Title:  Cyber Security Compliance Manager

At JTI we celebrate differences, and everyone truly belongs. 46,000 people from all over the world are continuously building their unique success story with us. 83% of employees feel happy working at JTI.

To make a difference with us, all you need to do is bring your human best.

What will your story be? Apply now!  

Learn more: jti.com

City: Taguig

Professional Area: Digitial & Information Technology

Contract Type: Permanent

Professional Level: Experienced

Reporting to: Information Security & Risk Director

Cyber Security Compliance Manager

The Cyber Security Compliance function is responsible for configuration changes to ensure they adhere to JTI Security Standards. This ongoing activity monitors information systems across JTI's infrastructure, including digital workplaces, servers, and network devices, to prevent unauthorized changes that could signal system compromise or security breaches. The role also involves verifying changes under Change Management and Exception controls, conducting periodic reviews and audits of critical security controls, and managing whitelisting, deviation authorization, and tracking.

What will you do - Responsibilities:

1.) Network Security Compliance

• Ensure compliance of network asset with JTI Secure Communication standard and Cyber Security Architecture (TSC) requirements via periodical spot-checks of configuration across firewalls, proxies, VPN, F5, Email Security.
• Ensure appropriate infrastructure security services are maintained within the company, Perform regular revision and clean-up of the policies on perimeter, internal and application firewalls. Engage relevant stakeholders for remediation when necessary. 

2.) Digital Workplace and Server Infrastructure Compliance

• Ensure compliance of workstations, corporate mobiles and servers with Endpoint and Server security standards.
• Perform regular spot-checks of configuration including prevention and monitoring solutions, map it to the approved security baseline provided by Cyber Security Architecture (TSC), identify deviations and address remediation via ServiceNow.
• Ensure legitimacy of the changes in scope and address to the Security Incident Response in case of potentially malicious activities for further investigation.

3.) Compliance via External Outlook

• Review on daily basis JTI security solution in scope of Cyber Threat inelligence and Security Rating services and identify variations that pose security risks, address remediation to the stakeholders and ensure that issues are fixed.

4.) Knowledge Management

• Develop compliance monitoring process and document it as an internal SecOps procedure. Perform timely document update and constant mainanance. Maintain situational awarenes of systems and environment in scope of responsibilities.

5.) KPI and Reporting

• Provide KPIs on identified and fixed compliance issues, overall stats authorised and removed deviations.
• Manage various tasks and projects in scope of Cyber Security compliance as they arise and upon manager’s request.

Who are we looking for - Requirements

• University degree in Computer Sciences, Information Systems, or related field or relevant experience
• 2-3 years Vulnerability Management and/or compliance audit experience
• Solid knowledge of Information Security principles and standards, Incident Response fundamentals and functions, working knowledge of vulnerability assessment process.
• Fluent English written and spoken
• Reading/Speaking Japanese language would be useful
• Analytical/problem solving ability
• Process management and Standard/Procedures literacy
• Change management
• OS security principals - Windows, *nix
• Network security fundamentals
• Ability to work under constantly changing conditions and tight deadlines
• Strong verbal, written communication and presentation skills
• Scripting/programming skills

Are you ready to join us? Build your success story at JTI. Apply now!

Next Steps:

After applying, if selected, please anticipate the following within 1-3 weeks of the job posting closure: Phone screening with TA > Assessment tests > Interviews > Offer. Each step is eliminatory and may vary by role type.

At JTI, we strive to create a diverse and inclusive work environment. As an equal-opportunity employer, we welcome applicants from all backgrounds. We are committed to providing reasonable adjustments to applicants with special needs. If you require any accommodations, please let the Talent Advisor know during the selection process.