Risk Specialist

Job Title: Risk Specialist
Work Arrangement: Onsite
Location: Near Arca South, Taguig City, Metro Manila
Employment Type: Full-time

About the Role:
The IT Risk Lead will manage technology and cyber risks across IT infrastructure, applications, networks, and digital lending platforms. This role involves identifying, assessing, and mitigating IT risks, maintaining risk registers, ensuring compliance with operational and cybersecurity frameworks, and collaborating with IT and business teams. The ideal candidate is analytical, detail-oriented, and experienced in IT risk management, with strong communication and stakeholder management skills.

Key Responsibilities:
Identify and evaluate IT and cyber risks across infrastructure, applications, networks, and digital platforms.
Maintain and update the IT Risk Register and support Risk and Control Self-Assessments (RCSA).
Assess third-party/vendor risks in core banking, loan origination platforms, and data service providers.
Track emerging technology risks such as cloud exposure, data privacy, AI/ML usage, and open API integration.
Ensure IT controls (access management, change management, patching, backup, incident response) are properly implemented and monitored.
Review control testing results and report gaps to IT leadership and central Risk team.
Coordinate periodic reviews of Business Continuity and Disaster Recovery (BCP/DR) plans.
Serve as the first point of contact for IT risk incidents, security breaches, or system outages; ensure root cause analysis (RCA) and corrective actions.
Prepare IT risk dashboards, Key Risk Indicators (KRIs), and incident reports.
Participate in Technology and Risk Committee meetings and provide IT risk posture updates.
Maintain evidence for audits, regulatory reviews, and compliance checks.
Promote IT and cyber risk awareness and conduct training sessions on information security, phishing, and secure coding.

Required Qualifications:
Bachelor’s degree in Information Technology, Computer Science, or a related field.
Experience in IT risk management, information security, or IT governance, preferably within NBFIs or banks.
Understanding of IT and cybersecurity frameworks such as ISO 27001, NIST, and ITIL.
Familiarity with digital lending platforms, APIs, and third-party integrations.
Strong analytical, problem-solving, and stakeholder management skills.

Preferred Qualifications:
Experience in operational risk frameworks (RCSA, KRI, Incident reporting).
Proficiency with data analysis tools and risk management software.
Prior experience handling IT risk incidents, security breaches, or system outages.
Knowledge of regulatory requirements and audit processes in NBFIs or banking.

Benefits & Compensation:
Salary: PHP 34,500 – PHP 40,000 per month.
Full social insurance coverage (Health, Pension, Employment, Workers’ Compensation).
Commuting allowance and overtime allowance.
Health checkups for employees.
In-house training programs.
3-month trial period with full benefits.

Holidays & Leave:
Paid leave, maternity leave, childcare leave, nursing care leave, and bereavement leave.
Day shift schedule with weekends off.
Holiday schedules may vary depending on client requirements.

Required Qualifications:
Bachelor’s degree in Information Technology, Computer Science, or a related field.
Experience in IT risk management, information security, or IT governance, preferably within NBFIs or banks.
Understanding of IT and cybersecurity frameworks such as ISO 27001, NIST, and ITIL.
Familiarity with digital lending platforms, APIs, and third-party integrations.
Strong analytical, problem-solving, and stakeholder management skills.

Preferred Qualifications:
Experience in operational risk frameworks (RCSA, KRI, Incident reporting).
Proficiency with data analysis tools and risk management software.
Prior experience handling IT risk incidents, security breaches, or system outages.
Knowledge of regulatory requirements and audit processes in NBFIs or banking.

Benefits & Compensation:
Salary: PHP 34,500 – PHP 40,000 per month.
Full social insurance coverage (Health, Pension, Employment, Workers’ Compensation).
Commuting allowance and overtime allowance.
Health checkups for employees.
In-house training programs.
3-month trial period with full benefits.