Head, Governance Awareness and Analytics Department

to follow

Be #InGoodHands with Metrobank!

 

Here at Metrobank, we don't simply hire employees—we hone future leaders. We provide opportunities that enhance your skills and unlock your talents, helping you evolve into a well-rounded individual. We supply you with all the pieces you need to do your best work, unleashing your full potential to help you secure your future and lead a fulfilling career. And with Metrobank's strong heart for the community, you have the chance to give back and make worthwhile contributions to our nation's economic and social development. With Metrobank, a meaningful life is within your reach!

 

Position Title: Head, Governance, Awareness and Analytics Department

 

Job Summary:
 

  • Assist the Division Head in developing strategies, tactical plans and programs for the establishment and maintenance of the Bank’s information security governance framework
  • Formulate and recommend information security policies and procedures to meet the bank’s information security objectives and ensure effective implementation
  • Perform security data analytics to ensure Information Security Governance achieve its objectives, information security risk is managed at Bank acceptable levels, security systems functions effectively and efficiently as well as for management reporting
  • Manage department resources and performance

 

Role Exposure:

 

  • Assist the Division Head in finalizing the Information Security Management and Governance tactical plans and programs
  • Manage the formulation, recommendation and review of information security policies, standards, guidelines, procedures and internal ISD procedures to meet the bank’s information security objectives
  • Identifies information security policy gaps and develops/assists in policy, standard, guidelines and procedures documentation
  • Leads the annual budget preparation, monitoring and managing the resources, budget and expenses
  • Establishes and manages the implementation of an Information Security Advocacy, Awareness and Training program to include the latest information security threats, issues, best practices, methodologies, standards and advisories
  • Establish the security analytics practice to analyze and consolidate risk data and security tools performance for monitoring and managing the information security risk exposure at Bank acceptable levels
  • Develops and manages the implementation of the security metric management program to improve various information security processes
  • Manages the accurate and timely reporting of information security risks and metrics to management and appropriate stakeholders
  • Works with other ISD Departments to ensure closure of audit and compliance exceptions
  • Liaises with other units of the Bank on their information security governance, risk and compliance related duties, responsibilities and practices
  • Monitor, manage compliance to ISD applicable BSP regulations and consolidate ISD response to BSP compliance and reportorial requirements
  • Proactively works with the Information Security Division Head in implementing programs for the continuous improvement of the bank’s information security plans and strategies
  • Manages utilization of resources within his/her department and performance of department officers and staff
  • Performs other information security related duties and responsibilities as directed by the Head of the Information Security Division

 

Qualifications:

 

  • Graduate of any college degree in Computer Science or Information Security, or related technical field of expertise
  • Has experience in information security governance management, risk management, information security policy development, key risk and performance metrics development and management, awareness, training, and advocacy
  • Experienced and well versed in information security risk assessment and management
  • Have working knowledge, understanding and experience in bank processes, IT processes, access controls, data security, controls assurance, controls and risk assessments
  • Result-orientated in terms of disposition for corrective action to drive the remediation to reduce the risk exposure of the bank
  • Preferably with IS security related certification such as CISA, CISM, CRISC, etc.
  • Knowledgeable on various compliance and regulatory requirements (i.e., BSP, DPA, PCI-DSS, etc.)
  • People Management Skills: Ability to lead and work well with the team, internal, and external clients. Have good teamwork and collaboration skills: good team players with the ability to lead security initiatives
  • Good Project management skills: to lead and manage accomplishments of assigned tasks

 

Other Details:

Rank: Junior Officer

Unit: Financial & Control Sector / Information Security Division / Governance, Awareness and Analytics Department

Location: Metrobank Center, BGC, Taguig City

to follow