Chemonics seeks a short-term digital security policy/governance expert to support the ongoing USAID-funded E-PESO project in the Philippines. E-PESO is working to accelerate the shift to digital payments by 1) driving transaction volume of large payment streams; 2) promoting retail and market-level infrastructure; 3) improving the enabling environment for e-Payments including policies that promote consumer protection and security measures; and 4) addressing gaps in the broader e-Payment ecosystem. These interventions will help scale e-Payment usage toward the threshold of self-sustaining growth; lead to a more efficient, transparent, and inclusive retail e-Payment system; increase the regularity and predictability of financial services to a broader segment of the population; and open up more economic opportunities for broad-based growth in the Philippines. E-PESO is supporting the Bangko Sentral ng Pilipinas (BSP) on design of the governance and operational structures for a national retail payment system. The consultant will serve as a subject matter expert and provide technical guidance and deliverables to the BSP, as well as write and report on digital security activities for E-PESO. We are looking for individuals who have a passion for making a difference in the lives of people around the world.

Responsibilities include:
Review, assess, and recommend enhancements to E-banking, E-money issuance, and E-payment and other digital financial services regulations to address the requirements for a secure digital payment system:
a. Review existing BSP security policy, as applicable to the domain of payments at the BSP (as a payment system operator and participant) and at its supervised institutions
b. Recommend best international practices on digital security policies for regulatory purposes
c. Engage with the BSP and, through it, their supervised institutions on the security policy review to obtain their inputs on necessary changes
d. Based on the recommended international practices and the security policy review, provide a written assessment of BSP security policy areas and detailed recommendations on areas that should be considered for upgrade, change, and or removal and justification

Assist the BSP in their updating of the relevant official documentation, including circulars and memoranda applicable to payments security, through written submission of suggested updates
Review and make recommendations on the feasibility and considerations for setting up a payments industry-led Incident Reporting and Management System and Security Operations Center
Conduct a four-day workshop for the BSP to cover the following topics:

a. Securing and auditing the cloud environment
b. Cybersecurity essentials and assessment framework
c. Security of ATM and online/mobile banking environment and other emerging channels (e.g., near field communication contactless and host card emulation)
d. The EMV and the Payment Card Industry Data Security standards

Serve as resource person on a seminar for sharing good digital security practices and policies to banks and other parties
Submit interim and final consultant reports to the USAID E-PESO project for onward submission to and approval by the BSP

Qualifications:
Certifications in information security and related fields
Expertise in digital security specific to payments and payment systems
Extensive experience working with or advising regulatory bodies such as central banks and/or private sector financial services industry associations
Experience performing tasks substantially similar to those in the responsibilities list above, including training hours conducted on the topics requested
Demonstrated leadership, versatility, and integrity
Excellent written and oral communication skills in English

HOW TO APPLY:
Send electronic submissions to EPESODigitalSecurityRecruit@chemonics.com by September 15, 2016. Please include “digital security policy/governance expert” in the subject line. No telephone inquiries, please. Finalists will be contacted.

In addition, please download and complete Chemonics’ equal employment opportunity self-identification form and submit it separately to EEOselfidentify@chemonics.com with only “digital security policy/governance expert” in the subject line. If you prefer not to disclose your sex, race, or ethnicity, you may check “I do not wish to complete the information requested.” Thank you for completing the form and supporting our equal employment opportunity reporting requirements.

Chemonics is an equal opportunity/Affirmative Action employer and does not discriminate in its selection and employment practices. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, political affiliation, sexual orientation, gender identity, marital status, disability, protected veteran status, genetic information, age, or other legally protected characteristics.