Job Title

Security and Data Privacy Lead

Job Title:

Security and Data Privacy Lead

In this role you will:

Position Purpose

Navitaire is seeking a Security and Data Privacy Lead for its Manila office.  The Security and Data Privacy Lead acts as the point of coordination for security related incidents, activities, and support.  They are a vital part of the Navitaire CyberSecurity team in Manila.  This position will also act as the designated Data Privacy Officer, who oversees compliance with data privacy laws and regulations as mandated by the National Privacy Commission (NPC) of the Philippines. The DPO will be responsible for coordinating the company’s data protection strategy and its implementation to ensure compliance with local data privacy requirements as well as company privacy policy.

Principal Duties

Champion Security and Data Privacy

Work with stakeholders to reduce security and privacy related risk across the company.Promote a culture of data privacy awareness within the organization.Develop and deliver training programs to educate staff on data privacy and protection.

Compliance and Governance:

Be familiar with and consult on data privacy regulations, policies, and procedures.Promote compliance with security and data privacy policies and regulations.Monitor and document compliance with security and data privacy policies and regulations.Participate in the corporate data privacy program representing the Manila offices.

Data Privacy Impact Assessments (DPIAs):

Conduct DPIAs for new projects, systems, and processes involving personal data.Identify gaps and recommend appropriate plans to mitigate potential privacy risks.

Incident Management:

Participate in and support the response to data breaches and other privacy and security incidents.Coordinate with corporate privacy office on reporting breaches to the NPC and affected individuals as required by applicable law.

Liaison and Communication:

Coordinate security concerns between local and corporate teams.Support and Lead security initiative with staff in the local offices.Act as point of contact between the local company and data subjects, as well as regulatory authorities.Address inquiries and complaints regarding data privacy issues.

Documentation and Reporting:

Prepare and submit regular reports on data privacy compliance to internal stakeholders and regulatory authorities as required.

About the ideal candidate:

Bachelor’s degree in Law, Cybersecurity, Information Technology, or a related field. Privacy and Security certifications strongly preferred.  e.g. Certified Information Privacy Professional (CIPP), Certified Information Systems Security Professional (CISSP), CISM or equivalentAt least 5 years combined experience in security, data privacy, data protection, or a related field in an IT company or Software Development company.In-depth knowledge of the Data Privacy Act of 2012 and other relevant data protection lawsExperience with data privacy and protection policy and procedures in a software development environment.Demonstrated understanding of information systems, data processing, data security and/or data protection needs.Familiarity with industry standard security frameworks such as ISO 27001, CSA STAR, and NIST.Familiarity with software development and travel industries a plus.Strong analytical, organizational, and communication skills.Ability to prioritize tasks based on risk.Ability to handle sensitive information with discretion and integrity.Amenable to work in BGC Taguig, on a Hybrid work setup

Application process

The application process is easy and fast. Create your candidate profile manually or upload your CV/Resume

Diversity & Inclusion

Amadeus aspires to be a leader in Diversity, Equity and Inclusion in the tech industry, enabling every employee to reach their full potential by fostering a culture of belonging and fair treatment, attracting the best talent from all backgrounds, and as a role model for an inclusive employee experience.  

Amadeus is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to gender, race, ethnicity, sexual orientation, age, beliefs, disability or any other characteristics protected by law.