Information Security Lead

Key Responsibilities:Assist in the development and implementation of information security policies, standards, guidelines and proceduresConduct periodic evaluations of internal control systems, document the results, make recommendations to remediate the identified risks, and monitor strategies to remedy information security control deficienciesConducts information security education, training and awareness activities for general users such as new hire orientation, annual training, creation of security reminders/advisories.Initiate changes in policies and procedures due to new or revised regulationsMaintain regulatory evidence including policies, standard training, and compliance monitoringDefense in-depth methodology when assessing the effectiveness of controls including deployment of compensating controlsManage information asset inventoriesFacilitate control testing in form of vulnerability assessment, risk assessments, penetration, and social engineering testing.Develop key performance metrics to track and ensure compliance with established policies and standards.Stay current with the latest cyber security threat landscape and notify IT teams of applicability to the Company’s systemsOther duties and responsibilities that may be assigned.Key Requirements:Flexi work hours and work location but must be amenable to work onsite (QC or Alabang)Preferably someone who has led or been part of an audit and certification for ISO 27001Well versed in different Information and security management systems