Job Description

Position Title: Security Program Contracts Manager – Compliance & Governance
Location: Makati, Manila
Reports To: Operations Director

We are seeking an experienced and highly detail-oriented Security Program Contracts Manager – Compliance & Governance to establish, manage, and continuously improve our compliance framework, contract management processes, security governance systems, and audit readiness programs.

This role is responsible for ensuring the business remains audit-ready at all times, maintains compliance with relevant legislation, industry standards, client requirements, and contractual obligations, while developing scalable governance systems that support growth and minimise organisational risk.

The successful candidate will have strong experience in compliance management, contract administration, ISO management systems, security operations auditing, security technology programs, emergency management procedures, policy development, risk management, and operational governance. Experience within security services, facilities management, critical infrastructure, government, defence, or other regulated industries will be highly regarded.

Key Responsibilities

Compliance Management

• 
  Develop, implement, and maintain the company's compliance management program.
• 
  Create practical compliance frameworks that can be effectively managed, monitored, and continuously improved.
• 
  Ensure compliance with relevant legislation, industry standards, contractual obligations, and client requirements.
• 
  Monitor regulatory changes and recommend required updates.
• 
  Conduct regular compliance reviews and risk assessments.
• 
  Maintain compliance registers, policies, procedures, and supporting documentation.
• 
  Support leadership in maintaining a strong culture of compliance and accountability throughout the organisation.

ISO & Security Compliance

• 
  Lead and maintain compliance with ISO standards, including but not limited to:
  • 
    ISO 9001 – Quality Management Systems
  • 
    ISO 27001 – Information Security Management Systems
  • 
    ISO 22301 – Business Continuity Management Systems
  • 
    ISO 45001 – Occupational Health & Safety Management Systems
• 
  Manage internal controls and security compliance frameworks.
• 
  Coordinate certification, surveillance, and recertification audits.
• 
  Ensure documentation remains current and aligned with certification requirements.
• 
  Drive continuous improvement initiatives across compliance and governance systems.
• 
  Ensure compliance with client-specific security requirements and contractual obligations.
• 
  Support security licensing, accreditation, and regulatory compliance activities.
• 
  Maintain business continuity, emergency management, and incident response documentation.
• 
  Assist operational teams in implementing corrective and preventative actions arising from audits, incidents, and compliance reviews.

Contract Management

• 
  Draft, review, maintain, and manage contracts and commercial agreements.
• 
  Track contract obligations, milestones, renewals, and compliance requirements.
• 
  Maintain a centralised contract repository.
• 
  Identify contractual risks and recommend mitigation strategies.
• 
  Ensure contractual obligations are fulfilled by all stakeholders.
• 
  Monitor contract performance and maintain accurate records of compliance obligations.
• 
  Support contract negotiations and contract governance processes where required.

Security Program Governance

• 
  Support governance of security force operations, electronic security systems, and emergency management programs.
• 
  Monitor compliance with security operating procedures, client requirements, and regulatory obligations.
• 
  Ensure security programs are documented, measurable, and audit-ready.
• 
  Develop compliance reporting for security performance, incidents, corrective actions, and contractual obligations.
• 
  Work closely with operational leaders to improve security outcomes and compliance performance.
• 
  Maintain oversight of contractor compliance and subcontractor governance requirements.
• 
  Support investigations, incident reporting, and corrective action programs.

Audit & Governance

• 
  Maintain an audit-ready environment across all business functions.
• 
  Develop and manage internal audit schedules.
• 
  Coordinate external audits and compliance reviews.
• 
  Prepare audit documentation, evidence packs, and compliance reports.
• 
  Track audit findings and ensure corrective actions are completed within agreed timeframes.
• 
  Ensure governance frameworks remain effective, documented, and continuously improved.
• 
  Support management reviews and governance reporting activities.

KPI & Performance Compliance

• 
  Develop and support compliance-related KPIs and monitoring frameworks.
• 
  Create dashboards and reporting mechanisms for management.
• 
  Monitor compliance performance across departments.
• 
  Ensure documented evidence exists for all key operational KPIs.
• 
  Report on compliance status, risks, trends, and improvement opportunities.
• 
  Provide regular compliance and governance reports to leadership.

Risk Management

• 
  Develop and maintain risk registers.
• 
  Identify operational, contractual, legal, security, and compliance risks.
• 
  Implement preventative controls and mitigation strategies.
• 
  Escalate significant risks to leadership.
• 
  Monitor risk treatment plans and ensure ongoing effectiveness.
• 
  Support enterprise risk management initiatives.

Documentation & Process Improvement

• 
  Develop and maintain policies, procedures, SOPs, and governance documents.
• 
  Ensure version control and document management standards are maintained.
• 
  Improve operational efficiency through process mapping and workflow optimisation.
• 
  Promote a culture of accountability, compliance, and continuous improvement.
• 
  Ensure all compliance and governance documentation remains current and audit-ready.

Required Experience

Essential

• 
  5+ years' experience in Compliance, Governance, Risk, Audit, Security Operations, or Contract Management.
• 
  Experience implementing and managing compliance programs.
• 
  Strong understanding of ISO management systems including ISO 9001, ISO 27001, ISO 22301, and ISO 45001.
• 
  Experience preparing organisations for internal and external audits.
• 
  Strong contract management experience.
• 
  Experience creating policies, procedures, governance frameworks, and compliance programs.
• 
  Excellent written and verbal English communication skills.
• 
  Exceptional attention to detail and organisational skills.
• 
  Strong analytical, investigative, and problem-solving abilities.
• 
  Strong stakeholder management and reporting skills.

Preferred

• 
  ISO Lead Auditor qualification.
• 
  Compliance, governance, risk, or audit certifications.
• 
  Legal, governance, risk, audit, or security management background.
• 
  Experience supporting Australian businesses.
• 
  Experience within security services, facilities management, government, defence, aviation, healthcare, education, critical infrastructure, outsourcing, technology, or professional services sectors.
• 
  Experience managing compliance programs across multiple sites or regions.
• 
  Experience supporting certification and surveillance audits.

Key Performance Indicators (KPIs)

Compliance

• 
  100% maintenance of compliance registers and records.
• 
  Compliance reviews completed on schedule.
• 
  Regulatory updates implemented within agreed timeframes.
• 
  Compliance reporting delivered accurately and on time.

Audit Readiness

• 
  Audit-ready status maintained year-round.
• 
  Internal audits completed as scheduled.
• 
  External audit findings closed within agreed timeframes.
• 
  Corrective actions completed within SLA requirements.

Contracts

• 
  Contract database maintained at 100% accuracy.
• 
  Contract renewals tracked and actioned proactively.
• 
  Contract compliance issues identified and resolved promptly.
• 
  Contractual obligations monitored and fulfilled.

ISO Compliance

• 
  Certification requirements maintained.
• 
  Corrective actions closed within SLA.
• 
  Continuous improvement initiatives delivered quarterly.
• 
  Surveillance and certification audits successfully supported.

Security Compliance

• 
  Security audits completed within agreed schedules.
• 
  Security documentation maintained and audit-ready.
• 
  Client compliance obligations maintained at 100%.
• 
  Incident investigations completed and documented within required timeframes.
• 
  Security corrective actions closed within agreed timeframes.

Governance

• 
  Policies and SOPs reviewed and updated on schedule.
• 
  Risk register maintained and reviewed monthly.
• 
  Management reporting delivered on time and accurately.
• 
  Governance frameworks maintained and continuously improved.

Success in This Role

After 6 months, the successful candidate will have:

• 
  Built a scalable compliance management framework.
• 
  Established a fully documented governance system.
• 
  Created a central contract management process.
• 
  Maintained ongoing ISO compliance readiness.
• 
  Developed compliance dashboards and KPI reporting.
• 
  Established a structured security compliance and governance framework.
• 
  Improved audit performance and reduced compliance risk exposure.
• 
  Developed measurable compliance reporting for leadership and clients.
• 
  Successfully supported ISO certification and surveillance audits.
• 
  Ensured the business remains audit-ready at all times.
• 
  Reduced organisational risk through proactive compliance management.

Core Traits

• 
  Meticulous attention to detail.
• 
  Strong sense of ownership.
• 
  Highly organised.
• 
  Process-driven.
• 
  Proactive problem solver.
• 
  Commercially minded.
• 
  Excellent communicator.
• 
  Relentless follow-through.
• 
  High integrity and professionalism.
• 
  Ability to influence and drive compliance outcomes across the organisation.

Closing Statement

If you enjoy creating order from complexity, building world-class compliance systems, strengthening security governance, and ensuring organisations are always audit-ready, we'd love to hear from you.