Job Openings Compliance Manager

About the job Compliance Manager

The Compliance Manager is a senior level resource whose task is to ensure Eastvantages compliance with the Data Privacy Act and its Implementing Rules and Regulations and adherence to NPC issuances. Moreover, he/she is responsible for activities related to certification maintenance and renewals such as ISO27001: 2013, PCI-DSS and similar, and compliance with GDPR and other related regulations impacting Eastvantage.

The Compliance Manager is also responsible for ensuring the timely and accurate conduct of internal audits. Moreover, he/she will:

  • Ensure that all regulations pertaining to ISO 27001:2013, PCI DSS, GDPR, etc. are maintained.

  • Develop and oversee control systems to prevent or deal with violations of legal guidelines and internal policies.

  • Revise procedures, reports, etc. periodically to identify hidden risks or non-conformity issues.

  • Prepare reports for senior management and external regulatory bodies as appropriate.

  • Monitor the privacy compliance and privacy program management of Eastvantage.

  • See to the maintenance and updating of relevant internal documentation, including but not limited to the Privacy Policy, Data Protection Policy, Information Security Policy, and related documents

  • Lead and guide the departments on risk assessment.

  • Oversee the conduct of privacy impact assessments and ensure the continuous implementation of corrective actions.

  • See to the timely and compliant submission of required documentation to NPC related to incident reports, data breach notifications and be instrumental in the resolutions thereof.

  • Actively create and participate in information security awareness campaigns, including engagement in continuous training and education of Eastvantage employees on data privacy and data protection.

  • Represent Eastvantage in all external agencies for data protection concerns.

  • Act as a Compliance resource for process improvement projects and teams on matters related to department policies and procedures.

  • Have a profound understanding of the concepts of continual improvement (system improvement).

  • Manage the work of Compliance staff responsible for internal audit/reviews, Service Organization Control requirements, and department policies and procedures.

  • Be responsible for training, development, and performance evaluations of direct reports.

Position requirements:

  • Professional, highly organized, self-starter

  • Senior-level; at least 8 years of professional experience in internal audits and compliance role.

  • Intensive experience working with ISO 27001:2013, PCI DSS, and GDPR compliances

  • Experience with Information security management system, Data Privacy, and business continuity management system

  • Must have experience managing compliance team members

  • Highly knowledgeable in the applicable laws and policies in relation to the information security controls and data protection requirements

  • Exceptional communication skills and can confidently and effectively report to the executive management


Or refer someone