Role DefinitionPlans, designs and implements cybersecurity strategies and solutions to prevent critical damage to the organization brought by cyber-attacks.
ResponsibilitiesDevelops and implements security controls, systems, remote access solutions, and infrastructure architecture in alignment with defined requirements and guidelines; configures network controls to protect the organization's environment in a timely manner.Provides recommendations for security products, services, and procedures to enhance system architecture and security controls; conducts testing and evaluation of new cybersecurity technologies and controls.Collaborates with cybersecurity and technology teams to deploy vulnerability mitigations and support integration activities; leverages industry standards and frameworks to identify capabilities and technologies that strengthen cyber defenses across diverse scenarios.Implements security systems by defining intrusion detection methodologies and preparing both preventive and reactive measures.Reviews security technologies, tools, and services, and provides recommendations to the broader security team based on security, financial, and operational metrics.Defines processes and architectures for securing networks, applications, and infrastructure; builds firewalls and implements intrusion detection systems in complex environments.
QualificationsProven experience in designing, implementing, and maintaining scalable IAM solutions and platformsExpertise in developing and enforcing access control policies and proceduresHands-on experience with implementing automated workflows for identity and access requestsProficiency in IAM tools such as SailPoint, Microsoft Entra ID, and AveksaStrong background in IAM automation and scripting (e.g., Python, PowerShell, Java), including API integrationsFamiliarity with cloud security and IAM frameworks across Azure, AWS, and Google Cloud environments
Leads the Cyber Security Operations Group (CSOG) governance framework to ensure robust, transparent security practices across the enterprise. Responsible for aligning governance strategies with organizational objectives, integrating policies and processes into operational workflows, and maintaining compliance with regulatory and industry standards. Build strong stakeholder collaboration to drive accountability, integrity, and continuous improvement, strengthening the organization’s overall cybersecurity posture. Governance Leadership
Governance LeadershipLeads the design, implementation, and management of the CSOG governance system, ensuring clear allocation of responsibility, authority, and accountability in alignment with established principles.
Security IntegrationDirects the establishment and integration of security management processes within the PLDT Group’s system delivery life cycle, ensuring consistent application and communication across all functions.
Security Framework Maintenance Oversees the maintenance of enabling structures, principles, and processes that support CSOG’s mission and objectives, ensuring clarity of roles and responsibilities.
Performance Oversight Leads the monitoring and evaluation of CSOG Pillar processes and governance mechanisms, driving operational integrity and continuous improvement.
Strategic AlignmentEnsures cyber security-related processes and decisions are aligned with organizational strategies and objectives, providing oversight and guidance to maintain strategic coherence.
Security Roadmap Development Spearheads the development of comprehensive group strategies and roadmaps to strengthen the PLDT Group’s cyber security posture.
Demand & Project ManagementAligns CAPEX and OPEX projects with CSOG’s strategic roadmap. Oversees new projects, enhancements, and change requests to ensure timely, on-budget, and in-scope delivery. Implements program tracking and reporting mechanisms and fosters a project-oriented culture to improve maturity within CSOG.
Resource & Financial Stewardship Manages optimal allocation of financial resources and oversees capacity planning, resource deployment, and cost-effectiveness across all cyber security pillars.
Metrics & Accountability Defines and tracks performance metrics contributing to CSOG’s balanced scorecard, promoting transparency and accountability throughout the organization.
Compliance & Audit Readiness Ensures adherence to all applicable cybersecurity laws, regulations, and standards. Integrates compliance controls into operational processes and supports audit readiness through thorough documentation and timely remediation of identified gaps.
Project ManagementEnsures timely and high-quality delivery of technical assessments for key information security initiatives, in collaboration with the Capability and Delivery team.
People Engagement and DevelopmentEncourages a culture of collaboration and growth within CSOG by supporting continuous development. Contributes to building organizational capability through knowledge sharing and fostering readiness for future roles.
Operational SupportProvide leadership and support for additional duties and responsibilities as assigned, ensuring alignment with organizational priorities and operational excellence.
EDUCATIONBachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, Business Administration, Law, or related discipline.
WORK EXPERIENCEMore than 5 years of progressive leadership in cybersecurity governance and IT risk management, with deep expertise in regulatory compliance and governance frameworks. Proven track record in designing and implementing enterprise-wide governance programs aligned with global standards such as ISO/IEC 27001 and NIST Cybersecurity Framework (CSF). Proven ability to lead cross-functional teams, strengthen security control maturity, and ensure continuous alignment with evolving regulatory and industry standards.
Technical SkillsExperience in any of the following fields:Cybersecurity Governance & Lifecycle Management Regulatory Compliance Frameworks Strategic Planning & ExecutionLeadership & Team Development Effective Communication & Stakeholder Engagement
EDUCATION:Bachelor's degree holder preferably in Engineering, Business Administration, Commerce, or other relevant discipline; or a relevant combination of formal qualifications and additional specialized study.
QUALIFICATIONS:With at least three (3) years Supply Chain experience or in related industry and/or field (Construction, Network, or IT).Experience with Capital Project Planning preferred (e.g. Telecommunications, Civil and Oil & Gas Industry) and/or Consumer Goods logistics planning is an advantage.
BASIC SCOPE:An employee who performs purchasing activities which includes but not limited to demand/supply and buying plan preparation, gathering of supplier information, proposal, and/or bid, complex spend analysis, supplier negotiations, and cross-functional team collaborations for the PLDT Group, as assigned by the Head.
DUTIES AND RESPONSIBILITIES:Prepares Demand and Supply Plan and uses it as reference in generating the Buying Plan as needed.Assists in the preparation of Category Plan.Accountable for identifying opportunities and tacking value of savings.Assists the Category Lead in preparation of material for presentation to Procurement Council with project sponsors in order to obtain approval on spend plan.Collaborates with Business Units (BU) to build plan, set targets, and lead strategic sourcing projects.Collaborates with the cross-functional team to review Key Performance Indicators (KPls), and Issues. Subsequently investigates gaps, proposes solutions, and determines action plans.Ensures adequate insight of the supply chain and impact to business operations or projects.Performs market and supplier analysis to understand key business drivers.Develops hypothesis for insights into the sourcing strategies, supply arrangements, and contractual terms.Implements modelling tools and framework, such as "Total Cost of Ownership" models, to support procurement activities and decision-making.Conducts RFx development, supplier response analysis, RFx comparison, RF evaluation, supplier negotiation/selection, and Purchase Order terms and conditions determination.Coordinates with end-users and relevant business units to gather required information (eg. technical specifications, scope of work, etc).Support procurement process improvement, reporting, and governance activities.Performs other related duties and responsibilities that may be assigned from time to time.
*RFx = Request for Information/Proposal/Quote/Bid
EducationBachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, Business Administration, Law, or related discipline.
Work ExperienceMore than 5 years of progressive leadership in cybersecurity governance and IT risk management, with deep expertise in regulatory compliance and governance frameworks.Proven track record in designing and implementing enterprise-wide governance programs aligned with global standards such as ISO/IEC 27001 and NIST Cybersecurity Framework (CSF).Proven ability to lead cross-functional teams, strengthen security control maturity, and ensure continuous alignment with evolving regulatory and industry standards.
SKILLSTechnical SkillsExperience in any of the following fields:Cybersecurity Governance & Lifecycle ManagementRegulatory Compliance FrameworksStrategic Planning & ExecutionLeadership & Team DevelopmentEffective Communication & Stakeholder Engagement
Responsibilities
Leads the Cyber Security Operations Group (CSOG) governance framework to ensure robust, transparent security practices across the enterprise. Responsible for aligning governance strategies with organizational objectives, integrating policies and processes into operational workflows, and maintaining compliance with regulatory and industry standards. Build strong stakeholder collaboration to drive accountability, integrity, and continuous improvement, strengthening the organization’s overall cybersecurity posture.
Governance LeadershipLeads the design, implementation, and management of the CSOG governance system, ensuring clear allocation of responsibility, authority, and accountability in alignment with established principles.
Security IntegrationDirects the establishment and integration of security management processes within the PLDT Group’s system delivery life cycle, ensuring consistent application and communication across all functions.
Security Framework MaintenanceOversees the maintenance of enabling structures, principles, and processes that support CSOG’s mission and objectives, ensuring clarity of roles and responsibilities.
Performance OversightLeads the monitoring and evaluation of CSOG Pillar processes and governance mechanisms, driving operational integrity and continuous improvement.
Strategic AlignmentEnsures cyber security-related processes and decisions are aligned with organizational strategies and objectives, providing oversight and guidance to maintain strategic coherence.
Security Roadmap DevelopmentSpearheads the development of comprehensive group strategies and roadmaps to strengthen the PLDT Group’s cyber security posture.
Demand & Project ManagementAligns CAPEX and OPEX projects with CSOG’s strategic roadmap. Oversees new projects, enhancements, and change requests to ensure timely, on-budget, and in-scope delivery. Implements program tracking and reporting mechanisms and fosters a project-oriented culture to improve maturity within CSOG.
Resource & Financial StewardshipManages optimal allocation of financial resources and oversees capacity planning, resource deployment, and cost-effectiveness across all cyber security pillars.
Metrics & AccountabilityDefines and tracks performance metrics contributing to CSOG’s balanced scorecard, promoting transparency and accountability throughout the organization.
Compliance & Audit ReadinessEnsures adherence to all applicable cybersecurity laws, regulations, and standards. Integrates compliance controls into operational processes and supports audit readiness through thorough documentation and timely remediation of identified gaps.
Project ManagementEnsures timely and high-quality delivery of technical assessments for key information security initiatives, in collaboration with the Capability and Delivery team.
People Engagement and DevelopmentEncourages a culture of collaboration and growth within CSOG by supporting continuous development. Contributes to building organizational capability through knowledge sharing and fostering readiness for future roles.
Operational SupportProvide leadership and support for additional duties and responsibilities as assigned, ensuring alignment with organizational priorities and operational excellence.
Leads the enterprise-wide information security compliance strategy to ensure regulatory alignment, audit readiness, and continuous control improvement. Manages and supervises a team of compliance auditors, providing guidance and mentorship while overseeing audit governance and execution. Drives the development and implementation of audit programs and closure of compliance gaps, in collaboration with internal and external audit partners. Ensures compliance efforts align with industry standards and evolving regulatory requirements, while proactively monitoring developments to strengthen the organization’s security posture and governance maturity.
Audit Issue Management and Resolution Oversees audit-related activities, ensuring timely and complete resolution of all audit findings. Coordinates with relevant stakeholders to implement sustainable remediation plans that address root causes and prevent recurrence.
Remediation Oversight and Timeline ManagementEnsures that all remediation plans are comprehensive, actionable, and executed within agreed timelines. Monitors progress and escalates risks to timely closure, reinforcing accountability and governance discipline
Stakeholder Engagement and Compliance ClosurePartners with internal and external audit teams to drive the closure of compliance gaps of the Cyber Security Operations Group (CSOG). Facilitates cross functional collaboration to ensure audit recommendations are fully addressed and compliance maturity is continuously improved.
Security Control Validation and Gap ManagementConducts independent validation of cybersecurity control process. Identifies and tracks remediation of process gaps, ensuring that corrective actions are effectively implemented and aligned with industry best practices.
Information Security Compliance AuditingLeads the execution of regular audits across the PLDT Group to assess compliance with the Corporate Information Security Policy (CISP) and other security controls, including but not limited to ISO/IEC 27001 and the NIST Cybersecurity Framework (CSF).
Regulatory Intelligence and Best Practices Monitors evolving regulatory requirements and industry best practices to proactively enhance the organization’s compliance posture. Ensures continuous improvement of audit methodologies and control frameworks.
Tool Management and DeliveryLeads the deployment, integration, and continuous enhancement of compliance tools that enforce security policies and support regulatory adherence through effective utilization, governance, and audit-aligned capabilities.
Project Management Ensures timely and high-quality delivery of technical assessments for key information security initiatives, in collaboration with the Capability and Delivery team.
People Management Provides timely, constructive feedback on staff and supervisor performance. Acts as a mentor and role model, fostering growth and development. Ensures the creation and execution of effective succession plans to build future leadership.
Operational SupportProvide leadership and support for additional duties and responsibilities as assigned, ensuring alignment with organizational priorities and operational excellence.
EDUCATIONBachelor’s degree in Information Technology, Computer Science, Engineering, Accountancy, or any related course/discipline.
WORK EXPERIENCE Over 5 years of strong leadership in IT and cybersecurity, specializing in Information Security Management Systems (ISMS), audit practices, Governance, Risk, and Compliance (GRC), as well as regulatory, industry and international standards.Demonstrated a proven track record in leading enterprise wide security audits and contributing to the management of compliance programs aligned with cybersecurity frameworks such as ISO/IEC 27001 and the NIST Cybersecurity Framework (CSF).Exhibits strong capability in cross functional collaboration, enhancing security control maturity, and maintaining alignment with evolving regulatory and industry standards.
Technical Skills Experience in any of the following fields:Implementation and auditing of Information Security Management Systems (ISMS)Security control assessment and validationApplication of industry frameworks and standards, including the NIST Cybersecurity Framework, the ISO/IEC 27001 international standard, and SOX regulatory compliance.Audit governance support, remediation tracking, and issue closureRisk assessment and compliance reportingUse of compliance monitoring tools (e.g., RSA Archer, ServiceNow GRC)Data analytics for evaluating audit outcomes and control effectivenessDocumentation, audit trail management, and reportingCloud security compliance (e.g., AWS, Azure
Job Brief
This role oversees enterprise-wide Cybersecurity program governance, ensuring strategic alignment, delivery excellence, and adherence to established frameworks. It manages resources, vendor performance, and CAPEX/OPEX projects to ensure timely and on‑budget execution. The job defines and maintains the organization's cybersecurity posture through strategic roadmaps, maturity assessments, and integration of global best practices. Additionally, it provides data-driven insights, analytics, and performance reporting to support leadership decisions, strengthen resilience, and promote a transparent, project-driven culture focused on continuous improvement.
Program Governance :The job is responsible for:Own the demand intake and prioritization framework, including policies, scoring criteria, and governance gate Establishing and ensuring that mature program/project management methods are consistently practiced in the delivery of Security solutionsImproving the overall program and project maturity across the sector, tracking and reporting the conformance to plans and expectations.Supporting and enabling the organization's projects, programs and structured work efforts through toolingFostering a project-management-oriented culture and mindsetLeading the identification and implementation of project management processes, methods, tools, guidelines and standards in order to establish a stable framework that supports all project teams and stakeholders to improve the probability of successful project deliveryFacilitating the agreed-upon process that develops plans and prioritization by leadership and governanceDefining, managing and directing the end-to-end work effort, which includes identifying, quantifying and tracking the realization of expected benefits defined in business casesSupports the Cybersecurity Steering Committee by taking minutes, sharing them with the group, and following up on action items.Maintain risk, issue, decision, action and change (RIDAC)logs across assigned programs.Acting as a coach to junior project managers, executives and others who need assistance and advice regarding project management practices
Analytics & ReportingDevelop dashboards, scorecards, and KPI reporting using BI tools Maintain demand scoring model, pipeline/capacity dashboards, and benefits reporting.Consolidate project updates, assess progress variance, and highlight performance insights.Conduct trend analysis and provide data-driven recommendations to leadership.Produce executive reports and program performance summaries.
Program Monitoring & ControlTrack project milestones, deliverables, timelines, and overall health status.Coordinate with project teams for updates, escalations, and compliance checks.Support post-implementation reviews and benefits realization assessments.Monitor license consumption, analyze utilization trends, and implement optimization measures to support cost control and operational efficiency
Stakeholder ManagementWork with project managers, business owners, and cross-functional teams.Communicate insights clearly to senior leaders and governance bodies.
Cybersecurity Posture & Strategic AlignmentDefines and maintains cybersecurity strategy roadmaps aligned with enterprise objectives. Incorporates global best practices, provides strategic recommendations, and conducts periodic maturity assessments to strengthen organizational resilience.
Operational SupportProvide support for additional duties and responsibilities as assigned, ensuring alignment with organizational
Manage the overall communication of Threat Intelligence BriefManage cyberthreat intelligence information and augment CSOG’s Threat Intel databaseIdentify and assess the capabilities and activities of cybersecurity criminals or foreign intelligence entities that may pose a threat to the organization’s geolocation, industry and assetsIdentify and provide context to Indicators of Compromise (“IOC”) and tactics, techniques, and procedures (“TTP”) of threat actors and ensure that IOCs are being translated to Security Operations Center’s use cases to improve detection and responseCounter adversaries through timely provision of IOCs for blocking, investigation and risk assessmentPractice proactive search for internal and external cyber threats that are undetected and eradicate the threatsProduce findings to help initialize or support law enforcement authorities and counter-intelligence investigations or activities in collaboration with Incident Investigation team
ROLE OVERVIEW:The Jr. Brand Manager will play a role in shaping and executing the brand strategy to drive growth in new revenue streams for Smart Prepaid , accelerate data consumption, enhance omnichannel consumer engagement, and maintain strong brand health. He/She will collaborate with cross-functional teams to bring to life products, campaigns, and programs that resonate with the market, ensuring the brand remains relevant and top-of-mind.
RESPONSIBILITIESDevelop strategies to grow revenues of Smart Prepaid in different sales channelsCreate dynamic campaigns for products or promos that deliver meaningful solutions to enhance consumers' lives.Develop digital-first campaigns to enhance brand perception, boost revenues, and deepen consumer engagement.Define and shape the strategy for go-to-market plans by leveraging user insights, market data, competitive research, and a deep understanding of national, local, and segment-specific needs.Collaborate with various internal and external stakeholders to ensure alignment on priorities, effective market execution of brand initiatives, and the implementation of best practices.Help keep healthy inventory of Smart Prepaid sims and handset devices
QUALIFICATIONSEducational Background:Graduate of Business Management or Communications or Marketing-related course, from top state or private universities nationwide
Work Experience:Minimum 5 years experience in the Telco Internet, OTT or Tech industry in a Product or Marketing role or 5 years of experience in brand/marketing role in other industries Experience in a leadership role, managing cross functional and cross cultural teams Experience in IMC planning and execution and proven ability in leading teams in large-scale complex programs Experience in social media and influencer marketing. Deriving measurements for ROI, Business Finance skills or relevant exposure Can analyze data both qualitative and quantitative
General Job BriefLead the development, communication, and implementation of strategies and programs for Cyber Security Incident Response, Incident Investigation, and Threat Intelligence/Hunting teams.Ensure effective monitoring, analysis, and response to security alerts, providing a critical defense layer for the organization.Collaborate with stakeholders to ensure seamless security operations and incident management.
Key ResponsibilitiesIncident Response: Oversee investigations, containment, and emergency response planning.Team Management: Recruit, train, mentor, and supervise cybersecurity professionals.Technology Oversight: Manage SOC tools, surveillance systems, SIEM/XDR platforms, and automation.Policy Development: Create and implement security policies, procedures, and playbooks.Continuous Improvement: Stay updated on cybersecurity developments and drive process improvements.
Qualifications:
Education: Bachelor’s degree in Computer Science, Information Security, or related field
Experience:8+ years in cybersecurity, with 2–3 years in leadership/management within SOC or incident response.Proven success in managing major security incidents end-to-end.Experience with SIEM/XDR platforms and security automation.CertificationsCISSP, CISMGIAC Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA)CompTIA CySA+, CASP+ITIL Foundation
ROLE OVERVIEW:Establish a strong digital and ATL footprint for Smart’s various content partners; the Smart App and its loyalty/acquisition promos, other network innovations for thought leadership. Apart from leading these campaigns, the BEM Manager will also ensure branding adherence for Smart Signature/Postpaid
RESPONSIBILITIESCommunicationLead the communication plans and marketing mix of the Smart App, content partners e.g. Gig, NBA, Lionsgate, etc., Smart 5G and other network-related innovations, providing transparency on deliverables and timelines.Lead IMC planning and implementation of assigned projects, ensuring all internal and external partners deliver requirements on time and on strategy.Ensure all internal and external partners in your area of responsibility are briefed to deliver against campaign plans and objectives.Ensure all Smart Signature/Postpaid campaigns and materials adhere to established branding guidelines and strategy.OptimizationAnalyze consumer research and brand health tracking; partner closely with the media, advertising, and analytics teams to define campaign performance metrics to ensure a high level of effectiveness.
QUALIFICATIONSEducational Background:Graduate of Business Management, Marketing Management, Integrated Marketing Communications or Marketing-related courseWork Experience:Strong experience in Brand ManagementAt least 5-7 years experience in marketing, brand, or business managementEstablished ability to work with cross-functional teams across various levels and external partners
