GSO - SRC - Cyber Security Risk Compliance

Re:Sources Global

Makati City, Manila, PH

1d ago

Job Description

Conduct periodic testing to ensure adherence to compliance requirements (e.g. PCI, HIPAA, ISO27001, SOC1 / 2, etc.), internal policies and procedures.

Assists with the development and maintenance of compliance test plans and methodologies.

Assists in preparing reports to present to management.

Meets with the operational areas to communicate test findings.

Performs miscellaneous job-related duties as assigned.

Understands and respects chain of command in a professional work environment.

Ensure compliance issues are correctly identified, evaluated, investigated and resolved.

Align with business areas to identify, review and communicate key controls for mitigating risk.

Develop and review compliance deliverables.

Provide consultative services to business areas on the appropriate controls needed to ensure ongoing regulatory compliance.

Research the implementation of required procedure changes.

Work with business areas to resolve regulatory compliance items

Strong experience and detailed understanding of technology, regulations, and information security or compliance management best practice, processes or methods.

Understanding of technology used for compliance controls in the IT domain.

Ability to identify the implications of Information Security and Compliance to the current and future environment.

Ability to evaluate and recommend preventative and corrective controls to mitigate risk to the organization.

Demonstrates knowledge by performing IT Risk & Security assessments.

Technical aptitude, with the ability to effectively communicate with a working knowledge of all areas of IT controls.

This role will have some responsibilities in assisting the internal audit / assessment activities. This will include aiding in gathering evidence to demonstrate our compliance and include validating that the evidence received substantiates what is needed to provide confirmation found in the evidence request.

Qualifications

Requires 4+ years of related experience

Associate’s or Bachelor’s degree required.

Strong communication and customer interaction skills.

Good organizational and project management skill

This role requires seeking active certification in any of CISSP, CRISC, CISA, or other relevant information security, compliance or audit certifications.

Additional Information

Skills (including technology)

Maintains current knowledge of laws and regulations, keeping abreast of recent changes.

Maintains current knowledge of IT audit and risk methodologies.

Proficiency with Microsoft Office software, Excel, Word, PowerPoint, Visio and SharePoint.

Have exceptional communication skills and a very strong ability to manage a variety of globally dispersed leaders.

Demonstrate a high level of discretion, tact, judgment and poise and must have a solid aptitude for maintaining highly confidential information.

Exceptional analytical and conceptual problem solving skills with the ability to see patterns; bring a structured and logical approach to decision making and manage execution.

Strong willed, decisive, a fast learner and able to effect changes fast.

Strong leadership skills with a demonstrated ability to influence different styles.

Highly technically competent combined with a logical and pragmatic approach and strong inter-personal skills.

Excellent problem-solving ability.

Excellent at communicating technical information in both verbal and written forms to both technical and business people.

Attributes / behaviors

Strong attention to detail

Works well under pressure and able to manage multiple, concurrent work streams effectively

Well-mannered, conscientious team player

Ability to collaborate effectively with colleagues and partners nationally and internationally

Report this job

Thank you for reporting this job!

Your feedback will help us improve the quality of our services.