F

Senior IT Risk Specialist

First Gen Corporation
Full-time
On-site
FPH Rockwell Business Center Tower 3 Philippines

At First Gen we take pride in our work of energizing the Philippines through clean power generation technologies. As we grow to become the best in the industry, we are continuously searching for talent who are driven, empowered, and passionate about making a positive difference in the world.

We provide employees with ample opportunities and resources that enable them to perform at their best, contribute value, and help us achieve our Mission of β€œforging collaborative pathways for a decarbonized and regenerative future.”

First Gen wants you to be good at your job and be successful at it. To this end, we will invest in your professional and personal growth by providing you with the right tools to effectively carry out your role as well as learning and development opportunities to advance your career.

Key Responsibilities:

  • Participates and coordinates the implementation of Information Security framework, program and plan across the FPH-FGEN Group.

  • Participates and oversees in the conduct of Information Security Assessment by FPH-FGEN Group.

  • Collects, validates and analyzes data that measure key risk indicators (KRIs) and/or key performance indicators (KPI) to

  • monitor and communicate their status to relevant stakeholders for their decision-making process.

  • Assists in the preparation of reports and materials related on Information Security for FPH-FGEN Group to Senior Management, ManCom, AuditCom and BROC on relevant Information Security risks.

  • Develops, reviews, evaluates, implements, monitors, oversees and updates the FPH-FGEN Information Security Management System (ISMS) including Cybersecurity policies, processes, procedures, guidelines and standards.

  • Participates in all Information Security initiatives which include, but may not be limited to the following: awareness trainings, handling regulatory requirements and reporting, addressing security and control gaps, handling of information security incidents and business continuity management (BCM) requirements.

  • Serves as SME on information security, cybersecurity, OT/ICS security and IoT/IIoT security.

  • Keeps updated with development in information security risks and threats.

  • If required, provides assistance related on information security to the FPH and FGEN DPOs in ensuring compliance to Data Privacy Act (DPA) of 2012, its implementing rules and regulations, and related issuances set out the principles in processing personal data.

Qualification Requirements:

  • Graduate of B.S. degree in Computer Science, Computer Engineering, Information Technology (IT), IT Management, Information Systems or equivalent or related

  • At least 3 years hands on experience as IT Risk or Information Security personnel.