Back to search

Information Security Specialist (Financial Services)

Makati Permanent PHP1,300,000 - PHP1,950,000 per year Work from Home or Hybrid View Job Description
The Information Security Specialist will play a critical role in ensuring the security and integrity of our information systems and data. This individual will lead GRC initiatives, manage vulnerability assessments, and develop strategies to identify, assess, and mitigate risks associated with information security within the financial services landscape.
  • Join a global team
  • Enjoy market-aligned salaries & benefits

About Our Client

The client is a multinational financial services company operating on a global scale.

Job Description



  1. Governance, Risk Management, and Compliance:
    • Develop, implement, and maintain GRC frameworks in alignment with industry standards (e.g., ISO 27001, NIST, PCI-DSS).
    • Conduct risk assessments to identify vulnerabilities and recommend appropriate mitigation strategies.
    • Ensure compliance with regulatory requirements specific to the financial services industry (e.g., GDPR, SOX, FFIEC).
    • Monitor and report on compliance metrics, ensuring adherence to established policies and procedures.


  2. Vulnerability Assessment:
    • Lead regular vulnerability assessments and penetration testing activities to identify security weaknesses within the organization's infrastructure.
    • Analyze assessment results, prioritize vulnerabilities based on risk levels, and coordinate remediation efforts.
    • Develop and maintain a vulnerability management program, including monitoring, patch management, and incident response planning.


  3. Policy Development and Training:
    • Establish and maintain information security policies, procedures, and standards to manage risk effectively.
    • Conduct training and awareness programs to educate employees on security best practices and compliance requirements.
    • Serve as a point of contact for security-related questions and policy guidance across the organization.


  4. Incident Response:
    • Participate in the development and execution of incident response plans, ensuring readiness to respond effectively to security breaches or incidents.
    • Collaborate with internal teams to investigate security incidents, conduct root cause analysis, and implement corrective actions.


  5. Collaboration and Communication:
    • Work closely with IT, legal, and compliance teams to enhance the organization's security posture.
    • Prepare and present reports to senior management and stakeholders on security posture, risk management, and compliance status.



The Successful Applicant

  • Minimum of 5 years of experience in information security, with a focus on GRC and vulnerability assessment, preferably in the financial services industry.
  • Relevant certifications such as CISSP, CISM, CRISC, or CISA are highly desirable.
  • Strong knowledge of security frameworks, risk management practices, and regulatory compliance requirements.
  • Experience with vulnerability assessment tools and techniques, as well as incident response methodologies.
  • Excellent analytical, problem-solving, and communication skills.
  • Ability to work independently and collaboratively in a fast-paced environment.

What's on Offer

  • Competitive salary package
  • Extensive healthcare + HMO package (with dependents)
  • Leave incentives
  • Performance-based bonus
  • Development & Training
Contact
Gio Dumatol
Quote job ref
JN-072024-6491875
Phone number
+63 02 7795 2825

Job summary

Function
IT
Sub Sector
Security
What is your area of specialisation?
Technology & Telecoms
Location
Makati
Job Type
Permanent
Consultant name
Gio Dumatol
Consultant contact
+63 02 7795 2825
Job Reference
JN-072024-6491875
Work from Home
Work from Home or Hybrid

Diversity & Inclusion at Michael Page

We don't just accept difference - we celebrate it. We encourage applicants from all backgrounds to apply for this role and are committed to building inclusive, diverse workplaces where everyone can thrive. If you require any support or reasonable adjustments during the recruitment process, please let us know.