Find Your Solution
  • Bacolod, Full-Time, On-Site

IT Security and Compliance Officer

Apply Now

Job Summary:

The Information Security and Compliance Officer will be responsible for ensuring that the organization meets the highest standards of information security and compliance, including ISO 27001, PCI DSS, and HIPAA. You will develop and maintain security policies, lead compliance initiatives, and collaborate with various departments to ensure processes and documentation are up to standard.

In this role, you will oversee risk management, incident response, and security awareness training, while also monitoring and reporting on compliance progress. You’ll act as the primary point of contact for audits and regulatory reviews, working cross-functionally to integrate security and compliance into daily business operations.

Key Responsibilities:

Information Security Management:

  • Develop, implement, and maintain information security policies and procedures that comply with ISO 27001, PCI DSS, and HIPAA requirements.
  • Ensure the information security management system (ISMS) aligns with the organization’s strategic objectives and supports continuous improvement.

Compliance Oversight:

  • Lead the organization’s (FGC+) compliance initiatives with PCI DSS, ISO 27001, and HIPAA standards. o Collaborate with different departments to ensure their processes and documentation meet compliance requirements.
  • Serve as the point of contact for regulatory audits and external compliance reviews.

Policy Coordination and Document Management:

  • Work with various departments to collect, review, and maintain all relevant documentation and policies.
  • Ensure documents are updated and accessible, and they align with compliance frameworks.
  • Oversee version control and approval processes for security policies and procedures.

Risk Management:

  • Identify and assess potential security risks and manage risk mitigation strategies.
  • Ensure departments understand their role in addressing identified risks and maintaining compliance.

Security Awareness and Training:

  • Develop and deliver training programs to enhance employee awareness of security practices and compliance responsibilities.
  • Promote a culture of security through regular communication and collaboration with department heads.

Incident Response and Management:

  • Manage the incident response plan and ensure it is regularly tested and updated.
  • Coordinate with relevant departments to ensure preparedness for potential security incidents.

Monitoring and Reporting:

  • Monitor compliance with security standards across all departments.
  • Regularly report on compliance status to senior management and recommend corrective actions when necessary.
  • Oversee the collection of evidence required for audits and compliance checks.

Access and Data Management:

  • Collaborate with IT teams to ensure access controls align with security policies.
  • Work with departments to ensure data handling practices are secure and compliant.

Cross Departmental Collaboration:

  • Partner with other departments to ensure their processes comply with security requirements.
  • Act as an advisor for departments to implement and adhere to information security measures.
  • Facilitate the integration of compliance requirements into business processes.

Education and Skill Requirements:

  • Bachelor’s degree in Computer Science, Information Security, or a related field; certifications such as CISM, CISSP, or CISA are preferred.
  • Proven experience in IT security or compliance roles, with hands-on involvement in ISO 27001, PCI DSS, and HIPAA environments.
  • Proficient with security tools and practices, including network monitoring, data protection, and audit processes.
  • Strong communication and coordination skills, with the ability to collaborate effectively across teams.
  • Demonstrated ability to work seamlessly with cross-functional teams to achieve compliance goals.
  • Flexible and willing to adjust schedules as needed to meet business demands.

What We Offer:

At FGC+, we believe that every person yearns to fulfill their potential. “Igniting Possibility” is our brand essence, it recognizes that work can be a great catalyst for personal and professional growth. By creating an environment of support and inspiration, we enable people to realize their true capabilities and to make work a source of fulfillment and sustainable success.

We offer more than just a job; we provide a nurturing environment where work-life balance, mentorship, employee engagement, and continuous learning are the pillars of your success — not to mention a market-competitive total compensation/rewards package including:

  • Competitive base pay with incentives and allowances
  • Payment of all statutory government benefits
  • 25 days of annual paid leave
  • 13th-month pay
  • Onsite medical support
  • Skills and training development programs
  • Employee Engagement Events
  • Employee Referral Program

EEO Statement:

We are an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, disability status, protected veteran status, or any other characteristic protected by law.

Third-Party Agency Notice:

FGC+ will not accept any unsolicited resumes from any third-party recruiting agencies, either domestic or international. FGC+ nor its subsidiaries/LE’s will be responsible for any fees from the use of any unsolicited resumes either through our ATS or via electronic mail systems from any agency.

Explore

Offices

Headquarters

14 East Mayer Drive,
Suffern, New York 10901

Philippines

Davao
Buhangin-WVP Lopson,
Buhangin-Lapanday Road

Bonifacio-Old Queens Theater,
Bonifacio St.

Bacolod City
Home Invest IT Center Burgos Roadcor. Acacia St.

contact

info@fgcplus.com

(646) 893-0193

Follow

Facebook Linkedin

© 2024 FGC+ | Privacy Policy | Terms of Use

Human Resources

Fosters a positive work environment through talent management, employee relations, and effective HR practices including onboarding, payroll and benefits, and government compliance.

Talent Acquisition

Attracts, hires, and retains top talent to drive organizational success and growth.

Organizational Development and Talent Strategy

Develops mentoring, leadership, and engagement programs to ensure employment fulfillment, growth, and to achieve top performance for your business.

Information Technology

Leverages cutting-edge technology and innovation to provide reliable and consistent network uptime, data security compliance, and enhance overall system efficiency.

Reports and Analytics

Provide customized reports for you to maintain visibility on team performance and gain data-driven insights to identify and resolve issues proactively.

Quality Assurance

Audits the work to ensure staff adheres to your quality standards and focuses on continuous improvement to deliver top-notch services.

Training

Facilitates technical and soft skills training to equip team members with the skills and knowledge to excel in their roles.

Workforce Management

Reviews and analyzes staff productivity, trends, and utilization to ensure your team aligns with business demands.

Operations

Executes the operational deliverables agreed upon while meeting or exceeding expectations.

Client Services

As your unbiased advocate and main point of contact, your client service manager ensures the needs of the program and relationship are met while providing a focus on long-term strategy and program optimization.

Sign up to receive our newsletter

Sign up for the FGC+ newsletter, The Pulse. Our quarterly newsletter delivers information on outsourcing, upcoming events, and new happenings at FGC+.

Name(Required)
Email(Required)