285 Cyber Threats jobs in the Philippines

Details:
Job Description

A Information Security Analyst, also known as a Security Incident Responder, is responsible for identifying, investigating, and responding to security incidents within an organization. Their primary role is to protect information systems and data from threats such as cyberattacks, breaches, and unauthorized access.

Key Responsibilities Include:

• Monitoring security alerts and network activity to identify potential incidents or threats.
• Investigating anomalies and determining the nature and scope of security incidents.
• Responding rapidly to security incidents, containing threats, eradicating malicious activity, and recovering affected systems.
• Conducting digital forensics and root cause analysis to understand how an incident occurred.
• Documenting incidents, actions taken, and lessons learned to improve future response efforts.
• Collaborating with IT, legal, and compliance teams to ensure proper response and reporting.
• Developing and updating incident response plans, playbooks, and security procedures.
• Staying up-to-date with the latest cyber threats, vulnerabilities, and best practices.

Cybersecurity responders play a critical frontline role in defending organizations against ever-evolving cyber threats, helping minimize damage and ensuring business continuity.

Job Requirements

Details:

• 2-3 years of proven experience in Security Incident Response within a professional environment
• Strong knowledge of major operating systems, including Windows, Linux, and macOS
• In-depth understanding of network protocols and architectures (such as TCP/IP, DNS, VPN, etc.)
• Demonstrated experience working with Security Information and Event Management (SIEM) tools (e.g., Splunk, Microsoft Sentinel)
• Hands-on expertise in incident detection, analysis, response, and recovery processes
• Ability to conduct root cause analysis and recommend appropriate remediation steps
• Must have at least one recognized security certification
• Familiarity with cybersecurity frameworks and best practices is a plus
• Excellent problem-solving skills, with the ability to work calmly and efficiently under pressure
• Willingness to work in shifting schedules, including nights, weekends, and holidays
• Strong written and verbal communication skills, with the ability to document and convey technical information clearly to various audiences

We're looking for an
Information Security Analyst (Access Provisioning)
to join our ETS Control and Governance team at MBPS. In this role, you are expected to define and maintain a standard access model for cloud resources, review and approve access requests every day within the committed SLA. You will enhance existing automation to make the review and approval task more efficient. Furthermore, you will drive remediation of deviations from the standard access model.
Position Responsibilities

• Define and communicate the standard access model for various access level to resources in the Public Cloud service.
• Own the intake channels including SNOW Process and IaC Pipelines.
• Manage access authorization for public cloud resources.
• Perform access review and approval on a daily basis with the committed SLAs.
• Develop/enhance automation for intake, review, and implementation.
• Monitor assignment of privileged roles on a daily basis.
• Discover and remediate deviations from approved access model in the existing environment.
• Maintain an exception process and tracks temporary elevation of privileges.

Required Qualifications

• University/College graduate with 2 – 4 years of progressive experience related to identity and access management, cloud security
• Proven security mindset, Knowledge and understanding of any industry standard Access Management Framework, Principal of Least Privileged Access, Just-in-Time Access, RBAC and ABAC etc.
• Possess "automation-first" mindset. Writes automation(s) to streamline common tasks, tests, and workflows.
• Knowledge of following cloud platforms and Devop tools: Azure, Terraform, Github, GitHub Actions, Python, JIRA, Confluence
• Amenable to work in UP Ayala Technohub (Quezon City)
• Amenable to work in a hybrid set-up (3x a week onsite)
• Amenable to work in a fixed NIGHT shift schedule

Preferred Qualifications

• Self-driven, able to meet objectives with a minimal amount of managerial oversight/supervision.
• A team player who can interact with various internal functions such as business unit security officers, security engineers, reliability engineers, DevOps engineers.
• Advocate constant learning from both success and failure, and encourages openness to change and continuous improvement
• Proficient in English, both verbal and written

When You Join Our Team

• We'll empower you to learn and grow the career you want.
• We'll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
• As part of our global team, we'll support you in shaping the future you want to see.

About Manulife And John Hancock
Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit

Manulife is an Equal Opportunity Employer
At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact

Working Arrangement
Hybrid

Qualifications:

• Bachelor's Degree is an advantage - (Computer Science, Information Technology or other relevant fields)
• Risk management and Information Security Management System auditing experience
• Knowledge and experience with standards such as ISO /2. ISO 22301, PCI-DSS and Data Privacy Laws
• Good understanding of Risk Assessment Frameworks
• Knowledge in Microsoft 365 automation
• With at least 2 years' experience in Information Security preferred.
• Amenable to work on shifting schedule and support across multiple sites
• Can start as soon as possible

Functions:

• Supports Information Security Management System compliance and audit activities across multiple sites
• Conducts risk assessments and analysis to identify potential vulnerabilities and ensure risk mitigation
• Manages regulatory and compliance tasks independently, not limited to guided work
• Develops and delivers Information Security Management System related training materials and awareness programs
• Drafts and disseminates internal Information Security Management System communications to relevant teams
• Coordinates closely with internal departments and external stakeholders for Information Security Management System alignment
• Handles end-to-end compliance responsibilities—from documentation and implementation to closure and report generation
• Utilizes Microsoft 365 tools for workflow automation and documentation efficiency
• Maintains strong communication with supervisors and managers on compliance matters
• Holds relevant Information Security Management System related certifications and stays updated on industry standards
• Demonstrates flexibility and willingness to work across different office locations/sites

At Transcosmos, our mission is to leverage customer insights to always be client's most trusted partner. As an Asian-originated company, our vision is to create a global society where everyone is equal and treated with respect.

Transcosmos emphasize customer-oriented approach by putting customers as our priority and value their feedback. Employee-oriented approach by working as an entity to achieve mutual organizational goals. As professionals, we work with pride, confidence and passion to fulfill responsibilities and accountabilities.

Rewarding Career

We support and encourage our people to grow in more than one dimension, to achieve all they can be both professionally and personally. As such, we provide our talents with opportunities to embrace changes, promote equal career advancement and growth, thus get rewarded.

Connected Team - We are ONE

We prioritize mutual understanding, open communication and empowerment to lead things and get everyone connected in the same page. This is manifested through sense of camaraderie, internal alignment, cooperation and collaboration across teams, territories and continents.

Intrinsic Values and Culture

We practice unique values and culture composition where local culture is prioritized and driven to immerse in global culture. It encompasses all aspects inclusive of fostering professional relationship enriched with transparent communication and mutual beliefs on gender equality, demographics, diversity and inclusion.

We're looking for an Information Security Analyst (Access Provisioning) to join our ETS Control and Governance team at MBPS. In this role, you are expected to define and maintain a standard access model for cloud resources, review and approve access requests every day within the committed SLA. You will enhance existing automation to make the review and approval task more efficient. Furthermore, you will drive remediation of deviations from the standard access model.

Position Responsibilities:

• Define and communicate the standard access model for various access level to resources in the Public Cloud service.
• Own the intake channels including SNOW Process and IaC Pipelines.
• Manage access authorization for public cloud resources.
• Perform access review and approval on a daily basis with the committed SLAs.
• Develop/enhance automation for intake, review, and implementation.
• Monitor assignment of privileged roles on a daily basis.
• Discover and remediate deviations from approved access model in the existing environment.
• Maintain an exception process and tracks temporary elevation of privileges.

Required Qualifications:

• University/College graduate with 2 – 4 years of progressive experience related to identity and access management, cloud security
• Proven security mindset, Knowledge and understanding of any industry standard Access Management Framework, Principal of Least Privileged Access, Just-in-Time Access, RBAC and ABAC etc.
• Possess "automation-first" mindset. Writes automation(s) to streamline common tasks, tests, and workflows.
• Knowledge of following cloud platforms and Devop tools: Azure, Terraform, Github, GitHub Actions, Python, JIRA, Confluence
• Amenable to work in UP Ayala Technohub (Quezon City)
• Amenable to work in a hybrid set-up (3x a week onsite)
• Amenable to work in a fixed NIGHT shift schedule

Preferred Qualifications:

• Self-driven, able to meet objectives with a minimal amount of managerial oversight/supervision.
• A team player who can interact with various internal functions such as business unit security officers, security engineers, reliability engineers, DevOps engineers.
• Advocate constant learning from both success and failure, and encourages openness to change and continuous improvement.
• Proficient in English, both verbal and written

When you join our team:

• We'll empower you to learn and grow the career you want.
• We'll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
• As part of our global team, we'll support you in shaping the future you want to see.

Ensure the confidentiality, integrity, and availability of the organization's information assets

Duties and Responsibilities

• Risk Management – govern, manage, and mitigate information assets security risks

• Policy Development – create and maintain policies, standards and procedures (Information

Security and Data Governance)

• Security Awareness Training – such as but not limited to eLearning, Phishing, Information

Security Broadcasts

• Compliance & Security Review

• Incident & Risk Acceptance Management

• Project Management for Cybersecurity Solutions

• Vulnerability Management (MSOC, ASM, Broken Links, etc.)

Job Type: Full-time

Pay: Php25, Php30,000.00 per month

Benefits:

• Paid training

Work Location: In person

Requirements

• Should have at minimum 3-year IT work experience primarily in Security Operations.
• Willing to work on Night Shift and On-call Requirement:
• 3+ years working in a multinational IT Services/IT Enabled Services industry preferably having to work in a Retail Environment.
• A solid understanding of the technical aspects of Windows, UNIX, Security Applications, security tools, and database.
• Had worked on a Security Operations Center &/or Cloud Security Operations Setup.
• Experience and in-depth knowledge in Data Loss Prevention, Cloud Application Security Broker, network security, firewalls, Intrusion prevention system.
• Knowledge of SOX, PCI & HIPAA, and other compliance regulatory requirements.
• Can work with minimal supervision with strong stakeholder management which includes Interpersonal & Communication skills. Job Description:
• Ensure security policies and standards are followed in accordance with agreed upon security solutions architecture.
• Engineering & support for Data Loss Prevention & Cloud Application Security Broker technologies.
• Drive planning & design processes to translate security and business requirements into actionable Key Information security operational procedures & update the necessary Knowledge base systems.
• Work on emails, tickets, phone calls and security events to provide our customers and peer IT groups with a high level of service.
• Dedicated eyes on glass for security monitoring and events Other Responsibilities include, but are not limited to the following:
• Support & maintenance of other Information Security tools & devices.
• Ensure that all incident reports and correlated events are mitigated.
• Ensure that the Monthly Computer Security Incident Summary Report is complete for management review
• Creation of problems, incidents, and change tickets for various applications regarding security and vulnerabilities.
• Recommend, engage in Proof-of-concept activities on Security products for addressing security requirements & gaps
• Perform and ensure that the company is compliant in Sarbanes Oxley, PCI and HIPAA standards.
• Conduct security awareness training for the company's employees.

About Philtech
Philtech is the offshore shared services hub of Albertsons Companies in the Philippines, providing innovative IT expertise, efficient Business Support, and reliable Contact Center services.

Philtech has a diverse and inclusive workforce where everyone acts as an owner. We invest in our employees' personal and professional growth. We value teamwork and camaraderie, encouraging open dialogue and healthy debate so that everyone's voice is heard. We empower our employees and continually innovate to make a positive impact on our customers' lives as well as our communities.

Philtech has adopted "Presence with a Purpose" as the new way of working. It is a hybrid work model that blends remote work with intentional time in the office to create connections, work collaboratively, and build community.

Become part of our community and start a competitive advantage in your career now

APPLY ONLINE or submit your updated CV to manila. recruitment
Hazeline Cabig T07:30:40+00:00Categories: Job Openings|

Share This Post, Choose Your Platform

FacebookLinkedInEmail

Company Profile: A global business and technology transformation partner that helps firms accelerate their dual transition to a digital and sustainable future while making tangible difference for businesses and society.

Position: Information Security Analyst

Industry: IT Company

Location: Quezon City

Schedule: Night Shift / Shifting

Salary: 60,000-120,000

Work Setup: Hybrid

BENEFITS :

• HMO
• Government Mandated Benefits
• Company Bonuses
• Yearly Salary Increase
• Fun company Activities

Job Requirements:

- Bachelor's Degree in Computer Science, Information Technology, or related fields.

- With experience as a System Analyst with knowledge of IT industry standards (ISO 27001, HIPAA, SOX).

- With background in security monitoring, networking technologies, protocols, and standards.

- With experience in network security and vulnerability management.

- Willing to work on shifting schedules.

Job Responsibilities:

- Monitor, detect, and respond to cybersecurity threats.

- Conduct threat analysis, incident response, and vulnerability assessments.

- Identify and assess risks, monitor network traffic, and handle incidents.

- Mitigate risks and resolve issues in the security stack.

- Prepare reports on security issues and provide insights on emerging InfoSec trends.

Recruitment Process (Online):

• Initial Interview
• Technical Assessment
• Final Interview
• Job Offer

Job Types: Full-time, Permanent

Pay: Php60, Php120,000.00 per month

Benefits:

• Additional leave
• Company Christmas gift
• Life insurance
• On-site parking
• Opportunities for promotion

Work Location: On the road

What will you do?

A Information Security Analyst, also known as a Security Incident Responder, is responsible for identifying, investigating, and responding to security incidents within an organization. Their primary role is to protect information systems and data from threats such as cyberattacks, breaches, and unauthorized access.

Key responsibilities include:

• Monitoring security alerts and network activity to identify potential incidents or threats.
• Investigating anomalies and determining the nature and scope of security incidents.
• Responding rapidly to security incidents, containing threats, eradicating malicious activity, and recovering affected systems.
• Conducting digital forensics and root cause analysis to understand how an incident occurred.
• Documenting incidents, actions taken, and lessons learned to improve future response efforts.
• Collaborating with IT, legal, and compliance teams to ensure proper response and reporting.
• Developing and updating incident response plans, playbooks, and security procedures.
• Staying up-to-date with the latest cyber threats, vulnerabilities, and best practices.

Cybersecurity responders play a critical frontline role in defending organizations against ever-evolving cyber threats, helping minimize damage and ensuring business continuity.

What do you need to succeed?

• 2–3 years of proven experience in Security Incident Response within a professional environment
• Strong knowledge of major operating systems, including Windows, Linux, and macOS
• In-depth understanding of network protocols and architectures (such as TCP/IP, DNS, VPN, etc.)
• Demonstrated experience working with Security Information and Event Management (SIEM) tools (e.g., Splunk, Microsoft Sentinel)
• Hands-on expertise in incident detection, analysis, response, and recovery processes
• Ability to conduct root cause analysis and recommend appropriate remediation steps
• Must have at least one recognized security certification
• Familiarity with cybersecurity frameworks and best practices is a plus
• Excellent problem-solving skills, with the ability to work calmly and efficiently under pressure
• Willingness to work in shifting schedules, including nights, weekends, and holidays
• Strong written and verbal communication skills, with the ability to document and convey technical information clearly to various audiences
• Shift flexibility and schedule adherence are required for this position.

About the Role

IS Security Analyst plays a critical role in delivering enterprise Identity and Access Management (IAM) solutions by driving the technical implementation of capabilities across Access Management, Identity Governance, and Privileged Access Management (PAM) domains.

Responsibilities

• Lead the technical implementation of IAM capabilities such as onboarding automation, multi-factor authentication (MFA) deployment, single sign-on (SSO) integration, or privileged account vaulting.
• Own configuration tasks within IAM platforms (e.g., Identity Governance & Administration (IGA), PAM tools), supporting end-to-end delivery of IAM project milestones.
• Perform identity mapping, role mining, and design of Role-Based Access Control (RBAC) or Attribute-Based Access Control (ABAC) models in collaboration with business units.
• Execute and support access certification campaigns, compile evidence for SOX or internal audits, and investigate and remediate access violations.
• Configure privileged session monitoring, establish alerting rules, and implement credential rotation and vaulting policies in alignment with security best practices.
• Participate in requirements gathering, technical documentation, and knowledge transfer to operational teams.

Qualifications

• 3-5 years of hands-on IAM experience supporting enterprise environments.
• Experience leading or owning specific IAM project components or integrations.
• Certifications that demonstrate IAM expertise, such as: Certified Identity and Access Manager (CIAM), Certified Information Systems Auditor (CISA), CISSP Associate or in-progress CISSP.

Required Skills

• Strong scripting or automation skills using: Powershell, Bash, or Python.
• Proficiency in at least one major IAM toolset, such as: SailPoint, CyberArk, Azure, AD, or Okta.

Preferred Skills

• Experience with cloud-based IAM solutions.
• Knowledge of compliance frameworks and regulations.