Cybersecurity/IT Risk Officer – Bank | Up to 80K Salary

• Employment Type: Full-Time; Permanent (Direct Hire)
• Position Type: Assistant Manager – Individual Contributor
• Base Salary: Php 70,000 – Php 80,000
• Work Setup & Location: Onsite – Makati City
• Work Schedule: Mondays – Fridays, day shift
• Industry: Banking
• Hiring Process: Paper Screening/Initial Interview – Final Interview

13th month pay + 0.5 Guaranteed Annual Bonus

Responsibilities:

• Establish a robust IT risk management framework aligned with business goals, regulatory mandates, and industry standards. Maintain policies and controls to identify, assess, and mitigate IT risks while advising senior management on critical exposures.
• Identify and evaluate IT-related risks, including cybersecurity threats, system failures, and third-party vulnerabilities. Conduct regular risk assessments and maintain risk registers to track and mitigate emerging threats.
• Develop and enforce cybersecurity policies for threat detection, incident response, and data protection. Ensure IT systems remain secure while maintaining compliance with data privacy regulations like GDPR and HIPAA.
• Collaborate with auditors, regulators, and vendors to ensure IT compliance with industry standards. Provide senior management with reports on IT risk status, key indicators, and mitigation efforts.
• Lead responses to major IT incidents, such as cyberattacks and system failures, to minimize impact and ensure recovery. Conduct post-incident reviews to strengthen risk management practices.
• Build and mentor an IT risk management team while coordinating with departments like IT, legal, and compliance. Foster a risk-aware culture through training and awareness programs.
• Assess and manage risks related to technology infrastructure, cloud services, and third-party vendors. Ensure vendor contracts include risk mitigation clauses and monitor compliance with security policies.

Qualifications:

• Bachelor’s degree in Computer Science, Information Technology, or a related field; a Master’s Degree is a big plus.
• 5+ years of experience in IT risk management, cybersecurity, or IT governance, with at least 2 years in a leadership or managerial role
• Expertise in risk assessments, incident management, and regulatory compliance.
• Experience with risk management frameworks (e.g., NIST, ISO 27001, COBIT) and IT governance best practices.
• Strong background in cybersecurity, data protection, and IT infrastructure.
• Knowledgeable of IT risk management tools and techniques.
• Strong understanding of emerging IT risks, such as cloud computing, AI, and IoT.
• Possesses excellent interpersonal and communication (written and verbal) skills.
• Certifications like CISSP, CISM, CRISC, and CISA are preferred.
• Can start immediately if possible.
• Only shortlisted candidates will be contacted, tailoring CV is recommended***