Job Posting Requirements

Company Name: Bangko Sentral ng Pilipinas

The Bangko Sentral ng Pilipinas Risk and Compliance Office is looking for dedicated and qualified professionals to head the newly formed Compliance Management Group (Deputy Director) and to complete the teams in its Risk Management and Compliance Management Groups (supervisory/managerial levels). 

Interested applicants may submit their application form and curriculum vitae to Ms. Krishna Laksni R. Paras at

Company Name: Commission on Audit

Date Posted: April 4, 2019

The Information Technology Audit Office (ITAO) under the Systems and Technical Services Sector of the Commission on Audit are looking for the following qualified applicants:

The Position: Six (6) Information Systems Analyst (ISA) I, Salary Grade-12

                         Eight (8) Information Systems Analyst (ISA) II, Salary Grade-16                        


  • Bachelor's degree in IT or related course
  • With/without experience
  • CISA certification or other IT certification i.e. Cisco CCNA/CCNP, CompTIA Network+ Certification, ITIL, ​Cobit 5 foundation, ITIL v3 Foundation
  • Civil Service Professional Eligibility or Honor Graduate Eligibility (P.D. 907), R.A. 1080
  • Fully accomplished Personal Data Sheet (PDS) with recent passport-size picture (CS Form No. 212, Revised 2017) which can be downloaded at
  • Photocopy of certificate of eligibility/rating/license
  • Photocopy of Transcript of Records.
  • For ISA II position experience is required, at least two (2) years auditing experience in IS Audit.

Interested Applicants:

          Please email to: or  call ITAO at trunk line number 952-5700 local 4020/2119 look for Mr. Menard Sanduco.

Company Name: ING Bank, Manila

Company Location: NCR - National Capital Region, Philippines

Position: Project Manager (Global Bank)

Date Posted: February 18, 2019

An enthusiastic, analytical individual who has an interest in project management, preferably with a background in Data Management and preferably with banking experience, to work as a Road Manager (RM) within the dynamic and complex global environment of Global Data Management.


The Company's Think Forward strategy aims to create a differentiating customer experience, enabled by simplifying and streamlining our organisation, further striving for operational excellence, enhancing the performance culture within our company and expanding our lending capabilities. Global Data Management is a core component of the Company's Think Forward strategy. A Chief Data management office (CDMO) has been established in the COO domain to ensure that the Company has trustable data that is fit for the purpose (timely, complete, accurate, adoptable, comprehensive, consistent, and appropriate), enabled by a state-of-the-art data architecture and IT infrastructure.


Within the Data Management department, a Data Portfolio and Demand Management function has been established with responsibility for aligning roadmaps and delivery schedules across the data product domains. In addition, Road Manager (RM) role(s) have been established with responsibility for supporting the organisation in realising this large and complex change. The RM’s bring people together and work towards a shared change target end product, aligning with squads, tribe leads and the executive board to implement the change target through short-cycle implementations.
Based on your experience you may be hired as Junior Road Manager, where you will be involved with smaller change initiatives which will give you the ability to grow into a Senior Road Manager role.


Skills required
You know how to achieve goals in a large complex organisation; you build and maintain relationships with your stakeholders; you act strategically; and you are able to adapt concepts to a tangible execution. You have a track record in implementing complex global programmes, and you know how to solve problems that are impacting the progress of the programme area you are responsible for.


Additional skills sought include:

  • Knowledge in the area of Data Management and preferred, Process Management;
  • Preferably experienced in the financial or consulting sector;
  • Understanding of process management and strong program management skills;
  • IT-savvy;
  • Good at finding pragmatic solutions when necessary;
  • Consulting mindset including an ability to think about Data Management solutions and discuss with different stakeholders;
  • Effective communication of business requirement with technical team members;
  • Results oriented with an ability to find ways of solving or pre-empting problems;
  • Excellent (English) verbal and written communication skills;
  • Analytical thinking, able to work under pressure, capable to meet certain deadlines;
  • Ability to communicate ideas clearly and concisely: strong, clear communicator across departments;
  • Team player with ambition and energy, decisiveness and discipline;
  • Passion for delivery and customer satisfaction with an enthusiastic, “get-it-done” attitude and ability to see the big picture.
  • Strong familiarity with what the Company does in the area of Global Data Management Remove for external posting
  • Banking content knowledge, i.e., PSD2 BSBC239, and other regulatory reporting standards, as well as client product offerings
  • Strong programme management and problem solving skills
  • The ability to persuade people and to turn resistance into cooperation;
  • A thorough command of EXCEL, PowerPoint, Service Now and other Agile software
  • A Master’s degree in any relevant field, but an MBA or a Master’s in IT is preferred.
  • CGEIT, Six Sigma, Scrum, SaFe or PMP certification is a plus
  • International experience is an advantage.

You adhere to the Company's values and your behaviour is aligned to these values.


Job description
As a data management professional you will be responsible for the implementation of high profile international programmes, where you will be focused on the Data Management stream of the programme. Tasks include:

  • Prepares reports, develops and monitors metrics, provides requirements for dashboards
  • Defines data stream roadmaps for a variety of initiatives
  • Active coordination with the 12 Global Data Management capability leaders to ensure data stream milestones are established and then executed according to the delivery schedule
  • Communicates Epic Proposal to all prospective participants
  • Defines the scope of all required handshakes between participants
  • Captures associated impediments.

Work environment
You will work closely with the Demand management leadership team which is based in Amsterdam, The Netherlands. Daily interactions using SKYPE technology will insure you have ability to work as a team member interacting with the Company's personnel around the world.


Global Data Management 

Head of Demand Management

Senior Programme Manager

Global CDO Office
ING Bank

PA: Tiny van Sante


Company: Solaire Resort & Casino

Position: IT Risk and Compliance Analyst

Date Posted: October 22, 2018


 The IT Risk & Compliance Analyst shall assess, integrate IT controls checks and ensure risks are identified and mitigated or removed.  This position shall continually monitor the compliance to policy and develop strategies to improve work practices and reduce the policy non-compliance with audit both internally and externally. This position will also work with Corporate Compliance to ensure that sufficient IT controls are in place to ensure adherence to the various regulatory requirements of Solaire.


The role will help ensure that the IT related risks and compliance requirements are assessed and addressed proactively to prevent any potential consequences to the Hotel and Casino that may translate to operational, financial, regulatory and reputational impact. This includes, but not limited to, assessing and addressing risks pertaining to system outages, data privacy, data accuracy and fraud. The role will also develop strategies and action plans that will assist in making IT processes more formalized and defined to produce more efficient, consistent and repeatable IT processes in the organization.



  • Develop and drive risk-based IT General Controls and Security strategies and ensure the effectiveness of solutions.
  • Develop strategies and ensure enforcement of the following IT controls:
    • Logical access controls over IT infrastructure, applications and data.
    • Systems Development Life Cycle ControlS
    • Program Change Management Controls
    • Data Center Physical Security Access Controls
    • System and Data Backup Recovery Controls
    • Computer Operations Controls.
    • Information Security Controls
  • Maintain and update the IT Risk Register and Conduct Annual Risk Assessments.
  • Work with Enterprise Risk Management to ensure that impact, likelihood and control recommendations are up to date. Raise new risk items when necessary.
  • Participate in performing vendor risk assessments.
  • Monitor the Legal and Regulatory environment for IT control implications.
  • Work with Corporate Compliance and spearhead development of IT control guidelines for the Data Privacy Act.
  • Monitor and enforce breach reporting requirements for the Data Privacy Act and any other regulatory and compliance requirements.
  • Coordinate with internal and external auditors in providing document and evidence request and work with the various IT teams in providing management responses to findings.
  • Update, maintain and document IT General Controls and Security controls and provide direct support to internal IT groups.



  • Preferred certification (CISA, CRISC, CISSP, GIAC Security)
  • Working knowledge of IT risks, compliance, and regulatory implications across computer platforms.
  • Good understanding of information security standards such as COBIT, ITIL, COSO and ISO27001/27005.
  • Strong analysis and troubleshooting skills
  • Detail-oriented, organized, and well versed in creating reports.
  • Good communication
  • Willingness to learn and evaluate new technologies
  • Proficient knowledge of Windows Operating systems, Microsoft Office Suite and other productivity tools.
  • Customer orientated and a good team player
  • Professional and committed
  • Willing to be on call 24/7, in case of security incidents.
  • Willing to work on extended hours and shifting schedule
  • 3 years work experience in an IT Audit, Compliance, Risk Management, or related position.
  • Must have experience in an enterprise-level IT organization
  • Experience with Risk Assessment methodologies and auditing of IT Controls.


For interested applicants, kindly submit your CV to Angela Osit  at

Company: Solaire Resort & Casino

Position: IT Security Analyst

Date Posted: October 22, 2018


The IT Security Analyst shall define, assess and implement cyber security controls and solutions to ensure Solaire systems are protected from cyber security attacks and malware. The position shall provide expert advice and draft tactical and strategic plans to eliminate malware infections in Solaire. The position will also help ensure that security controls such as proper vulnerability management and patching are enforced, kept up to date and effective in preventing cyber security attacks and malware outbreaks. In the event of cyber security and malware incidents, the IT Security Analyst will assist in the detection, containment and elimination of the threat.


 The role will help ensure that sufficient security controls are in place to prevent, detect or effectively respond to cyber security incidents that may lead to operational, financial, regulatory and reputational issues in the organization. This includes but are not limited to preventing or responding to malware outbreaks to minimize its impact to hotel and casino operations. The role will also proactively assess emerging security threats and advise management regarding potential solutions and strategies needed to address these threats. 




  • Develop and enforce strategies for malware prevention, detection, containment and response.
  • Monitor status of vulnerability management and patching process of the various infrastructure and applications.
  • Assess and enforce security architecture and solution requirements for the organization.
  • Manage proof-of-concept activities and projects when evaluating new security solutions.
  • Perform information security risk audits and security controls maturity assessments for the organization.
  • Assist in monitoring security breaches and assist in investigating a violation when one occurs.
  • Research the latest information security trends and emerging threats. 
  • Prepare reports pertaining to status of security solution implementations.
  • Collect data and prepare reports for Information Security Key Risk Indicators (KRIs)/
  • Assist in developing information security standards, best practices and procedures.
  • Attends departmental meeting and training when requested.
  • Performs other duties that may be assigned by immediate superiors from time to time.



  • Preferred certification (CompTIA Security + or CISSP)
  • Must have experience in an enterprise-level IT organization
  • Experience in monitoring through the use of (SIEM) Security information and event management system.
  • Strong analysis and troubleshooting skills
  • Good communication
  • Willingness to learn and evaluate new technologies
  • Proficient knowledge of Windows 7, Windows 10, Windows 2008 Server, Windows 20012 Server
  • Proficient grasp of Firewall, Web Proxy, AntiVirus and Device Control solutions technologies.
  • Strong knowledge of Active Directory
  • Good understanding of information security standards such as ISO/IEC 27001
  • Strong knowledge of TCP/IP and OSI layers
  • Customer orientated and a good team player
  • Professional and committed
  • Willing to be on call 24/7, in case of security incidents.
  • Willing to work on extended hours and shifting schedule
  • 3 year’s work experience in a Security Analyst or related position.

For interested applicants, kindly submit your CV to Angela Osit  at

Company: ABS-CBN Corporation

Position: IT Team Lead Process Analyst


    1. IT Process and Policies Function Area
      • Review, evaluate, develop, endorse and monitor information technology processes and policies to support IT strategy and following the industry best practice, in compliance with government laws and in alignment with the mission, vision and internal organizational needs of ABS-CBN Corporation.
    1. IT Audit and Compliance Function Area
      • Ensure IT processes complies with existing policies and standards
      • Identify and evaluate IT systems, processes and controls as basis for reporting upon its effectiveness, accuracy, adequacy and security.
      • Obtain sufficient, relevant information on which to base conclusions (findings) and provide valuable recommendations
      • Follow through each audit item(s) and actively seek responses and resolution
    1. IT Continual Service Improvement
      • Ensure appropriate KPI’s are collected from processes as aligned with IT business objectives
      • Recommend improvement opportunities by reviewing and analyzing process and service metrics
      • Provide timely, accurate, and relevant management, information/reports that will aid in making strategic and tactical decisions
      • Review, analyze and recommend opportunities to improve performance and reduce cost
      • Ensure that app approved CSI action items are completed and they achieve desired results
    1. Software Quality Function Area
      • Perform quality control and assurance during systems development for applications developed by internal IT Development Group
    1. Project Management and Account Management Function Area
      • Serve as IT Project Manager in assigned IT projects
      • Serve as IT Account Officer for IT Division


      • Graduate of Industrial Engineering, Management Engineering, Business, or other IT-related course
      • At least 4 years’ work experience or combined experience in IT Process and Policies Analysis and Design, Quality Control and Quality Assurance, IT Service Management, Project Management and Implementation, and IT Account Management
      • Sold have in-depth application of process analysis, compliance reviews, service management, and quality management
      • Should have application of project management and account management
      • Should be knowledgeable in systems analysis, entity relations analysis, software development and project management
      • Must be ITIL v3 certified
      • Other certifications such as PMP, COBIT, and relevant IT Governance frameworks are a plus
      • Should be knowledgeable in IT core processes
      • Should have understanding of ABS-CBN core business process and value chain as well as Division/Department business processes, interfaces and dependencies

Preference will be given to candidates who APPLY ONLINE.

Company: Mazy's Marketing Corporation


Summary of Role:

The auditor is responsible for properly monitoring the accounts and checking the accuracy of the financial records of the company.

Scope of Work and Responsibilities

• Reports directly to the Chief Financial/Operations Officer
• Manage all accounting operations including Billing, Accounts Receivables, Accounts Payables, Cost Accounting, Inventory Accounting and Revenue Recognition
• Coordinate the preparation of regulatory reporting
• Recommends budget and financial forecasts and report variances
• Update, develop and documents business processes and accounting policies to maintain and strengthen internal controls
• Implement and facilitates financial risk management
• Prepare and publish timely monthly financial statements
• Support month-end and year-end close process
• Ensure quality control over financial transactions and financial reporting
• Research technical accounting issues for compliance
• Additional auditor duties if needed under his or her scope of work

Education and Experience

• Must have at least 3+ years of experience as an auditor or with strong auditing experience
• Has a Degree in Accounting
• Preferably CPA
• Thorough knowledge of accounting principles and procedures
• Has in-depth financial analysis and expert financial perspective
• Strong understanding of tax codes and laws
• Experience with creating financial statements
• Experience with general ledger functions and the month-end/year end close process
• Proficiency with accounting software is a plus

Qualifications and Skills

• Preferably in CAMANAVA area (Caloocan, Malabon, Navotas and Valenzuela) or willing to travel to Malabon
• Highly Professional
• Exceptional auditing skills
• Exceptional financial management skills
• Strong organization skills
• Performance driven
• Innovative
• Decision maker and problem solver
• Can handle stress well

For interested applicants, kindly submit your CV to Kyla Lim at You may also reach her at 0917-599-4290

Company: Crawford & Company 


Summary of Role:
Performs internal reviews of complex financial, operational, and IT processes and audits internal controls in various areas of the organization. Identifies exceptions to procedures and standards, and develops specific solutions or recommendations.   May serve as the project leader on standard audits and review the work of other audit project contributors.


  • Under the direction of a more senior auditor or project leader, participates in complex audit programs and may perform routine assignments independently.
  • Participating in planning for large scale audit projects.
  • Effectively plans engagements and projects to meet audit objective and deadlines.
  • Evaluates documented internal controls design and effectiveness and communicates results in work papers and written reports to all levels of management.
  • Analyzes root cause and assists with the development of effective remediation plans for control deficiencies. Identifies areas of improvement, and discussing findings and recommendations with process owners.
  • Utilizes data analytics tools and techniques to increase testing coverage and ensure high quality audit results.
  • Works with the company’s external auditors to provide understanding of areas documented, results of testing and any identified compensating controls.
  • Engages in ad hoc projects assigned by supervisor, which may include re-engineering projects around technology systems and controls, fraud assessments from a financial systems perspective and reviews of systems and controls for international and/or domestic acquisitions.
  • Performs Pre and/or Post System implementation reviews in support of Financial System implementations.
  • Fosters relationships with key stakeholders and other key leaders.
  • Prepares accurate, concise, professional written communications to be shared with senior management, clients, and/or the Audit Committee. Leads or facilitates meetings with Company management to discuss audit findings with management.
  • Upholds the Crawford Code of Conduct. 


  • Five to seven years of experience in Public Accounting or Internal Audit.  Preference for those with in-depth exposure in IT Controls, Systems Audit, Financial and Business Controls Audit.
  • Comprehension of professional auditing standards, US GAAP, SOX, COSO, COBIT and risk-assessment practices.
  • Bachelor’s degree in Accounting, Finance, Computer Science or a related field is required. 
  • Certification as a CISA preferred.
  • Strong project management abilities as well as excellent communication skills, both verbal and written.  
  • Excellent interpersonal skills
  • Pursues training and continuing education in auditing and as well as accounting and information technology areas.

The applicants can send their CVs to the following HR personnel: To: Raphael Pleno -  / Cc: Cheryl Eblacas -


COMPANY: Cebu-based Company

POSITION TITLE: Internal Audit Manager and IT Auditor

*Good compensation and benefits.

Interested Applicants may submit their CVs to


POSITION TITLE: Assitant Department Manager I

Salary Grade : 24
No. of Position/s : 1
Item No/s. : 3868
Educational Requirements : Master’s degree OR Certificate in Leadership and
Experience Requirements : 4 years of supervisory/management experience
Training Requirements : 40 hours of supervisory/management learning and
Civil Service Eligibility : Career Service (Professional) Second Level Eligibility
Preferred Qualification : Bachelor’s Degree relevant to the job; CISA or other ITrelated certification; With 4 years of progressive
experience in auditing, accounting, business analysis or program evaluation, including 2-year experience conducting Information Technology Audit;

Hasknowledge of generally accepted information systems (IS) audit standards, statement and practices, IS
security and control concepts and practices andsystems development methodologies; 24 hours relevant training;

Proficient in English (written and oral)

Contact Person: Ms. Amy N. Pajarillaga / Contact # 02-4223000 local no. 5019
Email Address:

Note: Please address your application to Atty. Ryan R. Espinosa, Department Manager III, Human Resource Development Department

Interested applicants are requested to accomplish the Personal Data Sheet Form which can be downloaded at

Applicants presently employed with other Government Agencies must submit January to June 2016 IPCR/DPCR/OPCR
and July to December 2016 IPCR/DPCR/OPCR

Deadline of submission of applications on March 15, 2017

Company: Asian Development Bank

POSITION TITLE: Assistant Project Manager for the IT Security Project

Terms of Reference:
The Asian Development Bank (ADB) is starting the implementation of a major set of IT reforms (referred to as Real Time ADB). Staff are required to assist ADB with the implementation of a number of priority initiatives, such as information systems in support of operations, financial, procurement and HR, business foundations, infrastructure foundation, and IT services.

For this initiative, OIST needs to acquire the services of an Assistant Project Manager with domain knowledge on information security to assist the Project Manager in the implementation of the IT Security project and associated subprojects.

Key Information:
The Assistant Project Manager is responsible for (i) the success of the series of subprojects for IT Security within Realtime ADB, and must therefore ensure that appropriate timing, resources and sequencing of work efforts are applied to create the project deliverables within a agreed time frame and budget; and (ii) ensuring that ADB’s IT Project Management Framework, tailoring agreement, project standards, procedures and policies are followed. As the Assistant Project Manager, the incumbent assists the Project Manager in supervision and technical direction, and assigns and monitors work of analysts and other team members.

Scope of Work:
The specific responsibilities of the Assistant Project Manager include assisting the IT Security Project Manager in:
1. Deploying ADB’s Project Management Framework, tailoring agreement, project management standards and procedures within the project and associated subprojects;
2. Monitoring work for compliance to the above.
3. Managing the day to day project activities and allocating and coordinating appropriate resources to the project, including reassigning tasks if needed;
4. Anticipating, escalating, or providing recommendations on mitigating project related issues to the Project Manager; resolving minor project issues under the guidance of the Project Manager;
5. Assisting the Project Manager in preparing presentation materials and minutes for the IT Committee, Project Steering Committee, and other relevant stakeholder meetings;
6. Assigning, following up, and monitoring work of analysts and other team members within the agreed timelines;
7. Keeping abreast of technological developments and global trends and translates them into technical guidance or advice to the IT Security Project Manager and other stakeholders;
8. Coordinating change management and risk management issues and building effective work relationships among key project stakeholders;
9. Monitoring and evaluating project progress and providing accurate and timely reports;
10. Facilitating smooth turnover/rollout of projects;
11. Other duties expected of an Assistant Project Manager.

Skills and Qualifications:

The person is expected to have the following skills and experience:

  • Degree in Computer Science, Information Systems, or related disciplines.
  • At least three (3) years in project management experience handling IT security-related projects on security governance (such as ISO 27001 implementation, security awareness program improvement, or security controls improvement)
  • Demonstrate skills in project estimating, planning, designing, and scheduling personnel.
  • Must have skills in effectively addressing project-related issues to ensure smooth day-to-day flow of project activities.
  • Must have the ability to manage competing priorities on an ongoing basis by negotiating priorities and resolving conflicts.
  • Must have experience using Microsoft products (Word, Excel, Powerpoint, Visio, Project, Sharepoint) for professional documentation.
  • Must be conversant with or can quickly learn ADB’s Project Management Framework.  Must be flexible, assertive, and approachable and must possess foresight.  Must be able to handle stressful situations, to delegate tasks and to bring together the ideas of team members.
  • Must have excellent oral & written communication and presentation skills in English.
  • Preferably show experience working on identity management or data masking projects
  • Preferably show experience working with large information-based organizations and working with senior stakeholders in a multicultural context.
  • Preferably CISM or CRISC certified.
  • Preferably PMP, Prince2, MSP, AgilePM, PMI-ACP, PSM/CSM, or ITIL certified.

Engagement Period
The selected Assistant Project Manager will be engaged for a period of two (2) years.

 Should you be interested kindly send your resume to or 

Company: Prime Manpower

Job Functions:

  • Development of audit programs (based on a risk based approach and management of audit projects that
  • effectively utilize Internal Audit resources throughout the year
  • Monitor progress of multiple simultaneous projects and take necessary action to meet target completion
  • dates and ensure timely completion of audit reports
  • Provide supervision, guidance and training for all auditors
  • Capable of understanding processes and related risks
  • Provide oversight and direction to audit staff on audit engagements which includes, but is not limited to,
  • evaluation of risk assessments, audit work plans, audit programs, audit testing and internal audit reports
  • Performs critical project management duties in the planning, scheduling, coordinating, reviewing and
  • reporting of the work of audit teams for multiple concurrent projects
  • Communicate with business leaders on audit results and operational risks
  • Mentor audit staff members and monitor that their work product for conformity with department policies and
  • Auditing Standards established by the Institute of Internal Audit
  • Identify any weaknesses in processes, investigate opportunities for cost savings and recommend and
  • implement changes to strengthen internal controls
  • Ensures professionalism and independence and the constant appearance of professionalism and independence



  • Bachelor's Degree required
  • Minimum of 10 years of experience in IT Auditing or related field is required
  • Specialized experience in, and knowledge of IT control and security activities including, but not limited to:
  • Regulations impacting the confidentiality, integrity, and availability of customer nonpublic personal
  • information
  • Business application controls including logical access, application change management, disaster recovery and
  • application processing controls
  • IT control best practices within key IT infrastructure areas including network and Internet security, application
  • development, IT project management, data center operations and general IT operations
  • Security measures and auditing practices within various operating systems, databases and ERP systems
  • IT governance practices including security awareness and IT policies and procedures
  • Business continuity and disaster recovery best practices and physical security measures
  • Experience with third party governance and oversight measures
  • A minimum of 10 years should be related to internal audit process reviews
  • Effective team builder with strong leadership and communication skills
  • Ability to manage multiple priorities in an organized fashion with attention to details
  • Demonstrated ability to effectively manage complex or multi-functional audits
  • Demonstrated ability to have a positive interaction with management and work across departmental lines in
  • order to effectively execute audits
  • Strong project management skills, IT and change management experience recommended
  • Strong interpersonal skills
  • Excellent communication skills, both oral and written, are required
  • Open to Night Shift (6PM – 3AM)
  • Ability to travel

Preferred Qualifications:

  • Advanced degree preferred.
  • CISA certification is preferred.
  • MBA, CPA or Certified Internal Auditor Designation is a plus.

Should you be interested kindly send your resume to


Company: Bangko Sentral ng Pilipinas


Be the first Cybersecurity Examiner!
The CORE IT SPECIALIST GROUP is looking for cybersecurity/information security specialists with background on financial services industry to be part of its new team, the Cybersecurity Surveillance and Oversight Staff*.

-          Master’s Degree

-          At least 5 years of relevant experience in any of the following areas: IT examination, IT supervision, IT risk management and control, information security management, vulnerability analysis and penetration testing, malware analysis and/or cyber investigation, IT operations and related fields with exposure in banking, payment systems, ATM services and other financial environments
-          At least 24 hours of recent relevant training: with two (2) IT-related Certifications, one of which should be Certified Information Systems Auditor (CISA)
-          Career Service Professional or any equivalent Second Level eligibility

With recent technical background and experience in IT disciplines, particularly in information security, incident handling, threat/malware analysis, cyber-fraud; Strong research, analytical, and communication skills; With experience in policy formulation

Interested? Contact SOMGH at local 2648 or via email at Please email or submit your application form and/or Personal Data Sheet to SOMG, 10/F Multi-Storey Building, BSP Complex, A. Mabini St. cor. P. Ocampo St., Malate Manila, Philippines 1004



The CORE IT SPECIALIST GROUP is looking for cybersecurity/information security specialists with background on financial services industry  to be part of its new team, the Cybersecurity Surveillance and Oversight Staff 


  • Master’s Degree
  • At least 5 years of relevant experience in any of the following areas: IT examination, IT supervision, IT risk management and control, information security management, vulnerability analysis and penetration testing, malware analysis and/or cyber investigation, IT operations and related fields with exposure in banking, payment systems, ATM services and other financial environments
  • At least 24 hours of recent relevant training ; With two (2) IT-Related Certifications, one of which should be Certified Information Systems Auditor
  • Career Service Professional or any equivalent Second Level eligibility

With recent technical background and experience in IT disciplines, particularly in information security, incident handling, threat/malware analysis and cyber-fraud; Strong research, analytical, and communication skills; With experience in policy formulation 

Interested? Contact SOMG at local 2648 or via email at Please email or submit your application form and Personal Data Sheet to SOMG, 10/F Multi-Storey Building. 



Company: Del Monte Philippines, Inc. (DMPI)

   • A leading producer of pineapple and other food products.
   • The company markets over 100 processed food and beverage variants, including pineapple solids (slices, tidbits, chunks), tropical mixes, pineapple juice and mixed drinks, tomato-based products (tomato sauce, catsup, spaghetti sauce), condiments, and pasta (spaghetti, macaroni).
   • Today, Del Monte Philippines operates the largest integrated pineapple operation in the world. The company grows pineapple across 20,000 hectares in Bukidnon and Misamis Oriental. Two distinct pineapple varieties are grown, for processing and for fresh fruit export.
   • Around 4,000 regular employees work with Del Monte to bring high-quality products to customers around the globe. Over 90 percent of these employees work in Mindanao. Key teams managing sales, marketing, finance, logistics, product development and other support operations are based in Metro Manila.

Work Type: Full Time
Location: Manila

About the role:
We are seeking a Manager for Information Systems Audit to perform detailed evaluation and internal auditing of computer information systems, in accordance with the requirements of the audit group’s charter and the internal auditing profession’s standards and code of ethics.

Key duties and responsibilities:
   • Develop/review audit work programs in accordance with standards to ensure that proper audit objectives are set and the necessary audit procedures are taken.
   • Direct, counsel, and instruct staff auditors as the audit engagement progresses to ensure that approved programs are followed, established standards are complied within the set timelines.
   • Perform high-level risk assessment at least annually to ensure that audit plan addresses the areas where risk exposure is relatively high.

To be successful in this role, you must be a professional with a proven track record and understanding of information systems risk management with at least 6 years in internal or external auditing and a Certified Information Systems Auditor (CISA).
   • Internal auditors must be proficient in writing to be able to produce credible, comprehensive and easy to read audit reports.
   • They should be eloquent speakers to be confident in dealing with their peers or management.
   • Auditors must be professional and objective in dealing with their peers and auditees.
   • Auditors must also adhere to the ethical standards of the profession in fact and in appearance.

To apply, visit our careers website and create an applicant profile. You may also email Sarah Soriano ( for inquiries.



Company: SISA Information Security Pte. Ltd.

-         Leading payment security assurance company having customer presence in over 30 countries. SISA offers an exciting career path, full of opportunities and a great learning environment. SISA professionals are recognized as Payment Security Specialists in the industry.

Location: Manila, Philippines


- with 3+ Years’ experience in information security management


  • Coordinating with client: Candidate should coordinate with SISA, PCI Qualified Security Assessor and the client for all kind of technical information and PCI related implementations. The candidate should be able to report on periodic basis to the client on the progress made on the PCI remediation.
  • Support the client’s technical team: Candidate should support client’s technical team to understand the PCI DSS gaps identified by SISA QSA’s. Candidate is required to provide daily update regarding the execution process and build a bridge between SISA’s PCI QSA and the client. 
  • Providing advisory support to end client: With the instruction and advice from SISA PCI QSA, the candidate should help the end client to understand all the Gaps/Risk in the environment and how to address all the risks. In this process the candidate can have full support from the SISA’s in-house team.
  • Participating in planning and implementing: Candidate should be a part of the planning and implementing team of the client to give more inputs from PCI remediation standpoint.
  • Escalation Handling: Candidate should be able to escalate and get items closed based to keep up within timelines of the remediation cycle.

- Any Graduation/ Post Graduation (preferably in information security)
- Candidate should have passed ISO 27001 LA/LI or CPISI
- Candidates who cleared CISA/ CISSP/ CISM/ PMP will be having added advantage

Send in your resume at Talent acquisition team with email address:
Last date for application: August 15th, 2016.



Company: Pacific Cross Insurance, Inc.

• Graduate of Computer Science/Information Technology or equivalent;
• With at least 2 years of work related experience.
• Must be knowledgeable in SQL server, Oracle and Web Application.
• Must have the ability to provide high levels of customer satisfaction by utilizing excellent customer service skills
• Must be a team player.

• Graduate of Engineering (Computer/Telecommunications), Computer Science/Information Technology or equivalent;
• With at least 2 to 4 years of experience in technical support services or customer service environment.
• With extensive background in Oracle
• Must be knowledgeable in MS-SQL, MySQL and Oracle database administration.
• Must have the ability to provide high levels of customer satisfaction by utilizing excellent customer service skills.

With college diploma preferably in Computer Science or a related degree.
Must have development experience using extensible web authoring tools (HTML, CSS and Javascript) and developing and implementing open source software project.
Must be knowledgeable in basic programming, Oracle/ Ms-SQL and any software development framework.
Must be a self-starter with strong self management and ability to organize and manage multiple priorities
Fresh graduates are welcome to apply

Graduate of Engineering (Computer/Telecommunications), Computer Science/Information Technology or equivalent
With CISCO certification is an advantage.
Preferably with at least 5 years of work related experience.
Must be knowledgeable in LAN/WAN, IBM compatible PC hardware servicing, Windows operating systems including Windows Server 2012 or Windows 7 and network design, administration, performance and tuning
Must have good communication skills (written and oral) and ability to provide high levels of customer satisfaction by utilizing excellent customer service skills.

Send in your resume at
Inquiries, look for Mae at +63 2 899 8001 local 6504



 GINEBRA SAN MIGUEL is hiring for the following positions:

           - Certified Public Accountant (CPA)
           - Preferably a Certified Information Systems Auditor (CISA)
           - With at least three years’ experience as IT Senior Auditor of a manufacturing firm or of a reputable public accounting firm
           - Possesses expertise in assessing the adequacy and effectiveness of IT general controls, application controls and business process reviews

           - Certified Public Accountant (CPA)
           - Preferably a Certified Internal Auditor (CIA)
           - With at least three years’ experience as Senior Auditor of a manufacturing firm or of a reputable public accounting firm
           - Possesses expertise in assessing the adequacy and effectiveness internal control systems

The successful candidates can look forward to an above-industry compensation and benefits package, learning opportunities and career development.

Applicants may send their resumes to



Company: [24] 7 



  • 5+ years of applicable experience in working in enterprise risk management.
  • 5+ years of experience with internal controls and performing risk assessments.
  • 3+ years of experience interfacing with business leaders at various levels including middle and senior management.
  • 3+ years of experience working within regulated industry such as banking or healthcare and/or cloud service provider.
  • Solid experience with risk management frameworks, concepts and methodologies.
  • Knowledge of risk management governance, controls and committee charters.
  • Knowledgeable with enterprise, IT control and security standards (COSO, CobIT, ISO, NIST, UCF, CSA, ANZ 4360, etc.).
  • Experience with risk management reporting, metrics and executive dashboards
  • Advanced skills with Microsoft Excel and PowerPoint
  • Bachelor’s degree in business, finance or technology
  • Professional certification desired (e.g., CRISC, CISA, CPA)


  • This role is responsible for managing and providing risk, intelligence and governance, and all other assigned functions in a global environment. 
  • This role will help in developing a formal approach to managing enterprise risk across all technology platforms and business environments. 
  • The role will also ensure appropriate risk management programs are in place in line with the business objectives and goals.
  • This position will interact with all levels of personnel to bring them together to define and manage controls that reflect business and operational needs balanced with legal, regulatory and client requirements, and risks.
  • Assist stakeholders in assessing the nature and severity of inherent risks and work together to identify and design risk mitigation strategies including risk reduction, acceptance or transference processes.
  • Work with business units to establish, maintain and continuously improve risk management capabilities and act as champion on risk related initiatives.
  • Establish, communicate and facilitate the use of appropriate Enterprise Risk Management methodologies, tools and techniques by business partners.
  • Facilitate enterprise-wide risk assessments and monitor priority risks across the company.
  • Evaluate and categorize risks based on predetermined criteria and regularly report risks to stakeholders, senior management, executive committees and the Board.
  • Analyze data provided by various teams to gain deep business knowledge and insight on risk posture of the enterprise.
  • Work with relevant stakeholders in implement tools and controls to measure and communicate existing risk levels and ensure that these risks are understood by stakeholders.
  • Plan & conduct periodic risk assessments and develop risk mitigation plans across all business units and corporate functions globally.
  • Ensure the ongoing integration of risk management with business strategies and requirements.
  • Collect, correlate and analyze risks from various business sources and develop tracking and reporting systems to determine risk posture of [24]7.
  • Develop and prepare general reporting and analysis of various risk activities, including developing metrics, dashboards, trend analysis and alerts.
  • Work with senior/middle management on routine risk identification/mitigation related activities as well emerging risks & adequacy of existing controls.




  • 5+ years of applicable experience in working in business continuity management.
  • 3+ years of managerial experience interfacing with business leaders at various levels including middle and senior management.
  • 3+ years of experience working in cloud computing, regulated industry or related fields.
  • Solid experience with business continuity management frameworks, concepts and methodologies.
  • Knowledge of business continuity management governance and committee charters.
  • Familiarity with IT control and security standards (COSO, CobIT, ISO 22301, NIST, UCF, CSA, etc.).
  • Strong understanding of technology and process controls and risks
  • Experience in developing and implementing the full cycle of the Business Continuity Management to at least two (2) companies with more than 5,000 employees in an international environment.
  • Demonstrated ability to write business and technical reports and to participate in presentations.
  • Relationship building, influence and communication skills are critical.
  • Decisive and results-oriented problem solver.
  • Highly motivated self-starter with the ability to work both individually and in a team environment.
  • Excellent verbal & written communication skills.
  • Bachelor’s Degree in computer science, information technology or other related major required.
  • Certification in DRII or BCI desired.


  • Assume management responsibility for Business Contingency planning efforts with a major focus on building business continuity governance, leading business impact analysis and developing manuals consisting of BCP, Emergency Response, Crisis Communication Plan, Business Recovery Procedures and High level implementation plan assuring the adequacy of business unit contingency plans for critical business areas, functions and applications.  To maintain continued operations, asset protection, and loss mitigation in the event of a disruption, coordinating activities of technology resources with the company’s business units and development groups, as required.
  • Work with business unit management to enhance contingency plans, mitigating the effect of facilities, technology system or application failure or problem.  Key objectives are that business units can recover business functions, satisfy regulatory and client obligations, and maintain our presence in the market place.
  • Provide direct communications the BCM Program between the senior management and all other business units.  Participate in appropriate business unit and development planning meetings and activities.  Facilitate timely identification, escalation, resolution, and follow-up for all outstanding issues.
  • Assist the department in enhancing, formalizing, and standardizing the business planning process, including forecasting and tracking mechanisms, across all business units, to facilitate timely accommodation of future company recovery requirements and opportunities.
  • Assume leadership role in developing, coordinating, and maintaining comprehensive business contingency plans and validation methodology, to ensure [24]7’s ability to recovery, in the event of an unforeseen disruption to facilities, technology systems, or applications.
  • Perform all departmental administrative activities, including staff meeting attendance, monthly status reporting, budgeting, strategic planning, expense processing, documentation, and other activities, as assigned, in a timely manner.
  • Development – Directing or assisting in the development of Business Continuity Plans and Procedures, and providing regular status updates to the appropriate Steering Committee. Completing Business Impact Analysis and reporting results.
  • Change Management – Assessing the Business Continuity implications of proposed technological or organizational changes, and coordinating any revisions to existing Business Continuity Plans and procedures necessitated by such changes.
  • Administration – Coordinating routine updates to the detailed information supporting the Business Continuity Procedures (e.g., contact lists, personnel assignments, hardware and software specifications, network diagrams, vital records management and inventory lists, off-site back-up schedules, etc.).  Coordinating electronic access to, and hard copy distribution of, the Business Continuity Plans and Procedures. 
  • Training and Awareness – Involving key business stakeholders to ensure understanding and buy-in for Business Continuity Plan outcomes. Ensuring all personnel with specific Business Continuity responsibilities are adequately trained to fulfill their assigned responsibilities.  Ensuring all employees are familiar with the relevant provisions of the Business Continuity Plans.
  • Testing and Exercising – Ensuring that all technical components of the Business Continuity Plans are successfully tested periodically, or whenever significant changes are made to those components.  Planning and coordinating simulation exercises, involving all critical business units.  Documenting the results of all tests and exercises, and identifying any recommended enhancements to the Business Continuity Plans and Procedures.
  • Execution – Providing 7x24 on-call support for any emergency which may require activation of all or part of the Business Continuity Plans.  In the event that activation is required, serving as liaison between the Crisis Management Team (i.e., senior management) and the Business Continuity Teams (i.e., the teams recovering operations at the alternate facilities and the teams restoring operations at the home facility).




  • Minimum 5 years’ experience in IT internal or IT external audit, the last 2 years in a managerial position
  • Bachelor’s degree in Computer Science/Management Information Systems, Accounting, Business or equivalent combination of related work experience and education
  • CPA preferred; CISA desired but not required
  • Proficient in using computer software (e.g., ACL, SQL, Excel) and application systems
  • Proficient in Microsoft products a plus
  • Expert understanding of operational, financial, regulatory, and information technology risks and risk mitigation.
  • Excellent project management skills with the ability to organize and manage multiple priorities.
  • Excellent and precise communication skills (both written and oral) with demonstrated clarity in spoken and written words.


  • reviews IT (including related operational and business risks) functions and activities, and evaluates the identified areas in order to determine and recommend the nature, scope, direction and thrust of proposed audits. Designs audit procedures to execute the related audit program, assess controls and meet audit objectives.
  • conducts assigned special audit projects and provides advisory and consulting services to management.
  • performs statistical sampling to accomplish audit procedures. Obtains, analyzes and appraises supporting data utilizing various software applications.
  • evaluates the adequacy of system controls and recommends improvements.
  • ensure a system is in place which ensures that all major IT risks of the company are identified and analyzed, at least on an annual basis
  • ensures completeness of referenced working papers including related open issue tracking for completed audits
  • report to all levels of management (oral and written) on the results of audits
  • provide recommendations on the systems and procedures being reviewed, report on the findings and recommendations and align with management on these.
  • monitor management's response and implementation
  • report on the value for money that the company obtains in all its IT-related activities with special regard to economy, efficiency and effectiveness
  • to conduct any reviews or tasks requested by the Head of Internal Audit, provided such reviews and tasks do not compromise the independence or objectivity of the internal audit function
  • to provide management with an opinion on the IT internal controls in the company.
  • lead  kick-off, interim and final close-out meetings with Senior Management in all geographies, as well as with members of the Executive Committee
  • communicates with all auditees up to the Executive Committee
  • independently plan and manage his/her audit schedule in order to meet audit closure timing commitments
  • flexible to take on any audit assignment assigned by the Head of Internal Audit
  • involved in key strategic and annual activity planning sessions for the Internal Audit Team which influence the direction the team takes for a period of time
  • maintains continued education requirements
  • facilitate the use of automated audit techniques
  • manages deliverables of an Internal Auditor




  • Minimum 2 years’ experience in internal or external audit
  • Bachelor’s degree in Accountancy, with knowledge in accounting and audit standards
  • CPA preferred
  • Knowledge in record keeping systems
  • Proficient in Microsoft products a plus
  • Proficient understanding of operational, financial, regulatory, and system risks and risk mitigation.
  • Proficient project management skills with the ability to organize and manage multiple priorities
  • Proficient and precise communication skills (both written and oral) with demonstrated clarity in spoken and written words


  • Develop working knowledge of the objectives of various engagements.
  • Maintain knowledge of general business and economic developments and gain understanding of the company’s industry, particularly the risks involved with the review areas the audit staff personally audits.
  • Perform any steps of the review engagement that may be conducted prior to the beginning of fieldwork.
  • Utilize data gathered and interviews conducted and present this to the team leader for incorporation into a formal planning document.
  • Collect, analyze, and document information to support audit result. Work papers must be of sufficient quality to be reviewed by external auditors.
  • Analyze evidence, reach conclusions, suggest review efficiencies, and draft proposed audit issues and recommendations for improvement. Identify issues and propose strategies for less complex issues related to the procedures they execute. Prioritize issues based on their significance and impact and collaborate with clients to develop practical and cost-effective recommendations.
  • Prepare an audit report that effectively communicates the audit results, making needed revisions in a timely manner. Draft audit reports should be reviewed by the audit manager and subsequently issued to client management.
  • With the guidance of the team leader or the individuals’ manager, evaluate the efficiency and effectiveness of management controls (including financial, operational, governance and system) executed at reasonable costs, over activities, compliance of the client with policies and directives, adequacy of measures to safeguard assets, and reliability of the information generated.
  • Prepare written communications, such as client correspondence, memoranda, and other working papers, that document the procedures, the findings, and the results of those procedures.
  • Follow up audit reports to ascertain that action is taken on action plans
  • Participate in one-on-one and small group discussions with other engagement team members and client personnel.
  • Interact with client personnel and demonstrate a commitment to continually improve client satisfaction.
  • Continuously communicate with the audit manager to ensure timely project completion.
  • Demonstrate teamwork through cooperation with seniors and other staff, sharing information, accepting constructive feedback, and accepting additional assignments when appropriate.
  • As needed, perform audit work at locations worldwide in compliance with Internal Audit policies.
  • Listen to, address the auditee’s comments, and consider the personal and business aspects of auditee’s concerns.
  • Ensure audit team effectively communicates audit status and issues in kickoff, interim, and exit meetings.




  • Bachelor’s Degree in a related field from a four year college university
  • Experience in IT Function is desired
  • Above average skills and knowledge in Information Security
  • Knowledge of PCI, SAS 70, ISO 27001, ISMS, FSA, US, AU, & UK Telemarketing Laws is desired
  • Certified Risk & Compliance Management Professional (CRCMP), PCI-DSS certified implementer or other industry recognized certification/qualification is desired
  • Knowledge of Office productivity tools such as MS Office applications (with above average skills in Excel)
  • Proficient in written and oral English communication skills
  • Project management skills
  • Greenbelt / Yellow belt training is desired
  • QMS training desired
  • Leadership experience in people management specifically coaching for performance
  • Two  years equivalent experience in the a similar


  • Participate in creating audit strategy and frameworks for various types of audits.
  • Responsible for leading calibration of audit process & results with RCM Officers 
  • Responsible for creating audit calendar for assigned program and sending out schedules to PCOs.
  • Responsible for reviewing audit checklist and making required changes as needed
  • Responsible for conducting Contract, Site Risk, PCI-DSS, Information Security, QMS and other audits including special priority investigations.
  • Responsible for creating required reports and send to the stake holders
  • Responsible for validating the audit findings and ensure audit findings are closed on time
  • Responsible for Risk Reduction in Operations, Support Functions and IT through research and field work
  • Responsible for reporting and presenting audit findings
  • Responsible for identifying improvement opportunities
  • Responsible for mentoring and coaching of direct reports or one downs.

Please send resume to:



Company: Asian Development Bank (ADB)
Department: Office of Information Systems and Technology (OIST)
Type: Contractor position through agency

POSITION TITLE: Sr. IT Controls Analyst

Description: To engage one (1) IT Sr. IT Controls Analyst to work with OIST to do Compliance Testing over the five (5) IT General Control (ITGC) Domains (Access to Program and Data, Application/Infrastructure Change, Application Development, Computer Operations and Entity Level Controls) as part of ADB’s annual assertion and attestation exercise.

Minimum qualification: 5 years experience in IT audit, with experience in IT project management; CISA is an advantage
Initial engagement period: 1 year


Description: To engage one (1) IT Controls Lead to work on enhancing the existing IT Governance Framework in OIST. This individual should also have the skills and experience in implementing IT processes and controls and in performing controls self-assessment.

Minimum qualification: 8 years work experience in IT audit, governance, risk, and compliance; CISA is required

Initial engagement period: 2 years
Please send resume to:



POSITION TITLE: Junior Compliance Officer

Unit: Risk Management, Compliance, and Audit (RMCA) Office
Classification: Administrative and Professional Service Personnel
Work Relationship: Reports to the Institutional Compliance Officer

 General Functions

The Junior Compliance Officer conducts compliance review to ensure that the University, its employees and all relevant stakeholders complies with laws, regulations, and other regulatory/fiscal requirements, and in monitoring compliance with provisions of contracts entered into by the University. He/She assists the Institutional Compliance Officer in developing, designing, and implementing a system for an effective compliance review and monitoring system.

 Duties and Responsibilities

a. Conducts compliance review programs and makes recommendations;
b. Performs the review in a professional manner and in accordance with the approved compliance program;
c. Performs data analysis;
d. Drafts and submits reports regularly;
e. Updates the register regularly in issuances and reviews;
f. Identifies both compliance and non-compliance with external and internal rules and policies and makes recommendations for corrective courses of actions in case of noncompliance;
g. Monitors compliance with recommendations by regulators and accreditors from
University-recognized accrediting bodies;
h. Coordinates with other offices regarding compliance matters;
i. Follows-up implementation of compliance recommendations;
j. Tailor process documentation of offices/ units into the standard process documentation template;
k. Assists in the implementation of DLSP Modern Conduct of Schools Self-Assessment Tool;
l. Performs other tasks which are necessary in carrying out the plans and objectives of the office.

 Skills and Minimum Qualifications

• Bachelor’s degree in related field
• At least one year relevant work experience
• Flowcharting and Analytical skills
• Strong leadership and management skills
• Results oriented with excellent communication skills.
• Highly dependable, trustworthy and service-oriented.
• Highly organized and attentive to details


POSITION TITLE    :   Junior Auditor
Unit: Risk Management, Compliance, and Audit (RMCA) Office
Classification: Administrative and Professional Service Personnel
Work Relationship: Reports to the Resident Auditor

 General Functions

The Junior Auditor conducts surprise or periodic audits of the financial records maintained by the University and various projects to ascertain their propriety and accuracy according to established auditing procedures and techniques.

 Duties and Responsibilities

a. Conducts review of assigned organizational and functional activities.
b. Performs the audit in a professional manner and in accordance with the audit program.
c. Follows-up implementation of audit recommendations.
d. Performs control testing of key control points identified.
e. Drafts formal written reports expressing opinions and on irregularities encountered.
f. Appraises the adequacy of the corrective action taken to improve deficient condition.
g. Conducts surprise or periodic audits of accounting system and processes such as petty cash count and quarterly financial reports.
h. Performs other tasks which are necessary in carrying out the plans and objectives of the office.

 Skills and Minimum Qualifications

• Bachelor’s degree in Accountancy, Auditing or any related field
• At least one year relevant work experience
• Willingness to learn
• Strong interpersonal, and analytical skills
• Ability to multi-task and work under pressure to meet deadlines
• Highly organized and attentive to details
• Ability to participate in group meetings.
• Willingness to work with a flexible schedule.


 POSITION TITLE    : Institutional Risk Officer

Unit: Risk Management, Compliance, and Audit (RMCA) Office
Classification: Administrative and Professional Service Personnel
Work Relationship: Reports to the Director

 General Functions

The Institutional Risk Officer assists the Director in planning, designing, implementing and maintaining a risk and compliance program for the University. He/She assists the Director in identifying, managing, assessing and monitoring University risks and threats and in conducting compliance review reports, and other reporting summaries of risk matters to the President. He/She also ensures that all employees and stakeholders are complying with University Policies.

 Duties and Responsibilities

a. Assists the Director in establishing and maintaining a work program that integrates and coordinates all significant requirements necessary for compliance with law, regulation and other legislations and in tracking all internal policies to mitigate risks.
b. Develops, designs and implements a risk assessment and management system for the University.
c. Assess the effectiveness of risk mitigation policies and procedures.
d. In coordination with Office/Unit Head, conducts periodic risk assessment review.
e. Monitors and identifies both compliance and non-compliance with risk mitigation policies and procedures.
f. Makes recommendations for corrective courses of action in cases of non-compliance.
g. Coordinates the activities of all Offices involved in mitigating University-wide risks.
h. Seats as a non-voting member of the Bids Committee A for special construction projects.
i. Preparation of ad hoc reports such as job reviews
j. Performs other tasks which are necessary in carrying out the plans and objectives of the Office.

 Skills and Minimum Qualifications

• Bachelor’s degree in a related field
• Professional License or Master’s degree relevant to job functions
• At least five years relevant work experience with a minimum of two years supervisory exp.
• Minimum of fifteen hours equivalent relevant training, seminar or workshop attended
• Professional written and verbal communication and interpersonal skills.
• Ability to motivate teams to produce quality materials within tight timeframes and simultaneously manage several projects.
• Ability to participate in and facilitate group meetings.
• Willingness to work with a flexible schedule.
• Ability to analyze risks and processes.

 How to Apply:

Send your curriculum vitae to Kindly put the Position Title as subject of the email. 



POSITION TITLE    :    IT Risk Management / Information Security Analyst for Robinsons Bank

RANK / LEVEL        :    Staff to Supervisory Level
UNIT/GROUP         :    IT Risk Management / Enterprise Risk Management

The IT Risk Management / Information Security Analyst will be responsible for assisting the IT Risk Management Officer in the promotion of the controls, the implementation, maintenance and execution of the IT Risk Management Framework, Information Security and Business Continuity Management activities undertaken by the Bank.


Education, Experience and Competency:
    1.  Bachelor’s degree or equivalent in Business, Finance, IT, Accounting or equivalent.
    2.  Fresh graduate or with experience in the IT risk management, Information Security and/or IT Audit related activities to lead comparable information risk, security and governance across an enterprise.
    3.  Willing to understand enterprise information security architecture discipline,  processes,  concepts and best practices
    4.  Willing to learn and to demonstrate consultative approach/capability  in driving or transforming change and controls as well as project management skills
    5.  Willing to learn Information Security, Risk and Business continuity frameworks and to possibly pursue professional certifications or credentials in the stated field or expertise.

    1.  Good oral and written skills on a business level in English to be able to articulate complex technical ideas to non-technical stakeholders
    2.  Good leadership and interpersonal skills to build strong relationships with business stakeholders at all levels, including executive managers and vendors
    3.  Strong, proven problem solving and analytical skills and the ability to identify and analyze the root cause of incidents and resolve them by driving solutions to completion
    4.  Proven integrity and the ability to handle confidential matters in a professional manner by applying the appropriate level of judgment and maturity

 For inquiries please contact Ms. Nerissa Durano,



POSITION TITLE: IS Audit Team Lead/Manager for Manulife

Department: Audit Services
Reports to: Associate Director, Audit Services

Accountability Statement:
The candidate is accountable for planning and completing IS audit projects (including key risk audits, project risk audits, and other special projects) and SOX ITGCC compliance testing. The candidate is also responsible for the delivery of high quality, professional, cost-effective, value-added and risk-based audit services within Asia. The team lead is responsible to manage the resources in offshore IS audit team in Manila and lead engagements to deliver on the plan, and managing key stakeholder relationships.

1. Completes both business and IS audit assignments in accordance with department standards.
2. Manages offshore IS audit team assignments within time budgets and target dates, reporting any timing problems or budget over-runs to IS audit manager or director.
3. Supervise the offshore IS audit team to conduct SOX ITGCC testing according to the standardized test procedures for all divisions
4. Manage the requests and allocate resources to support the data analytics group to conduct data analysis and data mining tasks
5. Provide coaching and manage performance of local IS auditors
6. Provides on the job training and feedback to offshore IS audit team staff assisting on assignments and contributes to their development.
7. Contribute to Asia business audits as assigned by business audit director
8. Provide regular dashboard to IS audit director for offshore IS audit team activities
9. Support IS audit director on local IS auditor recruitment by coordinating recruiting process and attending interview
10. Manages offshore IS audit staff assisting on assigned components of the audit and review completed files to ensure quality of work completed.
11. Assists in assess risk management practices and provide control consulting services to business unit management.
12. Assists in preparing audit reports, including executive summary and rating of adequacy of risk management, making practical and value-added recommendations to improve risk management practices and the efficiency and effectiveness of operations; audits reports are to be clear, concise and well-organized, and issued within departmental service standards.
13. Assists in presenting findings and recommendations to business unit management; resolve contentious issues and reach agreement on appropriate solutions to risk management and operational efficiency issues.
14. Follow-up on open audit issues until resolved as assigned.
15. Uses technology to improve the effectiveness and efficiency of the audit process.

- Demonstrated understanding of business processes and their risk implications, analyze situations, reach appropriate conclusions, and make value-added and practical recommendations
- Demonstrated knowledge of audit methodologies, project management and system development methodologies, control frameworks and risk management practices, and regulatory requirements
- Ability to effectively communicate ideas and recommendations orally and in writing, and to listen and consider ideas of others
- Customer focus and commitment to quality
- Results oriented; ability to balance multiple priorities and projects
- Ability to deal effectively with staff and audit management.
- supervisory skills.



 POSITION TITLE: Sr. Internal Auditor

- Must be a Certified Public Accountant (CPA)
- Must have at least two (2) years of experience in the field of either external or internal audit
- Must have at least one (1) year of experience in conducting I.T. audits
- Preferably a Certified Information Security Auditor (CISA), or has completed relevant trainings from ISACA (Information Systems Audit and Control Association)
- Must be willing to travel to Mindanao at least 30% of the time

Company: Alcantara Group (a diversified group of companies involved in agribusiness, industrial and real estate, insurance brokerage, power and utilities)
Address: 2286 Alsons Bldg., Pasong Tamo Extension, Makati City

For inquiries please call Ms. Mela Pongase at 9823043/09178250053