Junior Information Systems Security Officer (ISSO)

Information Systems & Technology Makati City, Philippines


Description

Junior Information Systems Security Officer (ISSO)

Makati, Philippines

 

About Citco

Citco is a global leader in fund services, corporate governance and related asset services with staff across 80 offices worldwide. With more than $1 trillion in assets under administration, we deliver end-to-end solutions and exceptional service to meet our clients’ needs.

For more information about Citco, please visit www.citco.com

About the Team & Business Line:

IT Security Information Systems Security Office Team (‘ISSO Team’) is a group wide resource, which covers all of the divisions within the Citco Group of companies as defined on www.citco.com. The ISSO Team strategy is to uphold and maintain the Role Based Access Group (RBAG) user access management framework. 

The ISSO Team has resources based in Amsterdam (The Netherlands), Manila (The Philippines), Hyderabad (India), Hyderabad (India) and Toronto (Canada).

Your Role:

IT Security Information Systems Security Office Team (‘ISSO Team’) is a group wide resource, which covers all of the divisions within the Citco Group of companies as defined on www.citco.com. The ISSO Team strategy is to uphold and maintain the Role Based Access Group (RBAG) user access management framework.

 

The ISSO Team has resources based in Amsterdam (The Netherlands), Manila (The Philippines) and Toronto (Canada).

 

  • Work within the ISSO Team for providing an efficient and effective method to manage information security risk, improve the effectiveness of information security and user access control to ensure the organization’s information and information systems are protected from unauthorized access, use and disclosure. This includes:
    • Partner with the business and other group functions to develop and execute the User Access Management Framework
    • Conduct application user access reviews and monitoring in accordance with the ISSO monitoring plans and report results to relevant stakeholders
    • Develop and improve appropriate and timely risk User Access Management reporting to the relevant stakeholders
  • Engage with Business and Support Function Management across the Citco Divisions to further improve access control in a collaborative manner.
  • To complete the tasks assigned by ISSO Management and to achieve the goals and objectives assigned.
  • To work with other team members within IT Security to meet the objective of the department in an effective and efficient manner.

About You:

  • Report to the Senior ISSO/ISSO Lead/Managers, cultivate and maintain excellent relationships with ISSO staff. 
  • Assist the Senior ISSO with the daily operations when the Lead is not around.
  • Train and act as a mentor to the Junior ISSO members of the team.
  • Support the ISSO Management in maintaining and upholding of ISSO policies, standards and procedures.
  • Be an active participant in terms of BAU tasks, projects and ad hoc activities.
  • Have basic SQL skills to perform simple queries on databases
  • Completion of tasks assigned to the ISSO function (in line with the ISSO function objectives) within the agreed timeframes specifically:
    • Taking ownership of tasks assigned to the ISSO function under the IT Service Desk portal are completed within pre-defined timeframes.
    • Taking ownership of tasks assigned to the ISSO function under User Access Requests SharePoint portal are completed within pre-defined timeframes.
  • Completion of tasks assigned with respect to ACL control effectiveness monitoring:
    • Work with team members to review applications under ACL monitoring and work to ensure access match rates are above certain levels, ultimately moving to a match rate of 100%;
    • Look for ‘root cause’ analysis to see how ‘access breaks/exceptions’ can be avoided going forward;
    • Foster strong relationship with Business, IT Service Desk and IT Provisioning functions to ensure there is a collaborative working relationship to benefit both sides;
    • Work with ISSO Management to ensure strong working relationship with the Business, IT Service Desk and IT Provisioning functions.
  • Transition of business/IT process for all offices / divisions to the ‘global’ ISSO process (under Role Based Access Groups process):
    • Set realistic timelines for implementation
    • Communicate timelines to Business, IT Service Desk and IT Provisioning functions
    • Execute transition of ISSO process for all processes in scope to the ‘global’ ISSO process, identifying applications in scope, what roles need transitioning working with Subject Matter Experts (where required);
    • Communicate changes to all key stakeholders (including ongoing status reporting to ISSO Management);
    • Motivate others to meet timelines
  • Involvement with ISSO Management in the preparation of reports to Senior Manage­ment on ISSO based review activities. Reports include quarterly reporting and ad hoc reporting.
  • Work closely with other ISSO staff on diversified projects from an international perspective including active involvement in IT related local initiatives and projects within the scope of the Information Security. Project involvement should include:
    • Meet all deliverables and target dates as agreed with relevant manager;
    • Execute the project and provide sufficient reporting to ISSO Management on project status during the lifecycle of the project.
  • Maintain expertise and pursue training to keep abreast of new and proposed developments in the Information Security field, Risk Management and Auditing fields and consider the impact on the company through various industry organizations.

Involvement with ISSO team members in the execution of the periodic RBAG Business User Access Recertification exercise in a quality manner including its timely completion 

 

Our Benefits

Your well being is of paramount importance to us, and central to our success. We provide a range of benefits, training and education support, and flexible working arrangements to help you achieve success in your career while balancing personal needs. Ask us about specific benefits in your location.

We embrace diversity, prioritizing the hiring of people from diverse backgrounds. Our inclusive culture is a source of pride and strength, fostering innovation and mutual respect.

Citco welcomes and encourages applications from people with disabilities. Accommodations are available upon request for candidates taking part in all aspects of the selection.