Senior Manager, Security Operations Specialist

Do you want to take the first step in making Filipinos’ lives better everyday? Here in GCash we want to stay at the forefront of the FinTech industry by creating innovative, meaningful, and convenient financial solutions for the nation! G ka ba? Join the G Nation today!

Key Responsibilities:
Access Governance & Reviews

• Lead periodic access certification campaigns for systems, applications, and infrastructure.
• Validate appropriateness of user access based on job roles and business requirements.
• Coordinate with application and business owners to remediate excessive or inappropriate access.

Access Profile Management

• Maintain and validate access profiles (entitlements, roles, and permission sets).
• Collaborate with HR and business teams to ensure timely updates based on user lifecycle events (hire, transfer, termination).
• Optimize access roles to align with least privilege and reduce access creep.

Monitoring & Response

• Develop and manage continuous access monitoring controls and alerting mechanisms.
• Investigate access anomalies and enforce appropriate responses in coordination with Security Operations or HR when necessary.

Policy Enforcement & Risk Management

• Ensure compliance with internal IAM policies and external regulatory requirements (e.g., SOX, ISO 27001, PCI DSS).
• Identify and remediate access control misconfigurations.
• Implement and manage SoD matrices and support conflict analysis in access provisioning.

Team Leadership & Collaboration

• Lead a team or matrixed resources in executing access review programs.
• Provide guidance and training to junior staff and business stakeholders on access governance best practices.
• Collaborate with Cybersecurity, Internal Audit, Compliance, and IT Operations to align on IAM strategy and remediation efforts.
   

Qualifications:
Required:

• Bachelor’s degree in Information Security, Computer Science, or related field.
• Minimum 5 years of experience in IAM, IGA, and logical access management.
• Strong understanding of IAM tools and platforms (e.g., SailPoint, Saviynt, CyberArk, Okta, Azure AD, Oracle IAM).
• Hands-on experience with access review campaigns, entitlement management, and user lifecycle processes.
• Familiarity with access-related compliance frameworks and audit requirements.
• Experience implementing or enforcing least privilege and SoD controls.
• Excellent communication, leadership, and stakeholder management skills.

Preferred:

• Professional certifications such as CISA and CIAM.
• Experience with security incident response or cybersecurity risk assessments.
• Exposure to GRC tools and audit management platforms.

What We Offer

Opportunity for career growth and development in the #1 FinTech company in the country Working with a dynamic and highly collaborative team who want to change the game A company that values their people with highly competitive and flexible compensation and benefits package