ARCHIVED
This job listing has been archived and is no longer accepting applications.
MisuJob - AI Job Search Platform MisuJob
Login Sign Up

Risk and Compliance Specialist

Confidential

Makati, Metro Manila permanent

Posted: January 30, 2026

Interested in this position?

Create a free account to apply with AI-powered matching

Register to Apply

Required Skills

Risk Management Compliance Ethics Regulatory ISO 27001 Security Incident Management Training Risk Assessment Cybersecurity

Job Description

Responsibilities:

1.       Develop Ethics Strategies

a.       Lead the design, development, implementation, update and enforcement of organization policy and ethics compliance strategies pertaining to applications.

b.       Help in the alignment of company’s operation with industry data protection regulation and ethics standard

c.       Collaborate with development teams to integrate security best practices from requirements gathering to design, development, and testing.

d.       Work closely with DevOps, QA, and Product teams to ensure security is embedded throughout the SDLC.

2.       Regulatory Compliance

a.       Ensure ISO 27001 compliance for application-related security controls, supporting audits and certification efforts.

b.       Evaluate application security risks and align security practices with compliance frameworks such as NIST, CIS, and SOC 2.

c.       Monitor and analyze changes in data privacy regulations and assist in adapting the organization’s practices to remain compliant.

d.       Help in conducting regular audits and assessments to identify potential compliance gaps and implement corrective actions.

e.       Monitor third-party applications, APIs, and dependencies for compliance and security vulnerabilities.

f.        Maintain policies and documentation related to application security governance.

3.       Risk Management and Mitigation

a.       Take part in identification and assessment of IT risks across all business units, including internal and third-party data processing practices with relation to applications.

b.       Conduct secure coding reviews, threat modeling, and risk assessments aligned with OWASP Top 10, SANS 25, and other frameworks.

4.       Internal Training and Awareness:

a.       Develop and deliver training programs to raise awareness of cybersecurity, policies, ethics standards, and compliance requirements across the organization.

b.       Participate in security awareness training for development and product teams.

c.       Foster awareness of the organization’s ethical standards, ensuring employees understand the importance of cybersecurity awareness in day-to-day operations.

5.       Incident Management and Breach Reporting:

a.       Take part in responding to cybersecurity incidents, breaches, or violations and also take part in investigations, reporting findings, and implementing corrective actions with relations to applications.

b.       Ensure compliance with breach notification requirements, including timely reporting to regulators and affected individuals when necessary.

c.       Work with legal and security teams to develop and implement incident response plans specific to data privacy breaches.

6.       Contribute to preparation and presentation of regular reports on compliance status, data privacy incidents, and strategic initiatives to senior leadership.

7.       Stay informed and up to date

QUALIFICATIONS:
A.    Minimum Education

·       Bachelor's degree in Information Security, Computer Science, or a related field.

B.    Minimum Experience/Training

·         3+ years of experience in risk management, compliance, or application security.

·         Knowledge of risk management and developing mitigation strategies.

·         Strong knowledge of ISO 27001, NIST 800-53, OWASP, and secure coding standards.

·         Experience conducting security assessments, penetration testing, or vulnerability analysis.

·         Familiarity with DevSecOps, CI/CD security tools, and cloud security best practices.

·         Ability to translate security and compliance requirements into technical and business-friendly language.

·         Relevant certifications (preferred): CISSP, CISM, CRISC, ISO 27001 Lead Auditor, or OSCP.

C.    Competency

·       Result-oriented, team player, fast learner and dynamic

·       Working knowledge in information security and data protection

·       Excellent analytical and problem-solving skills to evaluate risks and create practical solutions

·       Strong communication and interpersonal skills both written and verbal, with the ability to convey complex concepts to non-technical stakeholders.

·       Can work with minimum supervision

·       Self-starter and highly motivated

·       Strong organizational and project management skills with ability to manage multiple compliance initiatives and tasks simultaneously.

·       Takes responsibility for timely completion of work

·       Passion to acquire and update skills and the ability to learn new tools and techniques quickly

Why Apply Through MisuJob?

AI-Powered Job Matching: MisuJob uses advanced artificial intelligence to analyze your skills, experience, and career goals. Our matching algorithm compares your profile against thousands of job requirements to find positions where you have the highest chance of success. This saves you hours of manual job searching and ensures you only see relevant opportunities.

One-Click Applications: Once you create your profile, applying to jobs is effortless. Your resume and cover letter are automatically tailored to highlight the most relevant experience for each position. You can apply to multiple jobs in minutes, not hours.

Career Intelligence: Beyond job matching, MisuJob provides valuable career insights. See how your skills compare to market demands, identify skill gaps to address, and understand salary benchmarks for your experience level. Make data-driven decisions about your career path.

Frequently Asked Questions

How do I apply for this position?

Click the "Register to Apply" button above to create a free MisuJob account. Once registered, you can apply with one click and track your application status in your dashboard.

Is MisuJob free for job seekers?

Yes, MisuJob is completely free for job seekers. Create your profile, get matched with jobs, and apply without any cost. We help you find your dream job without any hidden fees.

How does AI matching work?

Our AI analyzes your resume, skills, and experience to understand your professional profile. It then compares this against job requirements using natural language processing to calculate a match percentage. Higher matches mean better fit for the role.

Can I apply to jobs in other countries?

Absolutely. MisuJob features jobs from companies worldwide, including remote positions. Filter by location or look for remote opportunities to find jobs that match your preferences.

Ready to Apply?

Join thousands of job seekers using MisuJob's AI to find and apply to their dream jobs automatically.

Create Free Account Sign In
← Browse all jobs
Register to Apply