8 Cloud Security Specialist jobs in the Philippines

Conduct inventory of data processing activities and systems of the Company
- Knowledge in complying requirements and completing registration with the National Privacy Commission (NPC)
- Act as the primary point of contact within the organization for members of staff, regulators, and any relevant public bodies on issues related to data protection

**QUALIFICATIONS**:

- Minimum of 1 year experience working in data protection compliance or any related field
- Information Technology graduated or any related field
- Proficient in the use of Data Protection Software Solutions
- Can work diligently and able to discreetly handle sensitive information
- Knowledgeable on data protection law is a must (Philippine Data Privacy Act 2012)

**Salary**: Php30,000.00 - Php45,000.00 per month

Schedule:

- 8 hour shift

Ability to commute/relocate:

- San Pedro, Laguna: Reliably commute or planning to relocate before starting work (preferred)

Who we are:
br>eFlexervices is a BPO company with a legacy spanning 24 years, we've honed our craft in providing exceptional quality and building unshakable trust. At eFlex, we're not just a BPO company – we're your partners in success. Our approach is all about finding the perfect match between talent and the organizations we support. We're not just investing in our work; we're investing in people, optimizing performance, and maximizing efficiency. We are all about exceptional quality and unwavering trust. < r>
What we are looking for:

Are you ready to take your expertise to the next level? At eFlexervices, we're not just hiring a Compliance Lead / Data Protection Officer – we're empowering your talent to deliver quality and performance. Join us in shaping the success and making an impact that truly matters. < r>
The Compliance Lead / Data Protection Officer (DPO) plays a crucial role in maintaining eFlex’s adherence to various regulatory and industry standards, including SOC 2, ISO 27001, HIPAA, and GDPR. This multifaceted position involves developing and executing the company's overall compliance strategy, meticulously preparing for and coordinating external audits, and guaranteeing that all contractual and regulatory obligations are consistently fulfilled. Furthermore, the Compliance Lead / DPO is at the forefront of eFlex's privacy and data protection efforts, spearheading initiatives to safeguard sensitive information and foster a culture of data security throughout the organization. < r>
What you’ll be doing: < r>
Own the compliance strategy and ensure continuous readiness for all required frameworks.
Serve as Data Protection Officer for GDPR and oversee HIPAA privacy requirements.
Manage compliance policies, procedures, and documentation.
Coordinate with auditors and ensure all evidence is collected on time.
Oversee vendor risk management and ensure compliance clauses are in place.
Monitor regulatory changes and update internal policies accordingly.
Lead cross-department coordination for compliance initiatives.
Report compliance status to executive leadership

Qualifications and Requirements:

Bachelor’s degree in Law, IT, Business, Cybersecurity or related field. < r>3+ years in compliance, audit, privacy, or information security.
Knowledge of SOC 2, ISO 27001, HIPAA, and GDPR frameworks.
Relevant security certifications such as Security+, CISA, CRISC, CISM, CISSP
Strong organizational and communication skills.
Experience with compliance automation tools preferred.
Detail-oriented, proactive, and able to influence across departments.
Capable of handling sensitive information with discretion.
Strong analytical and problem-solving skills

Benefits and Perks:

At eFlex, we're not just a workplace – we're a community of playmakers, committed to fostering growth, learning, and personal connections. Here's what's in store for you: < r>
Living Our Values: We don't just talk the talk; we walk the walk. From learning and personal growth to caring deeply about our team and clients, our values are the compass guiding our vibrant workplace.

Competitive Compensation: Your hard work deserves recognition. Enjoy a competitive salary and benefits package, including comprehensive HMO coverage and optical reimbursements.

Flexible Work Options: Work your way! If you're outside Baguio City, embrace a permanent work-from-home setup. For those within Baguio, our hybrid work model offers the best of both worlds.

Wellness Matters: Recharge and refresh! Our flexible vacation and sick leaves empower you to prioritize your well-being, ensuring a healthy work-life balance.

Pathways to Success: Your journey with us is brimming with growth opportunities. We're dedicated to nurturing your career and supporting your rise through the ranks.

Ready to embark on an enriching journey? Join the eFlex family and experience a workplace that values your individuality and success. Let's thrive together!

**Introduction**
We are seeking a highly skilled and experienced Cloud Security Engineers to support the implementation, tuning, and maintenance of cloud security platforms (CSPM, CWPP, SSPM). This role focuses on engineering tasks, posture policy management, reporting, and platform operations.
**Your role and responsibilities**
Key Responsibilities
As a Cloud Security Engineer, you will play a crucial role in assisting in implementing, tuning, and optimizing Prisma Cloud CSPM policies across AWS, Azure, and GCP. Perform baseline and periodic posture assessments to identify configuration drift and highlight risky assets. Collect, parse, and analyze Prisma Cloud audit logs from cloud workloads to detect misconfigurations and threats. Support onboarding and configuration of the SSPM platform for key SaaS applications used by the client. Assist in defining and tuning posture policies and compliance baselines across CSPM, CWPP, and SSPM.
You'll also maintain and update SOPs, RQL templates, and operational documentation. Support monthly knowledge

**Introduction**
We are seeking a highly skilled and experienced Cloud Security Consultant who will be responsible for the governance, strategy, and advisory aspects of cloud security. The individual will drive the adoption and continuous improvement of the Cloud Security Framework while overseeing the effective use of CSPM, CWP, and SSPM platforms across AWS, Azure, and GCP.
**Your role and responsibilities**
As a Cloud Security Consultant you will play a crucial role in strategic security planning, ensuring compliance with industry regulations and frameworks, and driving continuous improvement through automation and orchestration.This encompasses managing key performance indicators (KPIs), conducting regular security exercises, and collaborating effectively with other IT and security teams to enhance overall security monitoring and response capabilities. The ideal candidate will possess a deep understanding of current and emerging cyber threats and a proven ability to lead and motivate a team in a fast-paced, high-pressure environment.
Your primary responsibilities include:
Cloud Security Management and Compliance: Define, maintain, and enhance the organization's Cloud Security Framework in alignment with regulatory (e.g., BSP, DPA) and industry (e.g., NIST, CSA) standards. Provide cloud security governance across multi-cloud platforms (AWS, Azure, GCP). Oversee baseline and periodic posture assessments and trend analysis reporting. Oversee compliance reporting activities aligned with regulatory frameworks (PCI DSS, GDPR, NIST, CIS).
Cloud Security Optimization: Lead the development, tuning, and optimization of Prisma Cloud CSPM policies for AWS, Azure, and GCP. Lead onboarding and security posture policy configuration of the SSPM platform for key SaaS apps.
Threat Intelligence and Continuous Improvement: Design detection strategies and RQL-based investigation playbooks. Oversee CWPP alert tuning and ensure alignment with the client's governance protocols. Define and regularly tune posture rules and detection logic based on evolving threats. Continuously assess policy relevance against service updates and compliance mandates.
Cross-Team Collaboration: Collaborate with engineering, SOC, and risk/compliance teams to ensure policy enforcement and incident response readiness. Provide technical guidance to engineers conducting audit log analysis, threat hunts, and RCA activities.
Incident Management and Communication: Track and report on key cloud security KPIs, metrics, and control effectiveness. Review and refine policies, standards, SOPs, and guidelines related to cloud operations. Lead knowledge

**Introduction**
We are seeking a highly skilled and experienced Cloud Security Consultant who will be responsible for the governance, strategy, and advisory aspects of cloud security. The individual will drive the adoption and continuous improvement of the Cloud Security Framework while overseeing the effective use of CSPM, CWP, and SSPM platforms across AWS, Azure, and GCP.
**Your role and responsibilities**
As a Cloud Security Consultant you will play a crucial role in strategic security planning, ensuring compliance with industry regulations and frameworks, and driving continuous improvement through automation and orchestration.This encompasses managing key performance indicators (KPIs), conducting regular security exercises, and collaborating effectively with other IT and security teams to enhance overall security monitoring and response capabilities. The ideal candidate will possess a deep understanding of current and emerging cyber threats and a proven ability to lead and motivate a team in a fast-paced, high-pressure environment.
Your primary responsibilities include:
Cloud Security Management and Compliance: Define, maintain, and enhance the organization's Cloud Security Framework in alignment with regulatory (e.g., BSP, DPA) and industry (e.g., NIST, CSA) standards. Provide cloud security governance across multi-cloud platforms (AWS, Azure, GCP). Oversee baseline and periodic posture assessments and trend analysis reporting. Oversee compliance reporting activities aligned with regulatory frameworks (PCI DSS, GDPR, NIST, CIS).
Cloud Security Optimization: Lead the development, tuning, and optimization of Prisma Cloud CSPM policies for AWS, Azure, and GCP. Lead onboarding and security posture policy configuration of the SSPM platform for key SaaS apps.
Threat Intelligence and Continuous Improvement: Design detection strategies and RQL-based investigation playbooks. Oversee CWPP alert tuning and ensure alignment with the client's governance protocols. Define and regularly tune posture rules and detection logic based on evolving threats. Continuously assess policy relevance against service updates and compliance mandates.
Cross-Team Collaboration: Collaborate with engineering, SOC, and risk/compliance teams to ensure policy enforcement and incident response readiness. Provide technical guidance to engineers conducting audit log analysis, threat hunts, and RCA activities.
Incident Management and Communication: Track and report on key cloud security KPIs, metrics, and control effectiveness. Review and refine policies, standards, SOPs, and guidelines related to cloud operations. Lead knowledge

JOB SUMMARY The Cloud Security Architect is responsible for designing, implementing, and managing the organization’s cloud security architecture. Cloud Security Architect ensures the security of cloud-based systems and data through continuous monitoring, assessment, and improvement. This specialist develops security strategies, enforces security policies, and collaborates with other IT teams to address potential vulnerabilities. The Cloud Security Architect ensures that data, applications, and infrastructure within the cloud are protected against unauthorized access, cyber threats, and other security risks. This role involves collaborating with other IT professionals, conducting security assessments, and staying updated on the latest cloud security technologies.General Responsibilities • Provide leadership in cloud architecture for both infrastructure and applications across private cloud, Microsoft Azure, Google Cloud, and AWS platforms.• Perform the functions and responsibilities of the Cloud Administration Development Manager in case the position is vacant.• Serve as the subject matter expert (SME) on Cloud Security for the organization globally.Designing and Implementing Secure Cloud Architectures • Create and enforce cloud security policies, implement appropriate security controls, and configure cloud services to align with organizational security requirements.• Identify and mitigate security risks within cloud environments.• Assess vulnerabilities and implement effective risk mitigation strategies.• Respond to security incidents and manage resolution processes.• Translate security and technical requirements into business-aligned requirements.• Communicate cloud security risks clearly to various audiences, including business leaders and engineers.• Design technical solutions with a security-first mindset, including creating prototypes and proofs of concept.• Collaborate with application developers and system administrators to deliver secure, creative solutions to complex technology challenges.Collaboration and Cross-Functional Alignment • Work with cloud engineering teams, developers, and other IT professionals to embed security into all cloud-related processes and deployments.• Participate in working groups that adapt the company’s security policies and standards for application in cloud environments.Regulatory Compliance and Documentation • Ensure adherence to applicable regulations and industry standards related to cloud computing security.• Develop and maintain security standards, policies, procedures, and best practice documentation.Continuous Learning and Trend Awareness • Stay up-to-date with the latest industry trends, emerging threats, and cloud security technologies.• Apply industry best practices to enhance the security posture of cloud environments. ACCOUNTABILITIES The Cloud Security Architect is accountable for ensuring the design, implementation, and maintenance of secure, compliant, and resilient cloud architectures across various platforms, including Azure, AWS, Google Cloud, and private cloud environments. This role is responsible for identifying and mitigating cloud security risks, enforcing cloud- specific security policies, and aligning security strategies with business goals. The Cloud Security Architect is also expected to guide cross-functional teams, respond to security incidents, and ensure adherence to industry standards and regulatory requirements. Effective risk mitigation, regulatory compliance, proactive threat detection, and strong collaboration are key outcomes of this role.Requirements • Bachelor’s or master’s degree in computer science, BS Information Technology or any related course.• At least 3 years of working experience as Cloud Architect or Cloud Engineer with proven skills in managing a Cloud Infrastructure Team, preferably in a Fintech or Financial Industry.• Above average management skill, Experience on Cloud Tools, Cloud Infrastructure Administration, Technical skills in the development cycle and operations skills for maintenance and support, Collaboration skill, Communication skills, Problem-solving skills and able to perform multi-tasking.Technical Requirements1. Cloud Platform Expertise (AWS, Azure, GCP)2. Cloud Security Principles and Threat Management3. Network Security and System Hardening4. Security Incident Handling and Response 5. Proficiency in and Scripting and Security Tools6. Systems and Infrastructure KnowledgeBenefitsHMO coverage upon hiring (with 2 free dependents upon regularization)Insurance Free lunch during onsite daysSick Leave and Vacation LeaveRice allowanceMedicine reimbursementsEducational assistance (for tenured employees)Work SetUp: Hybrid (2–3 days onsite per week)Schedule: 8:00 AM – 5:00 PM (follows local time and holidays; schedule may vary based on the Department Head/Manager’s discretion)Location: Makati City

**Introduction**
In this role you will join IBM Consulting via our world class Associate Program for university hires. As an Associate at IBM Consulting, you will have the opportunity to work with a diverse range of clients worldwide. Our clients' technical and business needs are constantly evolving. We're hiring inspired, talented individuals, who believe no problem is too big to solve.
We focus on your professional development through ongoing learning, mentorship, development of technical skills, and continuous personal growth, all grounded in a culture of coaching and career advancement. If you see yourself as someone who never stops learning and who wants to unleash your potential, the IBM Consulting Associates Program is for you.
A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe.
You'll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio, including Software and Red Hat.
Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you'll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in groundbreaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
**Your role and responsibilities**
As a Graduate Security Consultant, you'll unleash your exceptional technical prowess to gather and analyze business and technical requirements, skillfully crafting and implementing resilient Enterprise-wide Access Management processes and procedures.
As an esteemed member of our collaborative advisory team, your pivotal contribution will be crucial in establishing comprehensive security measures, ensuring the safeguarding of our clients' invaluable intellectual property and assets. Your responsibilities may encompass:
* Work as a team member with client personnel and other IBM teams to identify functional requirements and subsequently working with or in some instances leading others in the identification, justification and design of the client's solution.
* Participate in a wide range of design activities, from requirements analysis through systems, application and/or process design specification and implementation.
* Gain knowledge across multiple platforms, processes or architectures
**Required technical and professional expertise**
* Familiarity with network design, network security, authentication, authorization techniques, and encryption protocols and standards.
* Experience in one or more of the following security domains: Security Intelligence & Operations Consulting (SIOC); Data Security; Identity & Access Management, Infrastructure and Endpoint Security (IES), and/or Security Strategy Risk and Compliance (SSRC).
* Exposure to software tools such as Java, Python, C/C++, Java, Ruby, GO, Golang or bash, C#; Sharepoint; Software code Testing and Test Automation is helpful.
* Familiarity with network security tools for vulnerability scanning, network monitoring, network sniffing, routers, firewalls, Intrusion detection and protection, anomaly detection and encryption standards.
**Preferred technical and professional experience**
* Knowledge in Network Design and Security, Web or Custom Application Development, Mobile Development, Software Engineering, Identity and Authentication Technology.
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.