Join Our Mission to Foster Prosperity in Asia
Are you ready to make a lasting impact on the future of Asia and be a catalyst for positive change? We are thrilled to offer a unique opportunity to become an important part of the prestigious Asian Development Bank (ADB). At ADB, our mission is simple yet powerful: to alleviate poverty and promote sustainable development in the Asia-Pacific region.
Organizational Setting and Reporting Relationship
The position of IT Officer (IT Assurance) is assigned to the Cybersecurity and Compliance Unit (ITOD-CS) within the Information Technology Department (ITD). ITD manages the information systems and technology services required for ADB’s Headquarters and Field Offices. ITOD-CS sets the Information Security standards, policies, incident management and Business Continuity approaches for Technology within ADB. The team also monitors compliance with the standards and policies within ITD. You will be based at our Headquarters in Manila, Philippines.
You will report to the designated International Staff.
Your Role
As IT Officer (IT Assurance), you will be responsible for (i) planning and executing the assessment of IT controls within ITD; (ii) facilitating IT risk management activities; and (iii) ensuring alignment of ITD standards and processes with relevant international standards.
You will:
Lead the assurance team in the conduct of annual ICFR assertion and attestation, SWIFT Attestation and other IT controls testing initiatives in ITD.
Facilitate implementation and maintenance of ADB’s Information Security Management System (ISMS) according to ISO 27001 standards:
Review ITD policies, standards, and processes to ensure compliance with ISO 27001 requirements. Recommend new/revised processes, as needed. Develop and/or maintain necessary ISMS documentation in preparation for internal and external reviews. Facilitate ISMS Risk Assessments and Internal Audits, in collaboration with ITD personnel and service providers. Prepare materials, presentations, and reports to ITD Management, Working/Governance Groups and other stakeholders.Assist in the execution of IT risk management activities to support continuous maturity of IT processes.
Assist in developing and maintaining risk management framework that aligns with the IT policy and control environment and the ADB’s risk and control framework. Assist ITD in defining and evaluating risks based on impact and probability and developing risk action plans to address the risks identified. Assist in developing, collecting, and reporting key risk indicators (KRI) and risk appetite metrics. Assist in preparing and reviewing IT risk reports, presentations, and dashboards for ITD Management and other relevant stakeholders. Monitor status of IT risk action plans and report progress to appropriate stakeholders as necessary. Assist in data protection initiatives in collaboration with ITOD-CS colleagues leading the implementation and relevant business units in ADBServe as point of contact for all audit and audit related engagements.
Act as a focal person for the audit and audit related activities in ITD. Collaborate with ITD staff to ensure that the audits are effectively completed. Review, analyze, and coordinate the collection of responses to audit reports from internal (Office of the Auditor General) or external reviewers from affected units in ITD. Assist the affected units in mitigating audit issues and monitors remedial actions arising from this. Conduct follow-ups on the remedial actions through reviews to ensure that it has been implemented. Help ITD in achieving necessary target completion of audit findings by coordinating with ITD staff.Support IT Policy Development and Maintenance
Maintain central repository for ITD policies, processes, and standards Facilitate periodic review of ITD policies, processes, and standards for required updates Develop and/or update comprehensive ITD policies, processes and standards that align with industry good practices and frameworks, and in coordination with relevant stakeholders Provide recommendations for streamlining existing documentation or creation of new policies/processes based on changes to the IT environmentFacilitate implementation, enhancement to, or maintenance of the ITD’s governance, risk, and compliance (GRC) tool:
Assist in identifying user requirements and functionalities to enhance GRC tool. Participate in testing and deployment of new functionalities of upgrades. Configure and/or update GRC dashboards for management reporting. Address GRC tool issues identified or reported by users.You will need:
University degree in Computer Science, Management Information Systems, Electrical Engineering, Accounting or relevant fields; preferably with advanced training or relevant industry experience. CISSP, CISA, CISM, Security+ or equivalent certification. Minimum of 8 years of relevant professional experience in IT security, IT security governance, IT audit/compliance, or related experience. Experienced in IT control environment assessment related to Sarbanes Oxley, COSO, SWIFT CSCF and ISO 27001. Experience in implementing or supporting GRC tools preferred Experience in identifying, testing and evaluating IT processes and controls. Broad range of knowledge of Information and Communications Technology as applied in an enterprise environment. Strong attention to detail and methodical with work. Strong interpersonal skills and ability to operate in a matrixed environment and with various teams. Ability to handle multiple tasks and priorities. Ability to supervise IT security analysts. Ability to motivate or inspire a good work ethic among IT security analysts. Ability to anticipate security risks or issues, provide recommendations to the supervisor on addressing those issues, or address the less complex ones. Excellent written and verbal communication skills in English is required. Please refer to the link for ADB Competency Framework for National Staff Level 2.
Benefits
ADB offers competitive compensation and a comprehensive benefits package. The salary will be based on ADB’s standards and comparator markets, taking into account your qualifications and experience.
· Paid leave (including parental)
· Medical and health benefits
· Life and other insurance plans
· Staff development
· Retirement plan
· Housing and education allowance (if applicable)
About Us
Asian Development Bank (ADB) is an international development finance institution headquartered in Manila, Philippines and is composed of 68 members, 49 of which are from the Asia and Pacific region. ADB is committed to achieving a prosperous, inclusive, resilient, and sustainable Asia and the Pacific, while sustaining its efforts to eradicate extreme poverty. ADB combines finance, knowledge, and partnerships to fulfill its expanded vision under its Strategy 2030.
ADB only hires nationals of its 68 members.
To view ADB Organizational Chart, please click here.
ADB seeks to ensure that everyone is treated with respect and given equal opportunities to work in an inclusive environment. ADB encourages all qualified candidates to apply regardless of their racial, ethnic, religious and cultural background, gender, sexual orientation or disabilities. Women are highly encouraged to apply.
Visit ADB Careers FAQ for more information.
Stay up to date Subscribe to our newsletter and get the latest issues, news, events, jobs and data in your e-mail inbox.
This vacancy is archived.