Talent.com
virtual Chief Information Security Officer (vCISO)
virtual Chief Information Security Officer (vCISO)GXA • Cabuyao, Laguna, Philippines
virtual Chief Information Security Officer (vCISO)

virtual Chief Information Security Officer (vCISO)

GXA • Cabuyao, Laguna, Philippines
2 days ago
Job description

The Virtual Chief Information Security Officer (vCISO) plays a critical role in providing strategic cybersecurity leadership and guidance to several of our small and medium-sized business (SMB) clients. This role involves delivering on-demand CISO services tailored to the unique needs of each client, ensuring the effective management of information security risks and compliance requirements. The vCISO collaborates closely with client executives, offering expert insights to protect information assets, enhance security posture, and maintain regulatory compliance.

The vCISO will oversee a comprehensive information security program, including :

  • Information Security Leadership
  • Risk Management
  • Security Governance
  • Compliance Alignment
  • Security Monitoring and Reporting
  • Security Architecture and Technology
  • Incident Response and Management
  • Vendor Risk Management
  • Security Awareness and Training

The ideal candidate must have a robust technical background, extensive experience in security and compliance, exceptional customer-facing skills, and an executive presence that inspires confidence. This role requires strategic vision, leadership, and excellent communication skills to effectively guide SMB clients in establishing and maintaining a secure digital environment.

Key Responsibilities :

1. Strategic Information Security Leadership :

  • Develop a deep understanding of each client's business environment, compliance requirements, and cybersecurity challenges.
  • Collaborate with client executives to design and implement comprehensive cybersecurity programs aligned with business objectives.
  • Establish trusted advisor relationships with client leadership to enhance governance, risk management, and compliance initiatives.
  • Proactively anticipate emerging security and compliance challenges, providing strategic guidance to mitigate potential risks.

    • 2. Risk Management and Compliance :

  • Effectively manage IT risks to align with business goals and reduce risk exposure.
  • Assist clients in achieving and maintaining compliance with relevant frameworks, including ISO27001, SOC2 Type2, CMMC, HIPAA, PCI, GDPR, and other industry standards.
  • Conduct security assessments and deliver detailed presentations of findings and recommendations.
  • Facilitate annual security ceremonies, including risk assessments, tabletop exercises, and third-party audits.

    • 3. Security Architecture and Technology Oversight :

  • Provide strategic security guidance and leadership to internal GXA IT teams and client IT teams.
  • Ensure the implementation of effective security controls aligned with the client’s security program.
  • Conduct research to identify security enhancements and provide informed recommendations to clients.
  • Stay up-to-date with emerging information technology trends and evolving security standards.

    • 4. Incident Response and Cybersecurity Management :

  • Develop and implement effective incident response plans to minimize the impact of security breaches.
  • Prepare and lead Information Security Review meetings to communicate risks, incidents, and mitigation strategies.
  • Provide guidance during security incidents, ensuring a coordinated response to minimize impact and recovery time.

    • 5. Vendor Risk Management and Data Protection :

  • Collaborate with clients to manage and assess the security risks associated with third-party vendors and suppliers.
  • Assist clients in identifying and safeguarding sensitive data, ensuring data privacy through encryption, access controls, and data loss prevention measures.

    • 6. Security Awareness and Training :

  • Promote a culture of security awareness among client employees to minimize human error and social engineering risks.
  • Design and implement security training programs tailored to each client's needs.

    • 7. Client Relationship Management :

  • Build and maintain strong client relationships through regular meetings, strategic engagements, and transparent communication.
  • Inspire clients by showcasing the value of effective information security in reducing cyber risks and enhancing business resilience.
  • Foster a positive client experience by being engaged, energetic, and solution-oriented.

    • Results and Key Accountabilities :

  • Effective Risk Management : Ensure that clients’ information security risks are identified, assessed, and mitigated effectively.
  • Enhanced Security Posture : Improve clients' overall security posture through the implementation of robust security controls, policies, and procedures.
  • Compliance Adherence : Guide clients in complying with relevant regulations and industry standards, including GDPR, HIPAA, ISO 27001, and NIST.
  • Cybersecurity Incident Response : Develop and implement incident response plans to minimize the impact of security incidents and breaches.
  • Security Awareness : Promote a culture of security awareness to reduce risks associated with human error and social engineering.
  • Vendor Risk Management : Assess and manage security risks related to third-party vendors and suppliers.
  • Data Protection : Help clients safeguard sensitive data with appropriate security measures, including encryption and access controls.
  • Client Relationship Building : Engage with clients regularly to build and maintain strong business relationships.
  • Operational Excellence : Maintain high standards of discipline, excellence, and diligence to deliver consistent results.
  • Client Engagement and Inspiration : Inspire clients to see the potential of InfoSec in reducing cyber risks and achieving business objectives.
  • Relevant certifications such as CISSP, CISM, CISA, or CCISO are highly desirable.
  • Prior MSP or MSSP in similar role or experience overseeing multiple clients is required.
  • Strong IT background and skills.
  • Exceptional communication abilities and executive presence are essential.
  • Possessing a bachelor's degree in computer science is a desirable qualification.
  • Exhibiting high levels of energy and a determined drive is imperative.
  • Capable of handling multiple tasks and adept at adapting swiftly to changing circumstances.
  • Self-motivated and able to excel in a fast-paced working environment.
  • 7+ years of experience in information security leadership, with a focus on governance, risk management, and compliance.
  • Proven experience as a CISO, vCISO, or in a senior cybersecurity leadership role.
  • Strong knowledge of security frameworks and compliance standards, including ISO27001, SOC2, NIST, GDPR, and HIPAA.
  • Expertise in risk management, incident response, security architecture, and vendor risk management.
  • Advanced proficiency in cybersecurity tools, technologies, and best practices.
  • Exceptional communication, leadership, and client relationship management skills.

    • #J-18808-Ljbffr

    Create a job alert for this search

    Chief Information Officer • Cabuyao, Laguna, Philippines

    Related jobs
    Head of Security - Dragonfly Portfolio

    Head of Security - Dragonfly Portfolio

    P2P • Las Piñas, Metro Manila, Philippines
    Head of Security - Dragonfly Portfolio.Portfolio • Remote • Full-time.Dragonfly is a crypto-native venture capital and research firm with $2B+ in assets under management and 160+ portfolio companie...Show more
    Last updated: 16 days ago • Promoted
    Chief Operating Officer

    Chief Operating Officer

    RM Staffing B.V. • Sucat, 40, PH
    Reporting directly to the CEO, the COO ensures the company executes its strategy efficiently, drives operational scalability, and maintains a high-performance culture across all departments.Operati...Show more
    Last updated: 30+ days ago
    Head of Security - Remote DevSecOps Leader

    Head of Security - Remote DevSecOps Leader

    EXUS Ltd • Biñan, Laguna, Philippines
    A leading enterprise software company is seeking a Head of Security to join its remote team.This role involves leading the Cloud Security Strategy and collaborating with various teams to ensure sec...Show more
    Last updated: 18 hours ago • Promoted • New!
    Chief Administrative Officer

    Chief Administrative Officer

    MEDCOR DASMARIÑAS HOSPITAL AND MEDICAL CENTER INC. • Cavite City, Cavite, Philippines
    Direct and oversee the operations of both medical and non-medical departments alignment with the organization’s structure. Develop and implement administrative policies and systems to support hospit...Show more
    Last updated: 6 days ago • Promoted
    Senior Cyber Security Analyst - APAC

    Senior Cyber Security Analyst - APAC

    Intuition Machines • Bacoor, Cavite, Philippines
    Senior Cyber Security Analyst - APAC.Senior Cyber Security Analyst - APAC.Intuition Machines uses AI / ML to build enterprise security products. We apply our research to systems that serve hundreds of...Show more
    Last updated: 30+ days ago • Promoted
    Vice President, Information Technology, PH

    Vice President, Information Technology, PH

    J Plazo Staffing Corporation • Muntinlupa, National Capital Region, PH
    Agilist certification or demonstrate proven experience facilitating SAFe frameworks, including leading PI Planning, coaching ARTs, and implementing Lean‑Agile practices to drive measurable delivery...Show more
    Last updated: 21 days ago • Promoted
    Chief Information Officer

    Chief Information Officer

    Filinvest Group • Muntinlupa, Metro Manila, Philippines
    FILINVEST COMPANY : CHROMA HOSPITALITY, INC.This role encompasses both strategic and operational responsibilities, leveraging technology to drive business value, enhance the guest experience, and en...Show more
    Last updated: 30+ days ago • Promoted
    Head of Security (Fully Remote)

    Head of Security (Fully Remote)

    EXUS • Biñan, Laguna, Philippines
    EXUS launched its Financial Suite (EFS) in 2003 with the aim to support financial entities worldwide to improve their results. Today, our EXUS Financial Suite (EFS) is trusted by risk professionals ...Show more
    Last updated: 30+ days ago • Promoted
    Security Operation Center (SOC) Lead

    Security Operation Center (SOC) Lead

    Questronix Corporation • San Pedro, Laguna, PH
    Quick Apply
    Lead a team of Cyber Security Analysts within the Security Operations Center (SOC).Manage and execute hands-on technical detection, analysis, containment, eradication, and remediation to support da...Show more
    Last updated: 30+ days ago
    Head of Security (Fully Remote)

    Head of Security (Fully Remote)

    EXUS Ltd • Cabuyao, Laguna, Philippines
    EXUS is an enterprise software company.EXUS launched its Financial Suite (EFS) in 2003 to support financial entities worldwide and improve results. EXUS Financial Suite (EFS) is trusted by risk prof...Show more
    Last updated: 30+ days ago • Promoted
    Chief Operating Officer

    Chief Operating Officer

    Nityo Infotech Inc. • Muntinlupa, Metro Manila, Philippines
    The Chief Operating Officer (COO) will oversee the company’s end-to-end operations, ensuring efficient supply chain management, production, logistics, and inventory control.This role requires a str...Show more
    Last updated: 30+ days ago • Promoted
    Director of Secure AI & Software Development Insights

    Director of Secure AI & Software Development Insights

    Gartner • General Trias, Cavite, Philippines
    A leading global technology research firm is seeking a Gartner Analyst to research and analyze market trends while providing actionable insights to clients in cybersecurity.The ideal candidate will...Show more
    Last updated: 18 hours ago • Promoted • New!
    Head of Security, Blockchain & Crypto Risk (Remote)

    Head of Security, Blockchain & Crypto Risk (Remote)

    P2P • Las Piñas, Metro Manila, Philippines
    A leading security firm is seeking a Head of Security to oversee cybersecurity and operational risk management.This remote role requires 10+ years of experience in security leadership, with experti...Show more
    Last updated: 2 days ago • Promoted
    Chief Technology Officer

    Chief Technology Officer

    Lewis Personnel Management • Bacoor, Cavite, Philippines
    We are seeking an experienced CTO to lead the design, development, and evolution of our core technology platforms.This is a senior leadership role ideal for someone who thrives in a fast-growing, t...Show more
    Last updated: 4 days ago • Promoted
    Chief Operating Officer

    Chief Operating Officer

    Aickman & Greene • Las Piñas, Metro Manila, Philippines
    Should act as lead person in facilitating the annual Strategic Planning of the PHMC-LP and the achievement of all approved action plans that will contribute to business growth.Monitor critical deli...Show more
    Last updated: 14 days ago • Promoted
    Field CISO, Pacific Northwest

    Field CISO, Pacific Northwest

    Cloudflare • Parañaque, Metro Manila, Philippines
    At Cloudflare, we are on a mission to help build a better Internet.Today the company runs one of the world’s largest networks that powers millions of websites and other Internet properties for cust...Show more
    Last updated: 30+ days ago • Promoted