Philippines ROHQ
**Work with Us. Change the World.**
At AECOM, we're delivering a better world. Whether improving your commute, keeping the lights on, providing access to clean water, or transforming skylines, our work helps people and communities thrive. We are the world's trusted infrastructure consulting firm, partnering with clients to solve the world's most complex challenges and build legacies for future generations.
There has never been a better time to be at AECOM. With accelerating infrastructure investment worldwide, our services are in great demand. We invite you to bring your bold ideas and big dreams and become part of a global team of over 50,000 planners, designers, engineers, scientists, digital innovators, program and construction managers and other professionals delivering projects that create a positive and tangible impact around the world.
We're one global team driven by our common purpose to deliver a better world. Join us.
**Job Description**
**Job Brief**
The primary function is to perform advisory and assurance projects of Audit Services Group (ASG) focused on IT, information security and data privacy risks. ASG is responsible for evaluating the adequacy and effectiveness of the company's systems of internal controls that guide company activities toward accomplishing key business objectives.
**Duties and Responsibilities**
+ Participate in planning, scoping and execution of risk-based IT, information security, and data privacy assurance and advisory projects in accordance with the Institute of Internal Auditors (IIA) and ASG standards
+ Perform test of design and operating effectiveness of controls
+ Effectively communicate audit results to management
+ Work with stakeholders to develop actions plans that address root cause of findings
+ Anticipate the impact of new technologies and strategic initiatives of the Company on its information security and privacy risk profile
+ Demonstrate up-to-date knowledge in information security and privacy and apply this to the development, execution and improvement of audit programs and recommendations
+ Develop and maintain productive working relationships with stakeholders, while maintaining independence and objectivity.
+ Contribute to various department initiatives to streamline processes, improve stakeholder experience, and increase productivity.
+ Contribute specialized expertise to different assigned projects and may provide key updates to Project Lead and Manager.
**Qualifications**
**Minimum Requirements**
+ Bachelor's degree in management information systems, computer science, accounting, finance, or other IT related fields is required
+ 2-4 years of IT auditing, technology, information security, privacy or other relevant work experience is required
+ Must have strong verbal and written communication skills; fluency in English is required
+ Knowledge of auditing cloud services, encryption technology, mobile technology, application security, software development methodologies, and common security frameworks preferred
+ Ability to travel up to 30% including international travel (valid passport required)
+ Professional certifications (e.g., CIA, CISA, CISSP) are preferred
**Additional Information**
Shift schedule: Morning shift (9AM to 6PM)
**About AECOM**
AECOM is proud to offer comprehensive benefits to meet the diverse needs of our employees. Depending on your employment status, AECOM benefits may include medical, dental, vision, life, AD&D, disability benefits, paid time off, leaves of absences, voluntary benefits, perks, flexible work options, well-being resources, employee assistance program, business travel insurance, service recognition awards, retirement savings plan, and employee stock purchase plan.
AECOM is the global infrastructure leader, committed to delivering a better world. As a trusted professional services firm powered by deep technical abilities, we solve our clients' complex challenges in water, environment, energy, transportation and buildings. Our teams partner with public- and private-sector clients to create innovative, sustainable and resilient solutions throughout the project lifecycle - from advisory, planning, design and engineering to program and construction management. AECOM is a Fortune 500 firm that had revenue of $16.1 billion in fiscal year 2024. Learn more at aecom.com.
**What makes AECOM a great place to work**
You will be part of a global team that champions your growth and career ambitions. Work on groundbreaking projects - both in your local community and on a global scale - that are transforming our industry and shaping the future. With cutting-edge technology and a network of experts, you'll have the resources to make a real impact. Our award-winning training and development programs are designed to expand your technical expertise and leadership skills, helping you build the career you've always envisioned. Here, you'll find a welcoming workplace built on respect, collaboration and community - where you have the freedom to grow in a world of opportunity.
As an Equal Opportunity Employer, we believe in your potential and are here to help you achieve it. All your information will be kept confidential according to EEO guidelines.
**ReqID:** J10134928
**Business Line:** Geography OH
**Business Group:** DCS
**Strategic Business Unit:** GBS
**Career Area:** Finance
**Work Location Model:** Hybrid
**Legal Entity:** AECOM Global Business Services - Philippines ROHQ
This advertiser has chosen not to accept applicants from your region.
4
Information Security Architect (Hybrid)
Blaseek
Posted 7 days ago
Job Viewed
Job Description
Position Overview:
As a Security Architect, you will engage across various domains within information security, focusing on: br>Evaluating and auditing existing security controls and solutions.
Designing and implementing new security measures.
Providing expert counsel within the department and beyond.
Assisting in the design and optimization of our SIEM/MDR solutions.
Conducting risk assessments for infrastructure, applications, and vendors.
Qualifications:
Bachelor's degree in any field; degrees in Information Security, Computer Science, or Software Engineering preferred but not mandatory.
Certifications such as Azure Architect, Azure Security, OSCP, OSEP, CISSP, Security+, ISO 27001, CISM, or CRISC are advantageous but not required.
Excellent English communication skills.
Knowledge in areas such as:
Risk Management
Third-Party Risk Management
Control Management
Security Frameworks (ISO 27001/27002/27005, NIST 800-53, NIST CSF)
Policy and Procedure Development
Infrastructure and Cloud Security (Azure)
MDR/SIEM/Log Analytics
Incident Response
Vulnerability and Penetration Testing
Identity and Access Management (IAM)
Technical Security and Risk Assessments
Disaster Recovery Planning
Willingness to engage with the CISO on professional matters.
As a Security Architect, you will engage across various domains within information security, focusing on: br>Evaluating and auditing existing security controls and solutions.
Designing and implementing new security measures.
Providing expert counsel within the department and beyond.
Assisting in the design and optimization of our SIEM/MDR solutions.
Conducting risk assessments for infrastructure, applications, and vendors.
Qualifications:
Bachelor's degree in any field; degrees in Information Security, Computer Science, or Software Engineering preferred but not mandatory.
Certifications such as Azure Architect, Azure Security, OSCP, OSEP, CISSP, Security+, ISO 27001, CISM, or CRISC are advantageous but not required.
Excellent English communication skills.
Knowledge in areas such as:
Risk Management
Third-Party Risk Management
Control Management
Security Frameworks (ISO 27001/27002/27005, NIST 800-53, NIST CSF)
Policy and Procedure Development
Infrastructure and Cloud Security (Azure)
MDR/SIEM/Log Analytics
Incident Response
Vulnerability and Penetration Testing
Identity and Access Management (IAM)
Technical Security and Risk Assessments
Disaster Recovery Planning
Willingness to engage with the CISO on professional matters.
This advertiser has chosen not to accept applicants from your region.
5
Information Security Analyst II
Manila, Metropolitan Manila
RELX INC
Posted 20 days ago
Job Viewed
Job Description
Job Scope:
To manage all RX security assessments and play a key part in ensuring RX's security compliance optimization. Monitor assessments while ensuring that Reed Exhibitions internal systems are compliant with RELX and industry standards. Proactively manage the third-party risk assessments, compliance evidence gathering of their IT services, infrastructure, applications and relevant services against their Security policies and related frameworks. Training and development will be provided in all areas of the role as required.
Key Responsibilities:
Security Assessment Management
+ Serve as an advanced technical advisor for third-party assessments, providing detailed security insights and solutions.
+ Perform in-depth security reviews and risk assessments for new and existing third-party vendors, ensuring compliance with organizational and regulatory requirements.
+ Demonstrate advanced knowledge in RELX security compliance policies and procedures.
+ Stay current with updates and developments in security standards such as OWASP Top 10, ISO27001, and SOC 2, and ensure their proper implementation across the organization.
+ Develop and deliver training and awareness on security policies and standards to business units.
+ Gain in-depth knowledge of the organization's major infrastructure security controls, ensuring they align with RELX Policies and Standards, industry best practices, and regulatory requirements.
+ Coordinate with technology/service owners and business owners to conduct annual security audits, vulnerability assessments, and penetration tests where applicable.
+ Work collaboratively within all business areas and key stakeholders to ensure the review and approach of all security governance, risk, and compliance scope is appropriate and proactive.
+ Ensure continuous monitoring and reporting of compliance and risk status against NIST2.0, RELX Framework, ISO27001, SOC2, PCI DSS, regional and global regulations, and all other relevant standards.
+ Support internal and external audits by providing detailed documentation and evidence of security controls and practices.
+ Perform RX Business Unit and Third-Party security audits according to the CISO office strategic plan and produce detailed documentation and evidence against security controls and practices tested.
+ Act as a point of escalation for security-related incidents, providing advanced security support and guidance to Level I Analysts and other team members.
+ Provide regular updates and at least monthly metric reports to senior management on security compliance and risk posture.
+ Escalation of high impact security issues to Security Compliance Manager.
Ideal candidate profile:
Technical Skills:
+ Bachelor's Degree holder.
+ Background in IT, compliance, and/or information security.
+ Ability to work across all levels of seniority within business teams to drive a working partnership.
+ Strong analytical and critical thinking skills.
+ Understanding of industry standards for IT security (e.g., ISO27001/2, SOC 2, PCI DSS).
+ Basic understanding of IT security applications (e.g., firewalls, intrusion detection, virus protection).
+ Understanding of IT security testing and vulnerability management, and Threat Modeling.
+ Understanding in Cloud Environment (e.g., AWS, Azure or GCP)
+ Understanding of Service Level Management.
+ Desired understanding of OneTrust portal or Similar.
+ With CompTIA Security+ or Similar or Higher.
Personal Skills:
+ Ability to work across all levels of seniority within the organization and suppliers to drive a working partnership.
+ Good communication skills at all levels, both oral and written.
+ Good interpersonal skills.
+ Ability to produce effective influence and persuasive arguments in support of security assessment process goals.
+ Highly driven and self-motivated individuals.
+ Skilled in project management and able to work independently in a fast-paced environment.
We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our Applicant Request Support Form or please contact 1- .
Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams here .
Please read our Candidate Privacy Policy .
We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law.
USA Job Seekers:
EEO Know Your Rights .
RELX is a global provider of information-based analytics and decision tools for professional and business customers, enabling them to make better decisions, get better results and be more productive.
Our purpose is to benefit society by developing products that help researchers advance scientific knowledge; doctors and nurses improve the lives of patients; lawyers promote the rule of law and achieve justice and fair results for their clients; businesses and governments prevent fraud; consumers access financial services and get fair prices on insurance; and customers learn about markets and complete transactions.
Our purpose guides our actions beyond the products that we develop. It defines us as a company. Every day across RELX our employees are inspired to undertake initiatives that make unique contributions to society and the communities in which we operate.
To manage all RX security assessments and play a key part in ensuring RX's security compliance optimization. Monitor assessments while ensuring that Reed Exhibitions internal systems are compliant with RELX and industry standards. Proactively manage the third-party risk assessments, compliance evidence gathering of their IT services, infrastructure, applications and relevant services against their Security policies and related frameworks. Training and development will be provided in all areas of the role as required.
Key Responsibilities:
Security Assessment Management
+ Serve as an advanced technical advisor for third-party assessments, providing detailed security insights and solutions.
+ Perform in-depth security reviews and risk assessments for new and existing third-party vendors, ensuring compliance with organizational and regulatory requirements.
+ Demonstrate advanced knowledge in RELX security compliance policies and procedures.
+ Stay current with updates and developments in security standards such as OWASP Top 10, ISO27001, and SOC 2, and ensure their proper implementation across the organization.
+ Develop and deliver training and awareness on security policies and standards to business units.
+ Gain in-depth knowledge of the organization's major infrastructure security controls, ensuring they align with RELX Policies and Standards, industry best practices, and regulatory requirements.
+ Coordinate with technology/service owners and business owners to conduct annual security audits, vulnerability assessments, and penetration tests where applicable.
+ Work collaboratively within all business areas and key stakeholders to ensure the review and approach of all security governance, risk, and compliance scope is appropriate and proactive.
+ Ensure continuous monitoring and reporting of compliance and risk status against NIST2.0, RELX Framework, ISO27001, SOC2, PCI DSS, regional and global regulations, and all other relevant standards.
+ Support internal and external audits by providing detailed documentation and evidence of security controls and practices.
+ Perform RX Business Unit and Third-Party security audits according to the CISO office strategic plan and produce detailed documentation and evidence against security controls and practices tested.
+ Act as a point of escalation for security-related incidents, providing advanced security support and guidance to Level I Analysts and other team members.
+ Provide regular updates and at least monthly metric reports to senior management on security compliance and risk posture.
+ Escalation of high impact security issues to Security Compliance Manager.
Ideal candidate profile:
Technical Skills:
+ Bachelor's Degree holder.
+ Background in IT, compliance, and/or information security.
+ Ability to work across all levels of seniority within business teams to drive a working partnership.
+ Strong analytical and critical thinking skills.
+ Understanding of industry standards for IT security (e.g., ISO27001/2, SOC 2, PCI DSS).
+ Basic understanding of IT security applications (e.g., firewalls, intrusion detection, virus protection).
+ Understanding of IT security testing and vulnerability management, and Threat Modeling.
+ Understanding in Cloud Environment (e.g., AWS, Azure or GCP)
+ Understanding of Service Level Management.
+ Desired understanding of OneTrust portal or Similar.
+ With CompTIA Security+ or Similar or Higher.
Personal Skills:
+ Ability to work across all levels of seniority within the organization and suppliers to drive a working partnership.
+ Good communication skills at all levels, both oral and written.
+ Good interpersonal skills.
+ Ability to produce effective influence and persuasive arguments in support of security assessment process goals.
+ Highly driven and self-motivated individuals.
+ Skilled in project management and able to work independently in a fast-paced environment.
We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our Applicant Request Support Form or please contact 1- .
Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams here .
Please read our Candidate Privacy Policy .
We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law.
USA Job Seekers:
EEO Know Your Rights .
RELX is a global provider of information-based analytics and decision tools for professional and business customers, enabling them to make better decisions, get better results and be more productive.
Our purpose is to benefit society by developing products that help researchers advance scientific knowledge; doctors and nurses improve the lives of patients; lawyers promote the rule of law and achieve justice and fair results for their clients; businesses and governments prevent fraud; consumers access financial services and get fair prices on insurance; and customers learn about markets and complete transactions.
Our purpose guides our actions beyond the products that we develop. It defines us as a company. Every day across RELX our employees are inspired to undertake initiatives that make unique contributions to society and the communities in which we operate.
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Security leader Jobs in Philippines !
6
Chief Information Security Officer (CISO)
1631 Taguig, National Capital Region
Career Connect
Posted 15 days ago
Job Viewed
Job Description
Job Overview: The Chief Information Security Officer works with other executives across different departments to design security systems and assets. The CISO’s main responsibility is creating and implementing an information security program that is designed to protect enterprise communications, systems, and assets from any potential threats. He/She will ensure compliance to legal security practices.Job Description: ● Define and own a multi-year cybersecurity roadmap and key performance indicators focused on reducing cyber risk ● Build and inspire a highly skilled and diverse Cybersecurity team. Foster a culture of trusted cross-functional partnership, service, and continuous improvement ● Create quarterly, annual, and long-term cyber security and cyber risk management goals, articulate strategies, define metrics and provide necessary updates to executive leadership ● Partner with leadership for the development, planning, and execution of major security initiatives. Support Secure Software Development Lifecycle ● Collaborate with the SOC team and ISO 27001 Core team to establish appropriate security standards and provide an effective governance structure to ensure cyber compliance and accountability ● Lead Security Incident Response, Third Party Information Security Assessment, Data Protection and Encryption, ● Identity & Access Management and Privileged User Access to protect customer and employee data ● Define cyber security governance and control strategies for emerging technologies such as cloud & containerization, blockchain, etc. ● Keep well informed of developing security threats, and proactively create strategies to understand and mitigate potential security problems that might arise from acquisitions or other big business moves ● Other job-related activities may be assigned from time to time.RequirementsRequirements: ● Education – At least graduate with a Bachelor’s Degree in IT, Computer Science, Engineering, or any related course. ● Related Work Experience - Key Industry certifications in Information Security, such as CISSP, CISM and CISA ● Knowledge – Knowledgeable in security and operations processes. ● 15+ years of experience in Information/Cybersecurity in a public or large private technology company with a global customer base ● 7+ years people management experience with hands-on experience building diverse teams while promoting an inclusive organization ● A demonstrated knowledge of information security standards (e.g., NIST, ISO-27001), rules and regulations related to information security and data confidentiality (e.g., PCI, NIST, NSA) and other various security standards and policies ● A strong understanding of Cloud Security Mode and key principles, such as CSPs Shared Responsibility Models, Security and Infrastructure as Code, Preventive/Reactive Guardrails, Containerization, Server-less Computing, Continuous monitoring/drift detection, and the importance of end-to-end automation ● Strong interpersonal and communication skills with the ability to influence at all levels of the organization, while being able to simplify complex topics for understanding and critical decision making by Executive Management and the Board ● Ability to understand not only emerging industry trends as far as cyber security is concerned but also the landscape of emerging threats, making appropriate adjustments within the cybersecurity program
This advertiser has chosen not to accept applicants from your region.
7
Network Security Manager (47312) - Makati
Makati, National Capital Region
RCX Recruitment Inc.
Posted 21 days ago
Job Viewed
Job Description
Required Experience:
- Bachelor’s degree in: Information Technology, Computer Science, or related fields. br>- At least 5 years of experience in IT networking and cybersecurity.
- At least 5 years in a managerial role handling security and network teams.
- Proficiency in Japanese (at least JLPT N3) and English.
- Strong knowledge of firewalls, penetration testing, and security protocols.
- Proficiency in MS Office, Google Suites, and IT security tools.
-Certifications (Preferred but not required):
*CompTIA Security+ < r>*CISSP (Certified Information Systems Security Professional) < r>*CISM (Certified Information Security Manager) < r>*CCNP Security (Cisco) < r>*Fortinet NSE < r>*CCNA (Cisco Certified Network Associate) < r>*Juniper JNCIA-Junos < r>
Responsibilities:
Cybersecurity Leadership:
・Oversee cybersecurity for Asia & Oceania branches. < r>・Analyze and address vulnerabilities in IT infrastructure and systems. < r>・Develop and implement security policies for IT, infrastructure monitoring, incident response, and penetration testing. < r>
Network Security & Risk Management:
・Ensure robust firewall and security measures to prevent cyber threats. < r>・Implement change management and incident response procedures. < r>・Propose strategies for improving IT security across the company. < r>
Compliance & System Integrity:
・Ensure compliance with industry standards and best practices. < r>・Regularly test and update security frameworks to mitigate risks. < r>・Collaborate with IT teams and stakeholders to enhance security measures.
- Bachelor’s degree in: Information Technology, Computer Science, or related fields. br>- At least 5 years of experience in IT networking and cybersecurity.
- At least 5 years in a managerial role handling security and network teams.
- Proficiency in Japanese (at least JLPT N3) and English.
- Strong knowledge of firewalls, penetration testing, and security protocols.
- Proficiency in MS Office, Google Suites, and IT security tools.
-Certifications (Preferred but not required):
*CompTIA Security+ < r>*CISSP (Certified Information Systems Security Professional) < r>*CISM (Certified Information Security Manager) < r>*CCNP Security (Cisco) < r>*Fortinet NSE < r>*CCNA (Cisco Certified Network Associate) < r>*Juniper JNCIA-Junos < r>
Responsibilities:
Cybersecurity Leadership:
・Oversee cybersecurity for Asia & Oceania branches. < r>・Analyze and address vulnerabilities in IT infrastructure and systems. < r>・Develop and implement security policies for IT, infrastructure monitoring, incident response, and penetration testing. < r>
Network Security & Risk Management:
・Ensure robust firewall and security measures to prevent cyber threats. < r>・Implement change management and incident response procedures. < r>・Propose strategies for improving IT security across the company. < r>
Compliance & System Integrity:
・Ensure compliance with industry standards and best practices. < r>・Regularly test and update security frameworks to mitigate risks. < r>・Collaborate with IT teams and stakeholders to enhance security measures.
This advertiser has chosen not to accept applicants from your region.
8
Assistant Security Manager - Conrad Manila
Pasay City, National Capital Region
Hilton
Posted 25 days ago
Job Viewed
Job Description
An Assistant Security Manager directs security personal and works with Department Heads to deliver a safe Guest and Member experience while ensuring compliance with local safety legislation and hotel emergency procedures.
**What will I be doing?**
As an Assistant Security Manager, you will be responsible for directing and coordinating the activities of security personnel, work with Department Heads to confirm all staff understands security procedures, and organising patrolling of the property to deliver a safe Guest and Member experience. An Assistant Security Manager will also be required to ensure that hotel is in compliance with all local safety regulations and is conversant with hotel emergency procedures. Specifically, you will be responsible for performing the following tasks to the highest standards:
+ Maintain good communication and work relationships in all areas of the hotel
+ Liaise with government and law enforcement agencies as necessary
+ Coordinate additional personnel for Conference and Banqueting functions
+ Organise patrolling of all boundary areas, bedrooms, offices, storage areas, public areas, and function rooms
+ Assist the hotel in complying with Local Fire Safety Legislation
+ Assist the hotel with Local Safety Legislation to ensure compliance of the security department
+ Knowledge of the codes of practice for P.A.C.E.
+ Ensure tours are carried out for the purpose of fire prevention, safe means of escape, and security
+ Inquire as necessary into and report upon any thefts within the hotel using your discretion in connection with any of these matters that you deem should be reported to the police
+ Direct and coordinate the activities of all security personnel, engage in the implementation of safety and security procedures for the department, and provide assistance and advice to other departments in relation to security
+ Prepare incident reports and ensure all allegations are properly followed up
+ Liaise with Departmental Heads to ensure hotel staff is aware of their security responsibilities
+ Plan, deliver and facilitate regular staff awareness training
+ Be fully conversant of company terrorist procedures and convey to staff
+ Be fully conversant with hotel Fire and Emergency procedures
+ Responsible for management of key control within all departments
**What are we looking for?**
An Assistant Security Manager serving Hilton brands is always working on behalf of our Guests and working with other Team Members. To successfully fill this role, you should maintain the attitude, behaviours, skills, and values that follow:
+ Organised and systematic approach to problem solving
+ Security industry experience in supervisory capacity
+ SIA trained and licensed
+ Ability to listen and respond to demanding guest needs
+ Good leadership, interpersonal and communication skills
+ Accountable and resilient
+ Committed to delivering high levels of customer service
+ Ability to work under pressure
+ Flexibility to respond to a range of different work situations
+ Good grooming standards
It would be advantageous in this position for you to demonstrate the following capabilities and distinctions:
+ Previous experience in same or similar role
+ First Aid
+ Fire fighting qualification
+ IT proficiency
**What will it be like to work for Hilton?**
Hilton is the leading global hospitality company, spanning the lodging sector from luxurious full-service hotels and resorts to extended-stay suites and mid-priced hotels. For nearly a century, Hilton has offered business and leisure travelers the finest in accommodations, service, amenities and value. Hilton is dedicated to continuing its tradition of providing exceptional guest experiences across its global brands ( . Our vision "to fill the earth with the light and warmth of hospitality" unites us as a team to create remarkable hospitality experiences around the world every day. And, our amazing Team Members are at the heart of it all!
**Job:** _Security and Loss Prevention_
**Title:** _Assistant Security Manager - Conrad Manila_
**Location:** _null_
**Requisition ID:** _HOT0BR5S_
**EOE/AA/Disabled/Veterans**
**What will I be doing?**
As an Assistant Security Manager, you will be responsible for directing and coordinating the activities of security personnel, work with Department Heads to confirm all staff understands security procedures, and organising patrolling of the property to deliver a safe Guest and Member experience. An Assistant Security Manager will also be required to ensure that hotel is in compliance with all local safety regulations and is conversant with hotel emergency procedures. Specifically, you will be responsible for performing the following tasks to the highest standards:
+ Maintain good communication and work relationships in all areas of the hotel
+ Liaise with government and law enforcement agencies as necessary
+ Coordinate additional personnel for Conference and Banqueting functions
+ Organise patrolling of all boundary areas, bedrooms, offices, storage areas, public areas, and function rooms
+ Assist the hotel in complying with Local Fire Safety Legislation
+ Assist the hotel with Local Safety Legislation to ensure compliance of the security department
+ Knowledge of the codes of practice for P.A.C.E.
+ Ensure tours are carried out for the purpose of fire prevention, safe means of escape, and security
+ Inquire as necessary into and report upon any thefts within the hotel using your discretion in connection with any of these matters that you deem should be reported to the police
+ Direct and coordinate the activities of all security personnel, engage in the implementation of safety and security procedures for the department, and provide assistance and advice to other departments in relation to security
+ Prepare incident reports and ensure all allegations are properly followed up
+ Liaise with Departmental Heads to ensure hotel staff is aware of their security responsibilities
+ Plan, deliver and facilitate regular staff awareness training
+ Be fully conversant of company terrorist procedures and convey to staff
+ Be fully conversant with hotel Fire and Emergency procedures
+ Responsible for management of key control within all departments
**What are we looking for?**
An Assistant Security Manager serving Hilton brands is always working on behalf of our Guests and working with other Team Members. To successfully fill this role, you should maintain the attitude, behaviours, skills, and values that follow:
+ Organised and systematic approach to problem solving
+ Security industry experience in supervisory capacity
+ SIA trained and licensed
+ Ability to listen and respond to demanding guest needs
+ Good leadership, interpersonal and communication skills
+ Accountable and resilient
+ Committed to delivering high levels of customer service
+ Ability to work under pressure
+ Flexibility to respond to a range of different work situations
+ Good grooming standards
It would be advantageous in this position for you to demonstrate the following capabilities and distinctions:
+ Previous experience in same or similar role
+ First Aid
+ Fire fighting qualification
+ IT proficiency
**What will it be like to work for Hilton?**
Hilton is the leading global hospitality company, spanning the lodging sector from luxurious full-service hotels and resorts to extended-stay suites and mid-priced hotels. For nearly a century, Hilton has offered business and leisure travelers the finest in accommodations, service, amenities and value. Hilton is dedicated to continuing its tradition of providing exceptional guest experiences across its global brands ( . Our vision "to fill the earth with the light and warmth of hospitality" unites us as a team to create remarkable hospitality experiences around the world every day. And, our amazing Team Members are at the heart of it all!
**Job:** _Security and Loss Prevention_
**Title:** _Assistant Security Manager - Conrad Manila_
**Location:** _null_
**Requisition ID:** _HOT0BR5S_
**EOE/AA/Disabled/Veterans**
This advertiser has chosen not to accept applicants from your region.
9