490 Cyber Security jobs in the Philippines

Job Title: 
Cyber Security Analyst - L4

Req Id: 
91624

City: 
Calabanga

State/Province: 
Manila

Posting Start Date: 
9/11/25

Wipro Limited (NYSE: WIT, BSE: , NSE: WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients' most complex digital transformation needs. Leveraging our holistic portfolio of capabilities in consulting, design, engineering, and operations, we help clients realize their boldest ambitions and build future-ready, sustainable businesses. With over 230,000 employees and business partners across 65 countries, we deliver on the promise of helping our customers, colleagues, and communities thrive in an ever-changing world. For additional information, visit us at

Do

• Ensuring customer centricity by providing apt cybersecurity
• Monitoring and safeguarding the log sources and security access
• Planning for disaster recovery in the event of any security breaches
• Monitor for attacks, intrusions and unusual, unauthorized or illegal activity
• Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems
• Conduct security assessments, risk analysis and root cause analysis of security incidents
• Handling incidents escalated by the L1 team in 24x7 rotational shifts
• Use advanced analytics tools to determine emerging threat patterns and vulnerabilities
• Completing all tactical security operations tasks associated with this engagement.
• Analyses all the attacks and come up with remedial attack analysis
• Conduct detailed analysis of incidents and create reports and dashboards
• Stakeholder coordination & audit assistance
• Liaise with stakeholders in relation to cyber security issues and provide future recommendations
• Maintain an information security risk register and assist with internal and external audits relating to information security
• Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues
• Advice and guidance to employees on issues such as spam and unwanted or malicious emails

Mandatory Skills: GRC Consulting
. Experience: 5-8 Years
. Reinvent your world. We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.

Apply now

Cyber Security Analyst

Location:
Remote / Flexible (with overlap to US CST)

Department:
Security Operations

Schedule:
Monday–Friday, 8:00 AM–5:00 PM US CST (flexibility +/- 3 hours)

Salary: PHP
80,000 to 95,000/mo (paid bimonthly)

About the Role

As a
Cyber Security Analyst,
you will play a key role in supporting our Incident Response and Security Operations programs, ensuring the safety and integrity of both the company and our clients' systems. You will be responsible for monitoring, identifying, and investigating security events, responding to incidents in a timely and structured manner, and escalating issues as needed. This role requires strong analytical skills, attention to detail, and a passion for staying ahead of emerging cybersecurity threats.

Key Responsibilities:

• Develop an understanding of Marco's information systems, managed technology solutions, and security architecture.
• Monitor security solutions, tickets, and communication channels to identify and triage potential threats.
• Respond promptly to escalated incidents, perform investigations, and provide thorough post-event analyses.
• Collaborate with clients, internal teams, vendors, and legal stakeholders to manage and resolve security threats.
• Stay updated on the latest threat intelligence, security breaches, malware, and regulatory changes.
• Continuously tune, manage, and evaluate security solutions for effectiveness.
• Follow the company's incident response plan and maintain proficiency with the NIST Cybersecurity Framework (CSF).
• Document investigations, maintain accurate records, and comply with administrative procedures.
• Participate in on-call rotation and provide after-hours support when required.
• Attend team and company meetings and contribute to daily security management tasks.
• Perform additional duties as assigned in line with company policies.

Qualifications:

• Associate degree in Computer Science, Cybersecurity, Information Security, or related field preferred.
• 1+ years in information technology, cybersecurity, or related experience (or equivalent combination of education and experience).
• Certifications (preferred): Security+, CISSP, CISA, CEH, GSOC, or equivalent incident response/forensics certifications.
• Must successfully complete an employment background check (criminal and financial).
• Understanding of IT service management and security operations concepts.
• Knowledge of common security products (firewalls, EDR, SIEM, network security, PIM/PAM solutions).
• Proficiency with Microsoft Office and business collaboration tools.
• Strong organizational and time management skills with attention to detail.
• Excellent verbal and written communication skills across technical and non-technical audiences.
• Self-motivated, proactive, and able to work independently with minimal supervision.
• Integrity, professionalism, and commitment to organizational values.
• Dedication to continuous improvement and delivering high-quality results.

Work Address: MOA, Pasay

Work Set-up: Hybrid (2-4x a month on site work only)

Work Schedule: Day Shift

DUTIES and RESPONSIBILITIES:

Threat Lead Identification: Research new adversary tactics, techniques, and procedures (TTPs) using open sources (public information such as security vendor reporting, social media, code repositories); closed sources (dark web and underground forums); and proprietary sources.

Subject Matter: Threat leads should focus on team priority intelligence requirements (PIRs). Examples of such subject matter include malware developments, offensive security tools, vulnerability exploits, cloud security, and mobile security.

Key Detail Identification: During research, identify and take note of infection chains, host and network IoCs, malware samples, threat actors, and MITRE ATT&CK tactics and techniques

Author Insikt Notes: Write TTP Instances detailing identified threat leads. TTP Instances include a combination of information from open-source reporting and your own analysis (i.e. code review, static malware analysis). TTP Instances are written and formatted to help our customers understand infection chains while also helping them prepare and validate their defenses.

Cadence: Write at least 2 TTP Instance notes daily

Quality: Authored TTP Instances should include minimal grammatical or syntax

errors. Plagiarism is not acceptable.

Malware Analysis: Using sandbox environments and static analysis tools, analyze malware samples associated with threat leads.

Use Cases: Malware analysis is used to provide additional insight into an event, validate open-source reporting, uncover additional IoCs, and assist peers and customers in detection engineering

Detection Engineering: Create malware or vulnerability detections (e.g. YARA, Sigma, Snort, Nuclei) that can be used for threat hunting, detection, and classification.

Cadence: Create at least 1 malware or vulnerability detection per month

Delivery: In most cases, these detections will be delivered alongside a TTP Instance.

Information Security: Adhere to and implement company's quality and information security policies and carry out its processes and procedures accordingly.

○ Protect client supplied and generated-for-client information from unauthorized access, disclosure, modification, destruction, or interference (see also Table of Offenses)

Carry out tasks as assigned and aligned with particular processes or activities related to information security.

Report any potential or committed non-conformity, observation and/or security event or risks to immediate superior.

Required Skills:

• Strong written communication in English

• Demonstrable experience writing reports on technical subject matter (e.g. malware,

vulnerability exploits, offensive security tools) in a clear, concise, and logical format

• Disciplined time management

• Self-starting, self-motivated, and thrive in a collaborative environment

• Ability to receive and apply constructive feedback from peers and leadership

Minimum Qualifications:

• B.S. equivalent in computer science, information systems, or cyber intelligence

● Two (2) years professional experience

• Technical proficiency in Cyber Threat Intelligence and Threat Intelligence Platforms

• Experience working with open-source intelligence (OSINT) and/or large data sets

• Experience working with sandboxes, virtual machines, or other malware analysis tools

• Familiarity with the MITRE ATT&CK Framework, including the ability map reported activity to ATT&CK tactics and techniques

• Familiarity with interpreting and mapping cyberattacks to the Diamond Model of Intrusion Analysis

• Adeptness in cybersecurity and data protection

Preferred Qualifications:

• Proficiency in scripting or programming languages (PHP, C, C#, C++, Python, PowerShell, Go, JavaScript, Rust)

• Experience creating malware detections (e.g. YARA, Sigma, Snort)

• Experience creating vulnerability detections (e.g. Nuclei)

BENEFITS OFFERED:

• VL/SL credits

• Certified Great Place to Work

• Hybrid Work Set-up

• Equipment is provided (Laptop/Desktop)

• HMO coverage (2 dependents)

• Work-life Balance

• Telecommunication Allowance for Team Leaders and Up

• Competitive Salary Package

• Performance-based Bonuses (Quarterly

Job Type: Full-time

Benefits:

• Opportunities for promotion
• Promotion to permanent employee
• Work from home

Work Location: In person

Position: Data Privacy Compliance Officer

Agency Company: Argold Jobs Inc.

Deployment Area: Sheridan St., Mandaluyong City

Work Set-up: Hybrid | Full time | Permanent | Shifting Schedule

Position Overview:

The Data Privacy Compliance Officer is responsible for monitoring, assessing, and ensuring company's compliance with the Data Privacy Act of 2012, its Implementing Rules and Regulations (IRR), and other applicable data protection standards. The role supports the organization's Data Protection Officer (DPO) in implementing privacy programs, safeguarding personal and sensitive information, and ensuring that the company broadcasting, digital, and telecom operations adhere to regulatory and contractual privacy requirements.

Key Responsibilities:

- Privacy Compliance & Monitoring

- Conduct regular reviews and audits of processes involving the collection, storage, processing, and sharing of personal data.

- Ensure compliance with the National Privacy Commission (NPC) guidelines and other applicable regulations.

- Risk Assessment & Breach Responds.

- Perform privacy impact assessments (PIAs) and data protection risk analyses for IT systems, business processes, and third-party engagements.

- Assist in the detection, investigation, and reporting of personal data breaches within regulatory timelines.

- Policy Development & Implementation

- Support the drafting and enforcement of privacy policies, procedures, and standards.

- Ensure privacy requirements are integrated into IT systems, digital platforms, and operational processes.

Qualifications:

Education: Bachelor's degree in Industrial Engineering, Law, IT, Business Administration, or related field.

Experience: At least 3–5 years of experience in compliance, legal, IT audit, or data privacy.

Preferably with experience in media, broadcasting, telecom, or digital platforms.

Certifications (preferred but not required): Certified Data Protection Officer (CDPO), CIPP/E, CIPM, or equivalent.

Skills & Competencies:

- Strong knowledge of the Data Privacy Act of 2012, NPC regulations, and global privacy frameworks (e.g., GDPR).

- Analytical and detail-oriented, with strong documentation skills.

- Excellent communication, training, and stakeholder management abilities.

- Ability to handle sensitive and confidential information with discretion.

Job Type: Full-time

Education:

• Bachelor's (Preferred)

Experience:

• Data Privacy: 1 year (Required)

Location:

• Mandaluyong (Required)

Work Location: In person

Position: Data Privacy Compliance Officer

Agency Company: Argold Jobs Inc.

Deployment Area: Sheridan St., Mandaluyong City

Work Set-up: Hybrid | Full time | Permanent | Shifting Schedule

Position Overview:

The Data Privacy Compliance Officer is responsible for monitoring, assessing, and ensuring company's compliance with the Data Privacy Act of 2012, its Implementing Rules and Regulations (IRR), and other applicable data protection standards. The role supports the organization's Data Protection Officer (DPO) in implementing privacy programs, safeguarding personal and sensitive information, and ensuring that the company broadcasting, digital, and telecom operations adhere to regulatory and contractual privacy requirements.

Key Responsibilities:

- Privacy Compliance & Monitoring

- Conduct regular reviews and audits of processes involving the collection, storage, processing, and sharing of personal data.

- Ensure compliance with the National Privacy Commission (NPC) guidelines and other applicable regulations.

- Risk Assessment & Breach Responds.

- Perform privacy impact assessments (PIAs) and data protection risk analyses for IT systems, business processes, and third-party engagements.

- Assist in the detection, investigation, and reporting of personal data breaches within regulatory timelines.

- Policy Development & Implementation

- Support the drafting and enforcement of privacy policies, procedures, and standards.

- Ensure privacy requirements are integrated into IT systems, digital platforms, and operational processes.

Qualifications:

Education: Bachelor's degree in Industrial Engineering, Law, IT, Business Administration, or related field.

Experience: At least 3–5 years of experience in compliance, legal, IT audit, or data privacy.

Preferably with experience in media, broadcasting, telecom, or digital platforms.

Certifications (preferred but not required): Certified Data Protection Officer (CDPO), CIPP/E, CIPM, or equivalent.

Skills & Competencies:

- Strong knowledge of the Data Privacy Act of 2012, NPC regulations, and global privacy frameworks (e.g., GDPR).

- Analytical and detail-oriented, with strong documentation skills.

- Excellent communication, training, and stakeholder management abilities.

- Ability to handle sensitive and confidential information with discretion.

Job Type: Full-time

Education:

• Bachelor's (Preferred)

Experience:

• Data Privacy: 1 year (Required)

Location:

• Mandaluyong (Required)

Work Location: In person

Job Description:

• Provide support related to the implementation of various cybersecurity initiatives/projects;
• Liaise with Head Office & Asia Pacific Corporate Function Coordination Department (APCF) on matters related to Cybersecurity;
• Provide support in the conduct of annual Cyber Risk Assessment (CRA) & Vulnerability Assessment as required by Head Office;
• Provide support in the management, monitoring and development of antivirus software;
• Apply hardening of workstations prior to deployment to production environment;
• Provide support with regard to patch management;
• Provide support in carrying out various cybersecurity awareness training & information dissemination activities; and
• Conduct assessment regarding software/ hardware vulnerabilities.

Requirements:

• With at least 3 to 4 years work experience in cyber security;
• With knowledge in network security protocols and safety;
• Familiar with security tools and technologies, such as firewalls, intrusion detection systems, and anti-virus software;
• Familiar with Windows Server Update Services (WSUS);
• Familiar with National Institute of Standards and Technology (NIST), Information Sharing and Analysis Centers (ISAC) and other reputable sites/ institutions as sources of information concerning cybersecurity;
• Familiar with various Windows Operating Systems and Personal Computer hardware components.

Job Description:

Security Alert Triage

• Continuously monitoring security alerts generated by various security tools via SecOps and messaging apps (firewalls, intrusion detection systems, etc.)
• Analyzing alerts to determine their severity, legitimacy (potential false positives), and potential organizational impact.
• Prioritizing alerts based on a predefined risk assessment framework.

Initial Investigation

• Conducting basic investigations on prioritized alerts to gather additional context and evidence.
• Utilizing security tools and threat intelligence feeds to enrich their understanding of the incident.

Incident Classification and Reporting

• Classifying incidents based on predefined categories (e.g., phishing, malware, unauthorized access attempt).
• Documenting the incident details, including timeline, potential impact, and initial investigation findings.
• Reporting the incident to relevant internal stakeholders (security team leads, IT management).

Initial Containment

• Implementing basic containment actions based on the incident type (e.g., isolating compromised systems, disabling user accounts).
• This may involve following established playbooks or procedures for specific threats.

Job Qualifications:

Education: Bachelor's degree in computer science, Computer Engineering, Information Technology, Electronic and Communications Engineering, course with specialization in Cybersecurity, and another related course

Relevant Experience: With atleast 2 years of working experience andHas fundamental knowledge of Cybersecurity Concepts and Frameworks

Knowledge/Training: Service Management Framework, MITRE Framework, SIEM, SOAR, Network and Endpoint Security Tools

Certification/License: CompTIA Security+, Certified Blue Team, or any other Security Operations Related Certification is an advantage

Work Condition: Able to work onsite in Makati. The role will be part of a 24/7 shifting schedule.

Job Type: Full-time

Pay: Php24, Php29,000.00 per month

Benefits:

• Additional leave
• Company Christmas gift
• Company events
• Health insurance
• Life insurance
• On-site parking
• Opportunities for promotion
• Paid training
• Promotion to permanent employee

Work Location: In person

Join Our Team at Dynamic Quest – Where Innovation Meets Impact

At
Dynamic Quest
, we're passionate about delivering world-class IT solutions that help businesses thrive. As a trusted Managed Service Provider, we support a wide range of clients across industries with services that include cloud solutions, cybersecurity, managed infrastructure, and more.

We are currently seeking a
Security Analyst (Security Consultant)
to join our growing team. This is a great opportunity for a detail-oriented and solutions-driven professional who is passionate about protecting digital environments and shaping the future of IT security.

If you're a proactive security expert who values collaboration, continuous improvement, and delivering exceptional client outcomes — we want to hear from you.

Requirements:

-Deploy, configure, and administer Microsoft Entra ID and Microsoft 365 (M365) environments

• Conduct information security management reviews and Information Security Management System (ISMS) assessments

• Perform continual testing on current systems to identify potential vulnerabilities or security threats

• Ensure technical implementations are aligned with business processes and objectives

• Lead the design, implementation, operation, and maintenance of security management systems

• Participate in the creation, review, and updating of information security policies

• Provide complex technical advice, recommendations, and consulting on networks, infrastructure, and services

• Recommend and implement IT strategies, technologies, and policies to safeguard customer information and assets

• Advise on hacking tools, techniques, and advanced malware detection practices

• Formulate and support an IT security incident response strategy, including proper notification protocols

• Prepare security reports for internal and external stakeholders with clear recommendations and solutions

• Provide or support the development of implementation documentation

• Stay current on secure coding practices, cyber threats, and security trends

• Support compliance with regulatory, contractual, and client-specific security requirements

Qualifications:

- Bachelor's degree in Cybersecurity, Information Technology, or a related field (or equivalent experience)

• Proven experience in a security analyst or consultant role

• Strong knowledge of Microsoft Azure, M365, and Entra ID platforms

• Excellent communication and problem-solving skills

• Ability to work independently and collaboratively across departments and with clients

Required Certifications (must be obtained prior to employment):

• Microsoft AZ-500 – Microsoft Certified: Azure Security Engineer Associate

• Microsoft SC-100 – Microsoft Cybersecurity Architect

Job Description:

Security Alert Triage

• Continuously monitoring security alerts generated by various security tools via SecOps and messaging apps (firewalls, intrusion detection systems, etc.)
• Analyzing alerts to determine their severity, legitimacy (potential false positives), and potential organizational impact.
• Prioritizing alerts based on a predefined risk assessment framework.

Initial Investigation

• Conducting basic investigations on prioritized alerts to gather additional context and evidence.
• Utilizing security tools and threat intelligence feeds to enrich their understanding of the incident.

Incident Classification and Reporting

• Classifying incidents based on predefined categories (e.g., phishing, malware, unauthorized access attempt).
• Documenting the incident details, including timeline, potential impact, and initial investigation findings.
• Reporting the incident to relevant internal stakeholders (security team leads, IT management).

Initial Containment

• Implementing basic containment actions based on the incident type (e.g., isolating compromised systems, disabling user accounts).
• This may involve following established playbooks or procedures for specific threats.

Job Qualifications:

Education: Bachelor's degree in computer science, Computer Engineering, Information Technology, Electronic and Communications Engineering, course with specialization in Cybersecurity, and another related course

Relevant Experience: With atleast 2 years of working experience andHas fundamental knowledge of Cybersecurity Concepts and Frameworks

Knowledge/Training: Service Management Framework, MITRE Framework, SIEM, SOAR, Network and Endpoint Security Tools

Certification/License: CompTIA Security+, Certified Blue Team, or any other Security Operations Related Certification is an advantage

Work Condition: Able to work onsite in Makati. The role will be part of a 24/7 shifting schedule.