Business Resilience & Information Security Manager
CloudPay
IT
Philippines · Manila, Philippines
Posted on Sep 17, 2025
About this job opportunity
Our Vision
To be the world's most trusted global payroll partner, simplifying pay for all employees.
Our Mission
Empowering global workforces with seamless, compliant, and innovative payroll and payment solutions, enabling businesses to thrive in a connected world.
Our People
Our fundamental beliefs at CloudPay are built on core values of professionalism, passion, empowerment, innovation, and teamwork. We value our employees and strive to create a great workplace where everyone is valued, heard, inspired, and encouraged to bring their authentic selves to work. We're committed to providing an excellent employee experience through fulfilling projects, empowerment to make a difference, and an environment that inspires innovation.
What makes this role exciting
CloudPay is seeking an experienced Business Resilience & Information Security Manager to lead the development, maintenance, and execution of our global business continuity and disaster recovery programs.
As a high-growth, well-funded technology business, this role ensures CloudPay’ s ability to maintain service delivery to customers during disruptions — whether from cyber events, system failures, or regional crises.
While the primary focus is business continuity and operational resilience, you will also support key areas of information security, particularly as they relate to continuity planning and regulatory compliance.
Main responsibilities
Business Continuity & Disaster Recovery (Primary Focus)
Own the global Business Continuity Management System (BCMS), maintaining CloudPay’ s ISO 22301 certification.
Lead enterprise-wide business impact assessments (BIAs) to identify critical functions, interdependencies, and recovery requirements.
Develop, document, and maintain detailed business continuity and disaster recovery (BC/DR) plans across functions and geographies.
Coordinate and facilitate crisis management exercises, recovery simulations, and plan walkthroughs with global and regional leadership teams.
Establish clear recovery time objectives (RTOs) and recovery point objectives (RPOs) aligned with service-level obligations.
Partner with functional leaders (e.g., operations, technology, customer success) to embed resilience into core business processes.
Regularly test and improve response procedures for diverse scenarios (e.g., cyber incidents, natural disasters, system outages, geopolitical disruptions).
Incident Response and Reporting
Work closely with the technology teams on security incidents to ensure compliance with Incident Response Plans.
Support relevant teams with communications and root cause analysis.
Monitor and ensure that actions arising from security incidents are logged and managed through to completion.
Information Security (Secondary Focus)
Collaborate with technology and security teams to ensure continuity plans align with security controls and data protection policies.
Continuously monitor evolving regulation and standards to assess relevant impacts to the security framework at CloudPay
Work closely with stakeholders to advise on appropriate implementation of security policies to protect customer data.
Ensure that policies are communicated to all employees.
Prepare for and support external audits related to information security such as ISO27001 and SOC.
Support the vendor assurance team with interpretation and review of security elements of compliance assessment responses
Work closely with stakeholders on information security questionnaires from prospects and existing customers.
Continuous Improvement and Monitoring
Monitor the effectiveness of security controls through periodic assessments and identify areas for improvement.
Ensure that nonconformities are appropriately captured and managed through to completion.
Experience needed for this role
Experience in business continuity/disaster recovery, with exposure to security and compliance domains.
Strong knowledge of BC/DR standards (e.g., ISO 22301, BCI Good Practice Guidelines, NFPA 1600).
Skilled communicator, able to lead cross-functional teams during high-pressure situations and coordinate across global time zones
Preferred
Experience in global service delivery environments, ideally in payroll, finance, or SaaS.
Familiarity with security and data protection frameworks such as ISO 27001, SOC 2, GDPR (preferred, not required to lead).
Certifications strongly preferred: CBCP, MBCI, ISO 22301 Lead Implementer. Security certs (e.g., CISSP, CISM) are a plus but not required.
About you and Our core values
Taking ownership, working with integrity and respect
Being a team player is key to our culture
Solution and customer focused
Great initiative with the goal for excellence in achieving results
Dedicated to developing and always looking for continuous improvements
Be creative, be committed, be engaged and enjoy what you do
Philippines Package and Benefits
Competitive Salary
Competitive vacation allowance
Calm app
Sick Leave
EAP
Group Life Insurance, HMO
Employee Referral Program
De Minimis Benefit
WFH Allowance
Mid-Year Bonus
13th Month Pay
Regularization Bonus, 1st Year Anniversary Bonus
Bereavement Leave
Paid Volunteering days
Study Leave
Marriage Leave
CloudPay is committed to being an equal opportunities employer.
#LI-Hybrid
#LI-DA1
The CloudPay culture is built upon on five core values, from which we develop our service, our technology and our business strategies. Our fundamental beliefs are a promise to our employees, customers and partners, built on the core values of professionalism, passion, empowerment, innovation, and teamwork.
Glassdoor