
IT.Security – Junior Risk Analyst
Job Description
Position: IT Security – Junior Risk Analyst
Location: Makati, Philippines
Hybrid - Day Shift
About Citco
Citco is a global leader in fund services, corporate governance and related asset services with staff across 80 offices worldwide. With more than $1 trillion in assets under administration, we deliver end-to-end solutions and exceptional service to meet our clients’ needs.
For more information about Citco, please visit www.citco.com
About the Team & Business Line
Citco Group provides services to our Citco Group of Companies and helps business to succeed in client service excellence.
As a valuable member of our Security team, you will work closely with internal stakeholders and cross-functional teams to support the organization in implementing a robust security and risk management and control framework globally across all lines of business.
Your Role
IT Security is responsible for overseeing Citco’s Information Security Management System and program. As part of IT Security, you will be responsible for performing IT Security governance, risk and compliance projects with the following accountabilities outlined below:
Report to the IT Security Governance, Risk, and Compliance (GRC) Risk Team Senior Analyst and Manager. Cultivate and maintain excellent relationships with management and staff within the organization, internal and external auditors and security colleagues.
Perform, document, and report results of risk and controls assessments on various systems and processes, mostly focusing on third party / service provider due diligence reviews.
Liaise and work closely with the IT Security Senior Analysts and your Manager, as well as with other key individuals responsible on related operational effectiveness testing work including business, audit, risk, and IT representatives across various offices, locations and time zones.
Assist with our security metrics program and other miscellaneous duties, perform ISO27001/2 audits and help maintain compliance with ISO27001/2 standard and other security frameworks or guidelines, as necessary.
Help establish and maintain the organization’s security risk management program.
Assist in training other staff members and other stakeholders, as necessary.
Maintain expertise on security trends through training, research and development in order to mitigate potential security exposures.
About You
You must possess at least a Bachelor’s/College Degree in Computer Science/Information Technology or equivalent
Preferably with at least one or two years working in governance, risk and compliance; leading audit and risk assessment projects; and performing risk analysis and compliance remediation.
Working knowledge on third party risk assessments a plus
Understanding of ISO 27001/2, COBIT, Basel II, SAS70, and SOC I & II requirements and other best practices a plus
Security, risk, and/or audit-related certifications such as ISO 27001 Lead Auditor certification, CISA, CRISC, CISSP, CISM a plus
With good foundation on IT and security audits and risk assessments
Working knowledge of Prevalent platform, JIRA and Confluence a plus
Key competencies and characteristics:
Work independently with minimal direction and or supervision.
Proactive with good project management and organizational skills.
Strong negotiation and influencing skills.
Confident personality with ability to communicate clearly and succinctly.
Reliable and prepared to undertake international travel, if needed.
Portray professional demeanor.
Accept responsibility and personal accountability.
Demonstrate flexibility and adaptability in approach to work.
Demonstrate use of professional judgment on the job.
Demonstrate effective teamwork and working relationships with others, both from Citco and external clients.
Demonstrate a self-directed approach to learning new technologies in the field; pursue professional development
Ability to effectively manage multiple concurrent projects/tasks with high attention to detail
Our Benefits
Your well being is of paramount importance to us, and central to our success. We provide a range of benefits, training and education support, and flexible working arrangements to help you achieve success in your career while balancing personal needs. Ask us about specific benefits in your location.
We recognize diversity as a source of organizational pride and strength. We have made it a priority to reflect our nation’s evolving diversity in the people we hire, and the culture we create in our organization.
Citco welcomes and encourages applications from people with disabilities. Accommodations are available upon request for candidates taking part in all aspects of the selection.