Digital Trust Expert
14F The Globe Tower, Philippines
Globe Group
At Globe, our goal is to create a wonderful world for our people, business, and nation. By uniting people of passion who believe they can make a difference, we are confident that we can achieve this goal.
Job Description
The Digital Trust Consultant plays a critical role in ensuring the secure and compliant delivery of services and projects by embedding security and privacy principles across architecture, design, change management, and governance processes. This role collaborates closely with technical teams, project stakeholders, and risk managers to proactively identify, assess, and mitigate security and privacy risks. The consultant provides domain-specific guidance, tracks compliance activities, and drives continuous improvement in risk management practices to uphold digital trust across the organization.DUTIES AND RESPONSIBILITIES:
Operations
Perform security architecture and design reviews, service and data flow reviews to check for security / privacy flaws and gaps and recommend remediation and/or mitigation.
Utilize knowledge and understanding of application architecture, network design, infrastructure security and data security standards to identify findings and clearly communicate security & privacy risks and possible remediation.
Assess and review new Low-High complexity services/projects within the domain to ensure that security and privacy architectural and application business logic issues are identified and mitigated prior to launch.
Review Security Architecture and Design call-outs in Security Risk Assessment reports and Risk Treatment Plans for all new projects prior to cutover.
Proactively monitor the overall project roadmap, escalate priority projects, and monitor overall compliance
Ensure SLAs and PSRA activities are being tracked and updated by each SME on ServiceNow
Track and manage closure of submitted Risk Acceptance and Security Technical debts
Review current system security measures and recommend and implement enhancements.
Provide level 1 support to all employees on general inquiries and consultations regarding security & privacy related concerns
Stakeholder Management
Conduct regular cadences with assigned domain stakeholders to review and discuss security architecture and design issues of the respective domains.
Provide guidance to project managers and project sponsors on the recommended security and privacy controls and countermeasures.
Help communicate vital information, security needs and priorities to upper management.
Communicate identified security & privacy risks to internal stakeholders and end users within the business while supporting the response to addressing these risks.
Act as a single point of contact for any security-related assessments under his/her assigned domain
Monthly reporting of the overall PSRA compliance and open deviations to all Domain/Tribe cadences
Change Management
Ensure that security risk management is thoroughly executed across all IT and Network Infrastructure Changes implemented on Globe Assets, Platforms, and Services.
Assess / Review Change activities and actions implemented by different Globe technical teams to ensure that no NEW security vulnerabilities and privacy issues are potentially introduced within the Globe environment.
Oversee, manage, and orchestrate the execution of continuous vulnerability management activities such as vulnerability assessment, patch & remediation, for all active Change Cycle activities across all Globe technical domains.
Identify, Assess, Recommend, and Oversee the execution of appropriate risk mitigation plans for specific Change Activities such as emergency changes.
Create, Update, and Maintain a comprehensive Security Change Management Inventory and Registry for documenting and tracking all Changes that have undergone Security Review and Assessment, aligned with the overall Asset Inventory of Security Operations.
REQUIREMENTS:
3-5 years of work experience in Telecom or IT (IT systems/network administration, preferably hands-on experience in Server Operating Systems (Windows, UNIX/Linux) or network devices; IT security systems administration (Firewall/VPN, Intrusion Prevention Systems, Antivirus/Anti-spam, URL filtering, Encryption, etc.), Network Design/Engineering/Operations/Service Management
Bachelor’s in Computer Science, Information Security, Electronics & Communications Eng’g, or related field
Certifications: CISSP, CISM, CRISC, CCSP, ISO 27001 Lead Auditor/Implementer, CEH, ITILv4
Equal Opportunity Employer
Globe’s hiring process promotes equal opportunity to applicants, Any form of discrimination is not tolerated throughout the entire employee lifecycle, including the hiring process such as in posting vacancies, selecting, and interviewing applicants.
Globe’s Diversity, Equity and Inclusion Policy Commitment can be accessed here
Make Your Passion Part of Your Profession. Attracting the best and brightest Talents is pivotal to our success. If you are ready to share our purpose of Creating a Globe of Good, explore opportunities with us.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Antivirus CCSP CEH CISM CISSP Compliance Computer Science CRISC Encryption Firewalls Governance Intrusion prevention ISO 27001 Linux Privacy Risk assessment Risk Assessment Report Risk management SLAs UNIX VPN Vulnerabilities Vulnerability management Windows
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.