Security Governance, Risk & Compliance Analyst

AS White Global View all jobs

  • Manila City, Metro Manila
  • Permanent
  • Full-time
  • 21 days ago
Join a 2025 award-winning telecommunications company recognized as Australia's Most Trusted Internet Provider and Most Trusted Telco.The OpportunityYour expertise in security governance, risk, and compliance will play a key role in managing third-party risk and protecting its information assets. As the Security Governance, Risk & Compliance Analyst, you'll work closely with the security team to support vendor risk assessments, compliance initiatives, and security best practices across the organization.Why join us?
  • Proudly Great Place to Work® certified
  • Celebrate globally: Company trips (2025: Hong Kong, 2024: Thailand), Culture Champs, Year-end parties, leadership awards & more
  • Grow with stability: 100+ in our 10-Year Club by 2025
  • Dynamic talent network: 2,000+ across APAC and beyond
  • Competitive compensation with annual reviews
  • Comprehensive medical care for you and your family
  • Generous paid leave because work-life balance matters
  • Level up with LinkedIn Learning and tailored training
  • Flexible work setup
Staff Testimonial“Working for the best client and loving what you do makes everything enjoyable at work.”- Senior Broker, ASW Philippines.What You'll Do
  • Support the delivery of third-party vendor risk assessments, evaluating security posture and identifying potential risks.
  • Review and analyze vendor assurance reports, ensuring alignment with organizational security standards.
  • Assist in the implementation and continuous improvement of ISO27001 and broader security frameworks.
  • Collaborate with internal and external stakeholders to drive understanding and adoption of security controls and initiatives.
  • Develop and support user awareness programs to promote security best practices across the organization.
  • Collect, organize, and maintain evidence of compliance with security controls and regulatory requirements.
  • Support internal and external audit activities, including preparation of documentation and presentation of findings.
  • Contribute to the ongoing improvement of security governance, risk, and compliance processes.
Key Criteria
  • Bachelor's degree in Information Security, Cybersecurity, Business, or a related field.
  • Minimum three years experience conducting vendor risk assessments and managing third-party security risks.
  • Strong understanding of security frameworks, particularly ISO27001 and related compliance standards.
  • Experience supporting governance, risk, and compliance (GRC) programs within an organization.
  • Excellent communication and stakeholder management skills, with the ability to engage across all levels.
  • Strong attention to detail with the ability to manage documentation, evidence collection, and reporting requirements.
  • Ability to manage multiple priorities and timelines in a fast-paced environment.
  • Strong problem-solving skills with a proactive approach to identifying and mitigating risks.
  • Amenable to work on a 12-month term contract.
Work setup:
  • Manila (BGC, Taguig): Australian hours (6 am - 3 pm PHT) with a hybrid set up.
#LI-SB1

AS White Global