Overview
Security and Privacy Compliance Program Manager Jobs in Makati, National Capital Region, Philippines at NetSuite
Title: Security and Privacy Compliance Program Manager
Company: NetSuite
Location: Makati, National Capital Region, Philippines
Description
This position will support the Security and Privacy Compliance Department with the establishment and maintenance of all compliance programs within the company. One of the key projects for the position is to perform due diligence reviews for NetSuite partners to ensure compliance with Oracle’s policies and regulations (e.g. Code of Ethics, U.S. Foreign Corrupt Practices Act). This position will manage other compliance projects such as third-party audits (i.e. SOC 1/ PCI-DSS, etc), risk assessments, or product compliance consulting projects, including AI governance. This role will include conducting research on compliance requirements, performing or managing assessments, and reporting findings to stakeholders. They will ideally have extensive experience in compliance, audit, project management, security, privacy, and software development lifecycle standard methodologies.
This position will require coordinating, communicating, and working effectively with prospects, customers, internal process owners, internal and external auditors, and all levels of management.
Responsibilities
Job Responsibilities & Duties:
· Perform third-party due diligence reviews, and security & privacy compliance assessments
· Manage security and privacy compliance projects
· Design remediation with process owners
· Assist in building compliance programs
· Be consulted on business process re-engineering
· Review the work of senior and junior analysts
Qualifications
The position prefers experience in third-party due diligence reviews, IT compliance, audit, software development lifecycle (SDLC) & Security standard methodologies in a SaaS/Cloud environment.
· Candidate ideally possesses a Bachelor’s/College Degree in Finance/Accountancy/Banking or equivalent relevant working experience
· At least 5-8 year(s) of working experience in IT Audit, Security, Risk or Privacy Compliance or related field is required for this position
· Requires at least one certification: CISA, CRISC, CISM, CISSP, CIPM, CIPP, CIPT, CPA, or other relevant certifications will be considered
· Hands on working knowledge and experience of audit or assessments against standards (such as SSAE 18, ISO 27001, etc)
· Experience with PCI DSS, HIPAA, Data Privacy and related security policies, processes, and regulations an advantage
· Experience and working knowledge of security related technology (e.g., Identity Management tools, Firewalls, etc.), and cloud environment
· Solid understanding of ERP systems (e.g., NetSuite, PeopleSoft FDM and Oracle eBusiness) security and privacy standards and implementation is helpful
· Experience working with legal teams an advantage but not a requirement.
