Position Summary
The Cybersecurity Associate Consultant will support clients by conducting assessments, implementing security frameworks, and advising on risk mitigation strategies across GRC domains. The role requires strong foundational cybersecurity knowledge and familiarity with standards such as SOC 2, ISO, GDPR, HIPAA, and PCI. The position involves hands-on assessment work, documentation, client coordination, and contributing to compliance and security program development.
Job Details
Work Setup: Onsite | Bridgetowne, Quezon City
Schedule: 9 AM to 6 PM (may adjust based on client needs)
Holidays: Will follow Philippine holidays
Responsibilities
Cybersecurity Assessment & Implementation
• Conduct end-to-end cybersecurity assessments to identify vulnerabilities, weaknesses, and threats across client environments.
• Develop and implement tailored cybersecurity strategies aligned with industry standards and regulatory requirements.
• Review penetration testing and vulnerability assessment reports, performing associated risk assessments and recommending corrective actions.
• Assist in selecting and deploying security tools such as firewalls, IDS/IPS, antivirus solutions, and other protective technologies.
GRC & Compliance Support
• Support implementation efforts for frameworks and standards such as SOC 2, ISO, PCI, GDPR, HIPAA, and others.
• Participate in cybersecurity audits and compliance assessments to ensure adherence to required controls.
• Collaborate with clients in creating or updating cybersecurity policies, incident response plans, and disaster recovery plans.
Client Engagement & Advisory
• Provide cybersecurity advisory services and act as a trusted consultant on security matters.
• Deliver presentations, reports, and executive summaries with clear technical and non-technical insights.
• Offer cybersecurity training and awareness programs to strengthen client knowledge and preparedness.
• Coordinate closely with client IT and security teams to ensure the successful execution of cybersecurity initiatives.
Continuous Improvement & Research
• Stay informed on emerging cybersecurity threats, trends, and best practices.
• Provide proactive recommendations and guidance to enhance clients’ security posture.
Qualifications
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
- At least 1 year of experience in cybersecurity or IT roles with exposure to security-related work.
- Strong interest in cybersecurity and a commitment to ongoing learning.
- Experience or familiarity with at least one cybersecurity or compliance framework (e.g., PCI-DSS, ISO 27001).
- Foundational knowledge of cybersecurity principles, best practices, and regulatory standards such as GDPR, HIPAA, NIST, ISO 27701, SOC 2, and CIS.
- Understanding of network security, firewalls, IDS/IPS, vulnerability assessment tools, and core cybersecurity technologies.
- Experience with cloud security, endpoint protection, or mobile security is an advantage.
- Strong analytical and problem-solving skills.
- Effective written and verbal communication skills.
- Ability to build strong client relationships and work collaboratively with cross-functional teams.
- High ethical standards and strong commitment to confidentiality.
- Proficiency in Microsoft Office Suite.