Apply Now! Refer Now!

IT Security and Compliance Officer

Apply Now! Refer Now!

--iSupport Worldwide--

Join our team!

We are seeking for highly motivated and detail-oriented IT Security and Compliance Officer to lead and oversee all aspects of security compliance for PCI DSS, SOC 2 Type II, and HIPAA. The successful candidate will be responsible for ensuring adherence to regulatory and client security standards, maintaining security documentation, managing audits, and proactively addressing risks.

Discover more

What is your mission?

You will provide the best service to our partner brands by performing these tasks:

Lead the planning, execution, and maintenance of compliance initiatives for PCI DSS, SOC 2, and HIPAA.
Maintain and update the Risk Registry with current threats, vulnerabilities, and remediation status.
Develop and monitor risk mitigation plans in coordination with the Infrastructure, DevOps, and Helpdesk teams.
Coordinate and support internal and external security audits and assessments.
Maintain all security-related documentation, including:
- Information Security Policies and Procedures
- Data Flow Diagrams and Network Diagrams
- System Hardening Guides
Own the Knowledgebase repository for IT Security and Compliance, ensuring all stakeholders have access to updated and well-documented procedures.
Ensure documentation is version-controlled and aligned with audit requirements.
Oversee and report on the implementation of security controls, incident responses, and compliance status.
Develop and execute Security Awareness Training programs for internal staff.
Conduct refresher sessions related to data handling, access management, and incident reporting.
Assist with Vulnerability Assessment and Penetration Testing (VAPT) projects.
Support the IT onboarding/offboarding compliance process for employees and contractors.

Who are we looking for?

Bachelor's Degree in Information Technology, Computer Science, or a related field.
At least 3 to 5 years of experience in IT Security or Compliance.
Preferred Certifications:
- CISA, CISM, CISSP, CRISC
- ISO 27001 Lead Implementer/Auditor or similar.
Strong knowledge of PCI DSS, SOC 2 Type II, HIPAA, and other applicable security frameworks.
Experience in managing security documentation and audit processes.
Proficiency in compliance management tools, such as:
- Vanta, Drata, Confluence, Jira, etc.
Strong analytical, organizational, and communication skills.
Excellent interpersonal skills with the ability to work with cross-functional teams.

Company Perks

Free learning and development courses for your personal and career growth

Comprehensive HMO benefits and insurance since day 1

Dynamic company events

Above-industry salary package and incentives

Opportunities for promotion

Free meals and snacks

Our Values

Worldwide, strongly uphold our values to be of service to our people, our clients, and our community.

WE PUT PEOPLE FIRST

We consider our people as the foundation of our success.

WE STRIVE FOR EXCELLENCE

Our commitment to quality ensures that we always do our best.

WE EMBRACE INNOVATION

We stay agile and fast, always looking for ways to solve our clients’ needs.

WE DELIVER DELIGHT

We pride ourselves on helping our clients reach their full potential.

WE CREATE REAL IMPACT

We do things right and we get the job done.

We are one of the leading modern offshoring companies in the Philippines.

Founded in 2006, iSupport Worldwide is a US-Owned BPO company that provides world-class and dedicated staffing, facilities, and managed operations for fast-growing companies and small to medium-sized businesses in any industry, vertical, and language.