About the Company: At Eastvantage, we believe in creating meaningful work relationships across the globe. Our premier managed services and outsourcing solutions enable operational excellence that results in business growth for our partners worldwide. With a team of inspired experts, we provide purpose-built solutions in the areas of software development, technology support, customer relationship management, and a variety of business support functions. The inspiration extends to measurable outcomes through 24/7 service delivery in 13 languages from our offices in the Philippines, India, Vietnam, and Bulgaria. Visit eastvantage.com to discover how we can help you succeed.
About the role:
The Sr. Compliance Officer is responsible for assisting Compliance Manager/Compliance Officer in conducting regular audits on compliance with the company’s existing processes, ensuring compliance to standards and regulatory requirements, reporting audit findings, recommending improvements, and assisting Process Champions and other internal stakeholders in process or policy documentation.
Main Responsibilities:
● Must serve as a catalyst of change, an interface between different departments, and a reporter of fact to confirm that Eastvantage’s documentation meets requirements and that day-to-day operations follow the documentation.
● Assist in conducting activities to maintain Eastvantage international certifications on ISO 27001 and ensures strict compliance with the Philippines Data Privacy Act (DPA) of 2012 and the European Union General Data Protection Regulation (GDPR).
● Act as the Compliance Officer for Privacy (COP) for the company, in compliance with the Philippines DPA of 2012 (R.A. 10173).
● Assist in the preparation of the documentation requirements and facilitates the registration of the company with the National Privacy Commission (NPC)
● Assist in preparing the audit plan for the year, audit checklists, and conducting internal audits accordingly or as advised by the top management.
● Monitor and help implement preventive and corrective action plans in line with the identified process improvement or audit findings.
● Prepare and distribute reports to the Compliance Officer, Compliance Manager, Top Management, and other relevant stakeholders.
● Assist in the strengthening of stakeholders and client relationships through constant communication and feedback, consultative meetings, and other engagement activities. Assist in holding talk sessions or in sending out communications/newsletters to spread security and compliance awareness.
● Assisting the department Process Champion(s) in the documentation of processes and control points.
● Conducts gap assessment and root-cause analysis for problem-solving, timely resolution, and communicating potential issues to his/her manager.
● Assist in monitoring compliance with regulations and controls by examining and analyzing records, reports, operating practices and procedures, and documentation.
● Assist in analyzing and assessing information obtained through interviews, observations and inspections. Assist in collection of evidence for external audits where required.
● Adheres to all regulatory and privacy policies, requirements, and standards in maintaining compliance with ISO, PCI DSS, DPA and GDPR.
● Perform other duties and tasks that may be assigned by his/her manager or top management that will further the interest of information security and data protection
Qualifications and Skills:
● At least 7 years of professional experience in internal audit and compliance roles or any related field.
● Good knowledge of applicable laws and policies in relation to the information security controls and data protection requirements.
● Understanding of the concepts of continual improvement (system improvement).
● Have experience in internal/process auditing, ISO certification and ISO standards.
● Critical thinking, responsiveness, perseverance, and resourcefulness in case of a breach.
● Excellent and effective verbal, written, interpersonal communication and presentation skills.
● Possess strong analytical and problem-solving abilities, must be independent and proactive.
● Attended ISO-related training(s) and holds ISO certification as a PLUS.
● Must be highly organized, detail oriented and exhibit a strong sense of professionalism
● Amenable to work in a hybrid work set up. 3x a week either in BGC Taguig or Ortigas, Pasig