Information Security Compliance Officer | Hybrid | Ortigas | Day Shift

Defending Trust Across Complex Global Operations

You will help ensure compliance with globally recognized standards while protecting the integrity, confidentiality, and availability of business and client information.

• Employment Type: Full-time
• Shift: Day Shift (Rotating Schedule), Weekends Off
• Work Setup: Hybrid, Ortigas

• Competitive Salary Package
• Hybrid work arrangement
• Day Shift schedule
• Fixed weekends off
• HMO coverage with free dependent upon regularization
• Prime office location in Ortigas (Easy access to MRT stations, restaurants, and banks)
• Salary Advance Program through our banking partner (Eligibility and approval subject to bank assessment. Available to account holders with minimum of 6 months company tenure.)
• Unlimited upskilling through Emapta Academy courses (Want to know more? Visit: https://emapta.com/training-calendar/)
• Free 24/7 access to our office gyms (Ortigas and Makati) with a free physical fitness trainer!
• Exclusive Emapta Lifestyle perks (hotel and restaurant discounts, and more!)
• Unlimited opportunities for employee referral incentives across the organization
• Standard government and Emapta benefits
• Total of 20 annual leaves to be used on your own discretion (including 5 credits convertible to cash)
• Fun engagement activities for employees
• Mentorship and exposure to global leaders and teams
• Career growth opportunities
• Diverse and supportive work environment

• 3-5 years of experience in IT Audit, Risk Management, IT Compliance, IT Governance, Information Security (InfoSec), or Data Privacy
• Alternatively, 5+ years of experience in technical IT roles such as IT Support Team Leader, Infrastructure Specialist, System Administrator, or similar positions
• Excellent verbal and written communication skills
• IT audit experience within an audit firm is preferred
• Preferred certifications: Security+, Certified in Cybersecurity (ISC2), ISO 27001 Lead Auditor, CPISI, CISA, or CIA
• Demonstrated ability to analyze complex technical environments, identify potential issues, and recommend effective solutions
• Ability to work effectively with minimal supervision and take ownership of audit engagements
• Proven ability to manage multiple projects simultaneously and meet tight deadlines
• Proficiency in data analytics and reporting tools, including Microsoft Excel and GRC platforms

Your Daily Tasks

• Participate in the launch of new campaigns for new and existing clients by gathering security requirements, developing client risk profiles, and implementing appropriate security controls
• Facilitate control testing activities with designated users before full security control implementation
• Maintain client risk registers and security information inventories
• Present value-adding security recommendations to clients
• Support responses to client security inquiries and security assessment questionnaires

• Execute end-to-end internal audit engagements aligned with ISO 27001, ISO 27701, ISO 20000, ISO 22301, SOC 2 Type 2 Security and Privacy, PCI DSS, GDPR, HIPAA, and other applicable standards
• Utilize data analytics tools to improve audit coverage, efficiency, and effectiveness
• Analyze audit data to identify potential issues, risks, and improvement opportunities
• Draft and finalize audit reports with clear, concise, and actionable findings
• Communicate audit results and recommendations to senior management
• Monitor remediation activities and follow up on audit findings to ensure timely resolution
• Provide guidance on IT, information security, privacy, and internal control solutions
• Serve as a subject matter expert on information security, compliance, and audit-related matters

• Coordinate with internal and external stakeholders regarding ongoing initiatives, requirements, and updates
• Maintain effective communication channels to ensure project alignment and timely execution

• Partner with HR and Learning & Development teams to support annual completion of Information Security and Data Privacy training for employees and contractors
• Launch security awareness initiatives, phishing simulations, security reminders, and reporting channels for fraud, security breaches, and policy noncompliance
• Lead or support special projects assigned by the Information Security Manager, CISO, or CIO
• Stay informed on developments in cybersecurity, information technology, regulatory compliance, and audit best practices

• Perform administrative and non-administrative duties as assigned by authorized company representatives through written or verbal instruction

Join Emapta, recognized as one of HR Asia's Best Companies to Work For in Asia 2025 and winner of Inspiring Workplaces Australasia 2026. With a 50/50 gender ratio and a culture rooted in care and empathy, you'll feel valued from day one. We're committed to growing talent and setting you up for success.

Be part of a team that showcases Filipino excellence to the world. With over 30 offices across 11 countries and 1,200+ clients, you'll create real impact every day-whether you work from home or on-site. Our 100% virtual recruitment process makes it easy to get started.

At Emapta, you're not just joining a company-you're becoming part of a thriving community of 12,000+ professionals growing careers with purpose. And behind every partnership we build is a deep respect for people and the impact they make.

"We place integrity at the heart of everything we do and truly value the human experience. That's why, for clients, it's a profound and transformational process that gives them the opportunity to achieve the business growth they desire."

Tim Vorbach, CEO

#EmaptaEra