Avis de recrutement : Recrutement d’un(e) Spécialiste en technologies de l’information (sécurité technique) aux Philippines.
Job Purpose
The IT Specialist (Technical Security) is responsible for ensuring key risks in the domain of Identity and Access Management (IAM) are timely identified and addressed. The person will also support other Technical Security functions including but not limited to Cyber Security Operations, Security Engineering, Red Team Exercises and Forensic Investigation.
The incumbent reports to Director, ITID and may supervise national and/or administrative staff.
Responsibilities
- Access Management Infrastructure Operations
– Engage relevant stakeholders in managing requirements, solution delivery and ongoing enhancements relating to Identity and Access Management (IAM), Privileged Access Management (PAM), Active Directory (AD) and Public Key Infrastructure (PKI) solutions
– Manage delivery and managed service providers and oversee extended teams of vendor personnel to ensure key performance objectives and service level agreements are met
– Develop and maintain performance metrics, snapshots and report key business outcomes, benefits and / or risks and issues
– Adhere to internal and external compliance requirements and support regular attestation efforts focusing on relevant access management controls
- Security Operations Support
Participate in the Bank’s first line-of-defense activities as a member of the Cyber Security Operations Center in our effort to combat cyber threats, particularly providing support over a number of the following capabilities where applicable:
– Blue team operations
– Incident response
– Forensic investigations
– Security infrastructure engineering
– Security automation and orchestration
– Red / purple team operations
– Security analytics and proactive threat hunting
– Attack surface management
– Vulnerability disclosure and bug bounty program
- Capacity Building and Process Improvement
– Closely collaborate with the CISO function and ensure operational alignment with security strategy, governance directives, policies and procedures
– Continuously improve service quality and efficiency through the use of process automation or other process improvement techniques
– Provide guidance, training and support to reporting staff and agency personnel
– Foster growth within the team and across the Bank’s various cyber security functions and grow with the team at large
– Liaise with relevant stakeholders within and outside ITD and effectively communicate cyber security topics with an impact
– Inspire and nurture a culture of cyber security within the Bank and with the Bank’s external stakeholders and clients, where applicable.
Qualifications
Relevant Experience & Requirements
- Master’s degree or equivalent in IT or relevant fields. Alternatively, university degree in related fields, combined with relevant specialized professional experience may be considered in lieu of a Master’s degree;
- Minimum of 8 years of relevant professional experience with preferably more than 5 years of experience in the field of IAM or PAM;
- Hands-on implementation or operations experience with one or more leading IAM solutions (e.g. Sailpoint, Saviynt, One Identity or others) is strongly preferred;
- Strong focus and familiarity with security concepts and technologies in the wider Identity and Access management domain (Logical Access Controls, Role Based Access Controls, Passwordless / multi-factor authentication, PKI infrastructure, Single Sign-On, etc.);
- Knowledge with Microsoft and Azure technologies as well as any of the capabilities under Security Operations is an advantage;
- Certifications in IT Security, such as Certified Information Systems Security Professional (CISSP), Global Information Assurance Certifications (GIAC), and/or IAM / PAM related areas will be an advantage;
- Knowledge of management issues involving IT security in a large corporate environment;
- Ability and experience to work in a multicultural environment with people of diverse background;
- Demonstrated experience building teams and capabilities is strongly preferred;
- Excellent interpersonal, relationship, and stakeholder management skills;
- Excellent written and verbal communication skills in English;
- Please refer to the link for ADB Competency Framework for IS4.
Application process
Deadline : Friday, March 24th, 2023 11:59 p.m. (2359 Manila Time, 0800 GMT)