IT Risk Manager

Participates in implementing Technology/IT Risk Management Framework and Plan across the FPH Group covering IT and OT environment.

Participates in developing and implementing the technology/IT risk policies and procedures of the various FPH Group.

Participates in performing independent Technology/IT Risk Assessments and Risk Management Process.

Collects and validates data that measure key risk indicators (KRIs) to monitor and communicate their status to relevant stakeholders for their decision-making process.

Participates in preparing Technology/IT Risk Management and/or DPA Reports and Materials for FHP Group to ManCom, ExeCom and BOD on relevant internal Technology/IT risks.

Participates in evaluating the effectiveness of the existing Technology/IT Risk Management processes, in identifying improvement needs and in recommending improvement measures.

Participates in developing, reviewing, implementing, monitoring and overseeing the Information Security Management System (ISMS) including Cybersecurity standards, policies and procedures of FPH and FirstGen.

Participates in managing the conduct of Technology Risk, Information Security and DPA awareness/orientation program. Acts as the DPO of FirstGen for further compliance to Data Privacy Act (DPA) and applicable laws and issuances of National Privacy Commission (NPC).

Coordinates and reports the Group DPO and FPH DPO in ensuring FirstGen compliance to Data Privacy Act (DPA) of 2012 and data privacy implementing rules and regulations.

Assists the Group DPO in managing the DPO Council in meeting its objectives.

Qualifications:

Graduate of B.S. Computer Science, B.S. Computer Engineering or B.S. Information Technology

At least 5 years experience in handling information security

Job Type: Permanent