Job Description

The position is responsible for overseeing the organization’s cybersecurity operations to protect information assets, systems, and infrastructure against internal and external threats. It leads the identification of security gaps, development of cybersecurity policies and enhancement plans, and ensures effective execution across responsible teams. The role manages vulnerability assessment, incident response, security monitoring, access control, audit readiness, and compliance with international standards and government regulations while continuously improving security maturity across the enterprise.

KEY RESPONSIBILITIES 
You will: 

• Identify cybersecurity gaps against best practices and develop security enhancement policies, plans, and initiatives.
• Lead responsible departments in implementing cybersecurity controls and remediation measures.
• Oversee vulnerability management activities, including vulnerability scanning, risk assessments, and remediation planning.
• Act as the Local Computer Security Incident Response Team (CSIRT) lead during security incidents, including evidence handling, impact analysis, containment, and prevention of recurrence.
• Lead incident response training and continuously improve response readiness and capability.
• Operate and manage security monitoring platforms such as EDR and SIEM to detect threats and perform initial response actions.
• Manage security log analysis and investigate suspicious activities and potential threats.
• Maintain and enforce Identity and Access Management (IAM) operations, including permissions and access control for critical systems.
• Collaborate with IT governance and risk teams to translate security policies and standards into operational controls.
• Lead and supervise security tools operations teams and drive continuous improvements in operational quality and cybersecurity maturity.
• Coordinate with overseas locations and cross‑functional departments to align enterprise‑wide security execution plans.
• Ensure compliance with ISO standards, government regulations, and requirements related to information security and business continuity.
• Oversee audit preparation and compliance activities to ensure effectiveness of security controls and continuous improvement.

QUALIFICATIONS & REQUIREMENTS: 

• You must have a bachelor’s degree in an IT‑related course (cybersecurity certifications are an advantage).
• You must have at least 5–6 years of experience in IT Security, with at least 3–5 years as an IT Administrator or equivalent role.
• You must have strong knowledge of the NIST Cybersecurity Framework.
• You must have a solid understanding of information security principles, networking, systems administration, and cloud security environments. Experience or certification such as Security+, CySA+, CASP, OSCP, CEH, CIH, CISSP, or GIAC is an advantage.
• You must be capable of leading incident response activities and managing security operations teams.
• You must be proactive, analytical, and able to handle security incidents under pressure.
• You must be willing to be assigned in Malvar, Batangas.

Work Schedule: Regular shift (8 am – 5 pm) 

Work Setup: Onsite

Locations: Malvar, Batangas