Senior IT Specialist

Organizational Setting and Reporting Relationship

The position of Senior IT Specialist (Information Security) is assigned to the Cybersecurity and Compliance Unit (ITOD-CS) within the Information Technology Department (ITD). ITD manages the information systems and technology services required for ADB’s Headquarters and Field Offices. ITOD-CS sets the Information Security standards, policies, incident management and Business Continuity approaches for Technology within ADB. The team also monitors compliance with the standards and policies within ITD. You will be based at our Headquarters in Manila, Philippines

You will report to Advisor, ITD and Head, ITOD-CS and will oversee National and Administrative Staff.

Your Role

As Senior IT Specialist (Information Security), you will be responsible for ensuring ADB remains cyber vigilant and prepared with a particular focus on IT Risk, Outsourcing, and Cloud security, supporting the IT Cyber incident process, and managing business continuity oversight for ITD. You will also backup other IT Security (i.e., Technical Security and Information Security) Specialists, as required.

You will:

Security Liaison

• Work as a liaison with other departments and external parties to establish mutually acceptable contracts and service-level agreements and ensure ongoing quality, integrity, and compliance of such services and products.
• As part of a team, support production issues and incidents, and participate in and contribute to problem and change management discussions.
• Back up security architect in factoring in security into the evaluation, design, selection, installation, configuration, and management of hardware, applications, and software.

Strategic Support

• Work with business resiliency and organizational groups to create recovery strategies and an integrated and secure workplace, be that physical or digital.
• Develop and work on a security program that addresses identified risks and business security requirements.
• Streamline policies, procedures, and governance to ensure operating efficiency alignment and/or compliance with industry standards, frameworks, or guidelines.
• Run programs to develop tooling and processes to aid in Data Classification and to improve ADB’s Data Leakage Protection (DLP).

Risk and Compliance

• Refine ITD’s overall approach to IT risk and control and ensure the adherence and sustainability of internal control and reviews.
• Provide oversight and support for the annual IT risk assessments, including ISO 27001, SWIFT attestation, ISO 22301, and internal audits.
• Uplift ITD’s 3rd party risk management processes for Technology.

Operational Support

• Provide oversight and engage relevant stakeholders in managing requirements, solution delivery, and ongoing enhancements relating to Identity and Access Management (IAM), Privileged Access Management (PAM), and Public Key Infrastructure (PKI) solutions.
• Develop and maintain relevant performance metrics and snapshots, and report key business outcomes and benefits.
• Support the operations of ADB’s Cyber Security Operations Center, especially in major incident response activities.
• Support other technical security activities as required.

Qualifications

You will need:

• Master’s degree in Information Technology, Management Information System, Engineering, or related fields; University degree and at least 5 years specialized experience relevant to the position can be considered in lieu of Master’s degree.
• At least 10 years of relevant professional experience, of which at least 8 years is in Enterprise environments; preferably with experience in Information Security implementation, Incident & Risk Management, or Information Security Audit in a Financial Services Domain.
• Certifications in IT Security, such as Certified Information Systems Security Professional (CISSP) or Global Information Assurance Certifications (GIAC), and/or Cyber or Compliance and related areas preferred.
• Suitability to undertake the responsibilities mentioned above at the required level.
• Familiarity with the principles of security forensic preferred.
• Knowledge of management issues involving IT security in a large corporate environment.
• Integrity, maturity, and self-regulated responsibility to handle IT security related situations.
• Ability to gain trust from others.
• Ability to work in a multicultural environment with people of diverse background.
• International experience working in several countries.
• Excellent oral and written communication skills in English.
• Please refer to the link for ADB Competency Framework for International Staff level 5.

Source: https://www.adb.org/careers/240481