IBM Security Delivery Specialist in Philippines

Job Description

Job Summary

  • This role is responsible for driving compliance to IBM Internal and client policies, and to external policies such as regulatory or legal mandates. This role is also responsible for the assessment and management of IT risks.

Roles and Responsibilities

  • Act as primary IBM focal point with end to end responsibility for global and account internal, regulatory and external audits.

  • Assists account delivery teams with validating and drafting client recommendations in addressing audit issues and ensures mitigating controls are in place.

  • Coordinates and aligns global IBM and client expectation with existing infrastructure in drafting audit responses.

  • Collects and analyzes IBM Global Operational Metrics to ensure satisfactory compliance posture of the account by coordinating with operations teams, formulating action plans, and monitoring progress.

  • Conducts periodic reviews of internal process to ensure compliance measurements are aligned to global process alignment.

  • Drafts and maintains the Customer Security Document annually or as needed to align account’s security policies with IBM’s best practice.

  • Provide recommendations to resolve account management, technical and delivery teams on compliance exposure.

  • Performs, reviews, communicates to account management, and tracks risk assessments on identified threats for the account and recommends appropriate resolutions.

  • Participates in account contract reviews and assessment to ensure service commitments with client are included in customer security document where needed.

  • Provide security and regulatory related education to ensure security awareness and knowledge of customer applicable security policies, regulatory and government mandates, and processes.

Required Technical and Professional Expertise

Relevant Skills/Experience Years of Experience


Knowledge and competency in auditing concepts and techniques 1 - 3 years

Knowledge and competency in compliance management and issue resolution 1 - 3 years

Knowledge and competency in risk assessment and management, with great emphasis on enterprise IT risks 1 - 3 years

Experience and knowledge in enterprise IT environments including, but not limited to, server administration, networking, and IT security 1 - 3 years

Knowledgeable in Data Privacy Act and GDPR

Knowledgeable in BSP Circular 808

Knowledgeable in ISO 27001 controls

Preferred Tech and Prof Experience

ISO 27001 Lead Assessor

CISA certified

EO Statement

IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.