One of the World’s Leading Global Insurance Giants

JOB DESCRIPTION

Position: Chief Information Security Officer (CISO) – Global Shared Services Center

Location: Metro Manila, Philippines

Reporting To: Global Head of Security

Direct Reports: 5-10

Base Salary: $150,000 USD or 8,000,000 PHP (Relocation assistance available)

As one of the world’s leading global insurance giants, we are at the forefront of delivering innovative solutions and protecting millions of customers worldwide. Our Global Shared Services Center (GSSC) in Manila is a critical hub, providing cutting-edge technology and security services to hundreds of local entities across the globe.

We are seeking a visionary and dynamic Chief Information Security Officer (CISO) to lead our global security strategy and operations. This is a unique opportunity to shape the future of cybersecurity in the insurance sector and make a tangible impact on a global scale.

As the Chief Information Security Officer (CISO), you will define and manage the enterprise vision, strategy, and programs to ensure the protection of information assets and technology across our global operations. You will align security initiatives with industry best practices and regulatory requirements, ensuring a robust defense against both internal and external threats.

This role is pivotal in embedding a culture of security across the organization, driving transformation programs, and ensuring the highest standards of compliance and risk management.

• Lead a dedicated application security team of experts to ensure the highest standards of security across all platforms.
• Integrate security at every stage of application design and development, following a robust application security framework.
• Conduct regular internal penetration testing (PEN-tests) for in-flight applications and oversee independent yearly PEN-tests for all systems.
• Ensure compliance with global security policies, standards, and certifications, and drive corrective actions where necessary.
• Oversee infrastructure security, including design, control, and continuous improvement.

• Develop and deliver monthly user awareness programs and practical workshops for all employees.
• Create and implement a security self-assessment program for staff to ensure ongoing vigilance.
• Design and roll out an application security course to upskill teams across the organization.
• Regularly review and update the application security framework to stay ahead of emerging threats.
• Collaborate with business and IT leaders to align security strategies with organizational goals.

• Execute the global security transformation program, ensuring high-quality reporting and measurable outcomes.
• Review vendor contracts to ensure security compliance and manage third-party risks effectively.
• Manage budgeted resources, forecast needs, and ensure fiscal responsibility.
• Plan and conduct business continuity activities to ensure resilience in the face of disruptions.
  

• Internal: Executive Leadership Team, IT and regional teams, Senior Managers, Operational Managers, Security Correspondents, Country Heads, Head of Operational Risk Management, and Support Functions (Finance, Legal, Procurement, PMO, HR).
• External: Regulatory and government agencies, industry bodies, and third-party vendors.
  

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• CISSP Certification (or equivalent) is mandatory.

• 8-10+ years of experience leading security departments in large, multinational organizations, preferably within the insurance or financial services sector.
• Proven track record in designing and implementing enterprise-wide security strategies.

• Strong background in IT security, including network security, data encryption, and threat management.
• Expertise in security architecture design and secure software development lifecycle (SDLC).
• In-depth knowledge of ISO 27001/27002 standards and experience in vulnerability audits and risk mitigation.
• Exceptional project management skills, with the ability to manage multiple priorities and meet tight deadlines.
• Excellent communication and presentation skills, with the ability to engage stakeholders at all levels.
• Strong interpersonal, facilitation, and negotiation skills.
• Results-oriented, resilient, and able to thrive in a fast-paced, complex environment.
• Fluency in English (both written and verbal) is essential.
  

• Global Impact: Lead security initiatives that protect millions of customers and businesses worldwide.
• Innovation: Work with cutting-edge technologies and shape the future of cybersecurity in the insurance industry.
• Career Growth: Be part of a dynamic, forward-thinking organization that values leadership and innovation.
• Relocation Support: Open to candidates willing to relocate to Manila, with comprehensive relocation assistance provided.

Please refer to job description.