business Information Security managerFWD Group
Salary: Agreement
Work form: Full time
Posting Date: 03/11/2023
Deadline: 04/11/2022
About FWD Life Insurance
FWD Life Insurance Corporation (FWD Life Insurance) launched its commercial operations in September 2014. As of end-2021, FWD Life Insurance ranks 3rd and 5th in terms of Paid-up Capital1 and Total Premium Income2, respectively.
FWD Group is a pan-Asian life insurance business with approximately 10 million customers across 10 markets, including some of the fastest growing insurance markets in the world. In the Philippines, FWD has 18 business hubs located in key cities nationwide, with its headquarters in Bonifacio Global City in Taguig.
Established in 2013, FWD is focused on making the insurance journey simpler, faster and smoother, with innovative propositions and easy-to-understand products, supported by digital technology. Through this customer-led approach, FWD is committed to changing the way people feel about insurance.
For more information, please visit .
1
Statistics
Life
2021
Based on Paid-Up Capital
2
Statistics
Life
2021
Based on Total Premium Income The job will support the Head of IT Security in developing IT Security management strategies for the company. The position leads the delivery of IT Security strategic projects/initiatives which will optimize the security posture of the organization.
Information Security.
Works closely with the Head of IT Security in the delivery of Information Security strategy, programs, and initiatives to Business Units.
Implements/Administers the Information Security policies, standards, procedures and guidelines.
Drives compliance to Information Security policies and procedures across the organization.
Drives alignment and compliance to Information Security in all processes and initiatives of each business units.
Ensures that information security policies, procedures and standards and guidelines including but not limited to Data Protection, Identity Access Management, Vulnerability Management, Endpoint Protection, Security Governance, etc. are always up to date.
Develops an information security framework based on industry standards such as International Organization for Standard (ISO), Payment Card Industry Data Security Standard (PCI DSS), etc.
Coordination.
Liaises with business process owners and other management roles and process functions for on-going alignment.
Coordinate with Group Office IT Security Team for the project deployments, policy updates and other IT Security services applicable.
Security Risk.
Identifies and analyzes existing and emerging information security risks.
Works closely with other stakeholders - Risk, Compliance and Data Privacy for any identified risk that requires further analysis and that has business and regulatory impact.
Report.
Reports security activity cost versus residual risk on mitigated/accepted information security risk.
Reports security enabled services, processes, and activities effectiveness.
Provides regular updates on the status and maturity level of the security program to senior business and Information Technology leaders.
Assessment and Analysis.
Reviews, assesses, and recommends information security performance metrics.
Evaluates and reports measurement of compliance to implemented controls and degree of effectiveness of implemented metrics.
Reviews resource management processes for information security enabled services, knowledge, and infrastructure utilization.
Recognizes critical business processes that may require enhancement of information security.
Works with the business and GO IT Security to facilitate risk assessment and risk management processes including classifying sensitive data and identifying acceptable levels of risks.
Quickly identifies, analyses and make recommendations for the mitigation of new and evolving security exploits and threats as they manifest.
Periodically and consistently analyses the security posture of information technology platforms, publish and recommendation to remediate or eliminate risk factors from the environment.
Incident Management.
Directs information security assurance integration efforts.
Maintains security incident response processes and procedure to ensure timely response and management of incidents to protect corporate Information Technology assets including intellectual property, regulated data, and the company's reputation.
Information Security Planning and Execution.
Establishes and executes a multi-year/long term strategic implementation roadmap for information security aligned with corporate business strategies.
Ensuring that all the initiatives are aligned to the target Security Posture.
Creates and maintains Security Awareness Training Programs for employees, contractors, and approved system users.
Management and Monitoring of Compliance to Policies and Regulations.
Qualifications:
Bachelor's degree in Information Technology or equivalent
At least 3 years experience in managerial role and total of 8 years relevant work experience
Preferably a holder of CISSP, CISM or other IT security related certifications
Knowledge in information security principles and practices, including any of the following: security risk assessment standards, risk assessment methodologies and vulnerability assessment including but not limited to ISO27001, Cyber Security Framework -
(NIST) * With experience in implementing security initiatives that require partnership with other Information Technology areas and business units.
Privacy Notice
Your privacy is a priority for FWD. The Company keeps your personal information with us in confidence. To know more about how we process your information, kindly refer to our FWD Recruitment Privacy Notice.
FWD has partnered with Talocity Instasolutions Private Limited ("Talocity") to manage the initial filtering of candidate's profiles through video interviews, social profile mapping, and video analytics using artificial intelligence engine that is offered within the Talocity platform. The platform evaluates the candidate on the five well-known dimensions as per OCEAN Personality Model that influence occupational success and help understand workplace behavior. For more information, please refer to .
When you apply, FWD will share your name, phone number and email address to Talocity to contact you and conduct the initial screening and profiling process. Shortlisted candidates will then be contacted by FWD for the face-to-face interview.
FWD Group
FWD Life Insurance Corporation (FWD Life Insurance) launched its commercial operations in September 2014. As of end-2021, FWD Life Insurance ranks 3rd and 5th in terms of Paid-up Capital1 and Total Premium Income2, respectively.
FWD Group is a pan-Asian life insurance business with approximately 10 million customers across 10 markets, including some of the fastest growing insurance markets in the world. In the Philippines, FWD has 18 business hubs located in key cities nationwide, with its headquarters in Bonifacio Global City in Taguig.
Established in 2013, FWD is focused on making the insurance journey simpler, faster and smoother, with innovative propositions and easy-to-understand products, supported by digital technology. Through this customer-led approach, FWD is committed to changing the way people feel about insurance.
For more information, please visit .
1
Statistics
Life
2021
Based on Paid-Up Capital
2
Statistics
Life
2021
Based on Total Premium Income The job will support the Head of IT Security in developing IT Security management strategies for the company. The position leads the delivery of IT Security strategic projects/initiatives which will optimize the security posture of the organization.
Information Security.
Works closely with the Head of IT Security in the delivery of Information Security strategy, programs, and initiatives to Business Units.
Implements/Administers the Information Security policies, standards, procedures and guidelines.
Drives compliance to Information Security policies and procedures across the organization.
Drives alignment and compliance to Information Security in all processes and initiatives of each business units.
Ensures that information security policies, procedures and standards and guidelines including but not limited to Data Protection, Identity Access Management, Vulnerability Management, Endpoint Protection, Security Governance, etc. are always up to date.
Develops an information security framework based on industry standards such as International Organization for Standard (ISO), Payment Card Industry Data Security Standard (PCI DSS), etc.
Coordination.
Liaises with business process owners and other management roles and process functions for on-going alignment.
Coordinate with Group Office IT Security Team for the project deployments, policy updates and other IT Security services applicable.
Security Risk.
Identifies and analyzes existing and emerging information security risks.
Works closely with other stakeholders - Risk, Compliance and Data Privacy for any identified risk that requires further analysis and that has business and regulatory impact.
Report.
Reports security activity cost versus residual risk on mitigated/accepted information security risk.
Reports security enabled services, processes, and activities effectiveness.
Provides regular updates on the status and maturity level of the security program to senior business and Information Technology leaders.
Assessment and Analysis.
Reviews, assesses, and recommends information security performance metrics.
Evaluates and reports measurement of compliance to implemented controls and degree of effectiveness of implemented metrics.
Reviews resource management processes for information security enabled services, knowledge, and infrastructure utilization.
Recognizes critical business processes that may require enhancement of information security.
Works with the business and GO IT Security to facilitate risk assessment and risk management processes including classifying sensitive data and identifying acceptable levels of risks.
Quickly identifies, analyses and make recommendations for the mitigation of new and evolving security exploits and threats as they manifest.
Periodically and consistently analyses the security posture of information technology platforms, publish and recommendation to remediate or eliminate risk factors from the environment.
Incident Management.
Directs information security assurance integration efforts.
Maintains security incident response processes and procedure to ensure timely response and management of incidents to protect corporate Information Technology assets including intellectual property, regulated data, and the company's reputation.
Information Security Planning and Execution.
Establishes and executes a multi-year/long term strategic implementation roadmap for information security aligned with corporate business strategies.
Ensuring that all the initiatives are aligned to the target Security Posture.
Creates and maintains Security Awareness Training Programs for employees, contractors, and approved system users.
Management and Monitoring of Compliance to Policies and Regulations.
Qualifications:
Bachelor's degree in Information Technology or equivalent
At least 3 years experience in managerial role and total of 8 years relevant work experience
Preferably a holder of CISSP, CISM or other IT security related certifications
Knowledge in information security principles and practices, including any of the following: security risk assessment standards, risk assessment methodologies and vulnerability assessment including but not limited to ISO27001, Cyber Security Framework -
(NIST) * With experience in implementing security initiatives that require partnership with other Information Technology areas and business units.
Privacy Notice
Your privacy is a priority for FWD. The Company keeps your personal information with us in confidence. To know more about how we process your information, kindly refer to our FWD Recruitment Privacy Notice.
FWD has partnered with Talocity Instasolutions Private Limited ("Talocity") to manage the initial filtering of candidate's profiles through video interviews, social profile mapping, and video analytics using artificial intelligence engine that is offered within the Talocity platform. The platform evaluates the candidate on the five well-known dimensions as per OCEAN Personality Model that influence occupational success and help understand workplace behavior. For more information, please refer to .
When you apply, FWD will share your name, phone number and email address to Talocity to contact you and conduct the initial screening and profiling process. Shortlisted candidates will then be contacted by FWD for the face-to-face interview.
FWD Group
Other Info
Philippines
Permanent
Full-time
Permanent
Full-time
Submit profile
FWD Group
About the company
FWD Group jobs
Philippines
Work From Home Business Development Manager
ThriveSource Global Inc.
MetroManila, Quezon, Quezon, ManilaAgreement
Work From Home Business Development Manager $6/hr (51,000 PHP ++ /month)
ThriveSource Global Inc.
Cebu, Cebu₱51,000 - 52,000 per month
Position business Information Security manager recruited by the company FWD Group at , Joboko automatically collects the salary of , finds more jobs on Business Information Security Manager or FWD Group company in the links above
About the company
FWD Group jobs
Philippines