Job Openings Compliance Analyst

About the job Compliance Analyst

The Compliance Analyst is tasked to assist the Compliance Manager in conducting regular audits aligned with the company's existing processes, ensuring compliance with standards and regulatory requirements, reporting audit findings, recommending improvements, and assisting Process Champions and other internal stakeholders in process or policy documentation.


  1. Interface between different departments, and a reporter of fact to confirm that Eastvantages documentation meets requirements and that day-to-day operations follow the documentation.
  2. Assist in conducting activities to maintain Eastvantage international certifications on ISO 27001 and PCI DSS, and ensure strict compliance with the Philippines Data Privacy Act (DPA) of 2012 and the European Union General Data Protection Regulation (GDPR).
  3. Act as the Compliance Officer for Privacy (COP) for the company, in compliance with the Philippines DPA of 2012 (R.A. 10173).
  4. Assist in the preparation of the documentation requirements and facilitates the registration of the company with the National Privacy Commission (NPC)
  5. Assist in the creation of an annual audit programme; and conduct internal audits at least twice a year, or as planned or as advised by the top management;
  6. Assist in preparing the audit plan, audit checklists, and conducting audits accordingly.
  7. Monitor and assist in the planning and implementation of preventive and corrective action plans in line with the identified process improvement or audit findings.
  8. Prepare and distribute reports to the Compliance Officer, Compliance Manager, Top Management, and other relevant stakeholders.
  9. Assist in the strengthening of stakeholders and client relationships through constant communication and feedback, consultative meetings, and other engagement activities.
  10. Assisting the department Process Champion(s) in the documentation of processes and control points.
  11. Conducts gap assessment and root-cause analysis for problem-solving, timely resolution, and communicating potential issues to his/her manager.
  12. Assist in monitoring compliance with regulations and controls by examining and analyzing records, reports, operating practices and procedures, and documentation.
  13. Assist in analyzing and assessing information obtained through interviews, observations and inspections.
  14. Adheres to all regulatory and privacy policies, requirements, and standards in maintaining compliance with ISO, PCI DSS, DPA and GDPR.
  15. Perform other duties and tasks that may be assigned by his/her manager or top management that will further the interest of information security and data protection.

    Position requirements:

    • At least 3 years of professional experience in internal audit and compliance roles or any related field.
    • Familiarity with the applicable laws and policies in relation to the information security controls and data protection requirements.
    • Knowledge of information security and data protection best practices.
    • Understanding of the concepts of continual improvement (system improvement).
    • Have experience in internal/process auditing, ISO certification and ISO standards.
    • Critical thinking, responsiveness, perseverance, and resourcefulness in case of a breach.
    • Excellent and effective verbal, written, interpersonal communication and presentation skills.
    • Possess strong analytical and problem-solving abilities, must be independent and proactive.
    • Attended ISO-related training(s) and holds ISO certification as a PLUS.
    • Must be keen on details and highly organized.
    • Must have a strong sense of professionalism.

    Or refer someone