Information Security Analyst
Manulife
Quezon City
3d ago

Job Description

  • Act as the BUSO Center of Excellence team to identify, perform tasks market BUSOs in Asia not requiring local presence and / or knowledge (e.
  • g. SNOW ticket review / approval, Information Risk Assessment Intake, access review etc.)Conduct operational tasks that could be centralized (or outsourced) from market BUSOsWork with relevant stakeholders and market BUSO to develop standardized approach on processing tasks which aims to operationalize and streamline processes such that CoE team could handle those effectively and consistentlySet up general governance for each task (e.

    g., reporting structure, onboarding / offboarding toolkit) and engage market BUSO for follow-up / escalation when requiredPerform knowledge transfer / sharing to new members of the team and / or other IT control and governance team membersCoordinate with market BUSOs for regular status updateSupport operational information risk activities including providing oversight of security processes for incident / crisis management, access management, vulnerability and patch management, as well as operational processes for business continuity and disaster recovery.

  • Support security program activities in segment level like performing / facilitating application security assessments and providing application security consulting services to IT and other relevant partners and clients.
  • Also promote the information risk assessment program across Asia.Assist the set-up of the framework for the execution of project risk assessment from a technical security and information risk management perspective (includes risk identification based on information criticality through to control implementation and management of risk acceptance by business areas).
  • This involves establishing playbooks, training programs, quality assurance plans, standardized reporting, and mechanisms to share best practicesPerform and review Project Information Risk Assessments, provide guidance on risks mitigation strategies and ensure prompt execution of remediation actions;
  • Assist with preparing and maintaining the schedule of risk mitigation action plans and commitments.Perform review of project risk assessments completed by assessors from Asian countries to promote consistent risk assessment methodologies

  • Support in the end-to-end management and timely resolution of security incidents, particularly on Data Loss Prevention (DLP) related incidents.
  • Act as a main point of contact for country BUSOs to support and manage DLP incidents by liaising with relevant stakeholdersSpot and analyze thematic trends, drive investigations, and participate in Root cause analysis (RCA).

    Identify opportunities for process enhancement and drive automation where possibleSupport the planning and execution of DLP related projects and initiatives

  • Will take additional responsibilities or functions that will be provided by AITCG as deemed necessary during the business operations
  • Report this job
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form