Information Security Officer

Be #InGoodHands with Metrobank!

Here at Metrobank, we don't simply hire employees—we hone future leaders. We provide opportunities that enhance your skills and unlock your talents, helping you evolve into a well-rounded individual. We supply you with all the pieces you need to do your best work, unleashing your full potential to help you secure your future and lead a fulfilling career. And with Metrobank's strong heart for the community, you have the chance to give back and make worthwhile contributions to our nation's economic and social development. With Metrobank, a meaningful life is within your reach!

Here are the opportunities you can explore: 

Information Security Division

Security Assurance and Assessment Officer - Develop tactical plans and programs for the establishment and maintenance of the Bank’s third party information security risk management framework and ensure alignment with the enterprise risk framework. Performs third party security, system security and information asset based risk assessment. Analyze and review of complex bank processes, application system and network security implementation and third party relationships to identify potential risk including the determination of risk mitigation strategies. Analysis and review of complex application system and network security implementation on the current production environments to identify potential risk including the determination of risk mitigation strategies. Recommend strategies to control risks from inadequate protection of confidentiality, integrity and availability of the information assets, processing facilities and connected services.

Network/Platform/Application Security Engineer - Develop and enforce security plans and standards; ensures that network and system security best practices are executed and implemented.  Prepare the plans to deliver/implement the security infrastructure strategy prepared by the Security Architect. Provide support to the Security Architect in enterprise security projects including defining configuration standards, testing and implementation.  Leads the research, evaluation and implementation of ISD security tools and small projects.  Provide risk assessment support to CPSD and SQRD related to architecture for security concerns and/or security controls to be architected.  Maintain and mature the security tools to ensure effective prevention and detection of incidents. Prepare the necessary documentation for project approval and implementation.  Act as the subject matter expert on security of assigned technology domain/area (i.e., endpoint, operating system, database, etc.).

Information Security Management Officer - Formulate and recommend information security policies and procedures to meet the bank’s information security objectives and ensure effective implementation. Monitor the accomplishments of the plans and programs of the Division.  Plan and execute the annual security awareness program.

Vulnerability Management Officer - Vulnerability Management, Assessment, Identification and Analysis. Also do Penetration Testing and oversee the coordination of security incident response. Perform recurring and on-demand scanning of organization systems and cloud environments. Resolve information security incidents, including targeted threats and internal incidents. Maintain documentation regarding threat management, including policies and procedures. Assist technology teams to develop, implement, and automate security solutions. Improve and automate existing vulnerability management systems. Monitor intrusion detection systems to identify potential threats. Research and assess emerging security threats and vulnerabilities. Provide technical support for vulnerability management projects. Communicate the risks of identified vulnerabilities and recommend security controls to mitigate them.

Offensive Security Officer - Plan, document test methodologies and perform penetration testing or ethical hacking of network infrastructure, application systems including mobile applications all in a stealthy operation without being detected, in order to identify potential security weaknesses in the system.  Collaborate with ITG developers by communicating the back doors/security weaknesses identified and providing inputs in correcting the security flaws.  Establish red team procedures in conducting red team exercises.

Other Details:

• Office location is subject to specific position
• 100% Work Onsite
• Open to both career starters and/or seasoned professionals

Still undecided? Feel free to send us a copy of your fully accomplished resume and we'll help you find the perfect career opportunity for you within Metrobank!

Apply Now!