Security Incident Management Head

About the Job

Location: Makati

Corporate Title: Senior Manager

Work Arrangement: Hybrid

Our Information Security and Data Protection team is looking for experienced professionals to join us in Makati with the role of Security Incident Management Head.

In this role you will manage day-to-day cybersecurity operations, detecting and responding to threats, events, and incidents while driving the overall program strategy, development, and continual enhancement of the Bank's security posture and resiliency. You will also oversee the implementation of security tools and processes, guide incident response, review and strengthen controls, refine threat and risk models, and ensure the Bank adapts effectively to evolving cyber risks.

Your dream. Our focus.

East West Banking Corporation (EastWest) is one of the largest universal banks in the Philippines, and is committed to continuously invest in people and in process, product, and service enhancements, and embrace new ideas to enhance the EastWest experience.

We empower our employees to drive their careers and are committed to provide the runway for them to grow. We value teamwork and individual initiative. Join us and be part of a highly engaged team, and a workplace that promotes development and goal attainment.

Whether you're just starting out, or already a seasoned professional, EastWest can help you unleash your potential, and bridge the gap between dream to success.

What the role will entail

• Manage cybersecurity incidents to ensure swift and effective responses that minimize disruption and protect critical assets
• Oversee incident response with coordinated containment, eradication, and recovery strategies for cybersecurity events
• Establish planning and training including tabletop exercises to prepare the organization for effective threat and incident response
• Build and mentor teams of skilled security experts specializing in detection, response, and recovery from evolving cyber threats
• Implement incident playbooks and operational standards, using KPIs/KRIs to measure effectiveness and drive continuous improvement

What we're looking for

• Bachelor's degree in Computer Science, Business Management, or MIS, with equivalent business experience required
• Professional certifications such as CISSP, C-CISO, CISA, CISM, GSEC, CRISC, or related credentials in security management, risk, and compliance required
• Experience managing vendors and consultants, ensuring performance and deliverables meet specifications
• Proven leadership in managing complex IT programs, incident management, and risk management within financial services or information security industries, with strong communication skills across diverse stakeholders
• Deep knowledge of security technologies, industry best practices (NIST, ISO, SANS, COBIT, CERT), and compliance requirements (SOX, PCI, HIPAA)

What you can expect from joining our team

• Career development and training opportunities
• Competitive salary package and benefits
• Performance-based incentives and recognition programs to reward high-performing individuals
• Opportunity to work with industry experts and be mentored by them
• Defined career progression paths to guide you in your professional growth