221 Cybersecurity Experts jobs in the Philippines

Are you ready to POWER UP your skills? Take the leap and join Concentrix's League of TOP-NOTCH TALENTS Prepare for an Extra-Ordinary Journey where you not only Collaborate with Industry Champions but also immerse yourself in an Innovative Workplace filled with Laughter, Continuous Learning, and Limitless Opportunities. Join the Leading Global Provider of CX and Tech Services and seize this moment to #JoinConcentrix

Job Summary: The CyberSecurity Analyst will be Critical in Safeguarding the Organization's Digital Asset(s) and Information against Cyber Threat(s) and Attack(s). Your expertise will be pivotal in assessing Security Risk(s), Developing and Implementing Effective Security Measure(s), and Maintaining a Vigilant Stance against Potential Breaches. Responsibilities and Expected Day-to-Day Function(s) will encompass a wide range of activities, which are all aimed at ensuring the Confidentiality, Integrity, and Availability of our System(s) and Data.

Essential Duties and Responsibilities:

• Threat Analysis and Monitoring: Identify and Analyze Potential Security Threat(s) by Monitoring Network Traffic, System Log(s), and Security Tool(s). Stay Updated on emerging Cyber Threat(s) and Vulnerabilities.
• Incident Response: Respond swiftly to Security Incident(s), Investigate Breaches, and Provide Timely Resolution. Develop Incident Response Plan(s) and Collaborate with Cross-Functional Team(s) to Mitigate and Recover from Security Breaches.
• Vulnerability Management: Conduct Regular Vulnerability Assessment(s) and Penetration Testing to Identify Weaknesses in System(s) and Application(s). Develop Strategies for Remediating Vulnerabilities and Minimizing Potential Risk(s).

Minimum Hiring Qualifications:

• Bachelor's Degree Preferred - College Level with Related Course(s) (Information Technology, Computer Science, and Computer Engineering) with 1 Year(s) Minimum Experience Required (Similar/Related Function and Environment)
• Fundamental Log Analysis and Troubleshooting Analysis Skills, Strong Understanding of Networking Protocol(s), Operating System(s), and Software Application(s), Ability to Work Collaboratively in a Team Environment and Adapt to Evolving Cyber Threat(s)
• Fundamental Knowledge of Network Security and OSI TCP/IP Industry Standard(s), Cyber Security and Information Security Landscape and Threat(s), Linux Operating System(s) Administration and Windows Server Administration
• Excellent Communication Skills to Convey Complex Security Concept(s) to both Technical and Non-Technical Audience(s)
• Technical Certification(s) in Relevant Area(s) are Considered as an Advantage - CCNA, CISSP, CISM, CompTIA Security+, CEH, Linux+, MCP, MCTS
• MUST HAVE RELIABLE INTERNET CONNECTION WITH AT LEAST 50MBPS AND A GOOD WORKING SPACE

Get Hired and Enjoy the Following:

• Interact/Collaborate and Learn from Industry Experts
• Multiple Opportunities for Learning and Development
• Enjoy a Fun - and Competitive Working Environment
• PERMANENT 'WORK-AT-HOME' ARRANGEMENT

If you want a role where your expertise
matters on Day 1

and you get to
protect real businesses from live cyberattacks

, this is it.

We are a stable group with
20+ operating companies

(including medical, pharma, and hospitality brands), and right now we urgently need a
cybersecurity expert

to contain, remediate, and strengthen our systems after a malware attack hit 5 of our websites.

This is not a "corporate checkbox" job. It's hands-on, mission-critical, and impact-driven. If you perform above expectations, your compensation and
ongoing engagement

with us will grow accordingly.

Why Work with Us

• Immediate Impact

— Your first day will involve real incident response, digital forensics, and helping contain an active malware event.

• Serious Stability

— We operate 20+ brands with long-term growth, which means steady work, new challenges, and continuous learning.

• Trusted Filipino Team

— We already have Filipino teammates who've been with us for 10+ years; loyalty, expertise, and growth are valued here.

• Leadership Opportunity

— You won't just patch holes. You'll guide security best practices, train staff, and help set up systems that prevent future breaches.

What You'll Do

Your immediate role:

• Lead incident response for a current malware attack across 5 company websites.

• Conduct forensic investigation: identify the
  attack vector

, potential
data breaches

, and assess impact.

• Contain the breach and secure sensitive information.

• Perform a full audit of web assets, including open ports, vulnerabilities, and network traffic.

• Recommend and implement tools like VPNs, static IPs, WAFs, and BDR appliances.

• Set up backup and recovery strategies to prevent repeat incidents.

• Run penetration testing, vulnerability scans, and server log analysis with automation tools.

Your ongoing role:

• Develop company-wide cybersecurity hygiene and awareness training.

• Act as a subject matter expert for our management team.

• Strengthen and monitor our systems against future threats.

What We Look For

• Incident Response Experience

— You've handled malware attacks or cyber incidents before, not just theory.

• Forensics & Tools Knowledge

— You know what tools to use for digital forensics, threat analysis, log monitoring, and recovery.

• Strategic Mindset

— You can recommend security architecture (VPN, WAF, backup appliances, etc.) and explain the "why" behind them.

• Clear Communicator

— You can guide non-technical team members and explain risks, impacts, and next steps in plain English.

How We'll Evaluate You

When applying, be prepared to answer questions such as:

• What is your incident response plan for a malware attack?

• How will you determine if sensitive data was compromised?

• Can you perform penetration testing and network traffic analysis for us?

• What tools do you use for forensic analysis and automation?

• How would you design our backup and disaster recovery plan?

How to Apply

1.Send us your
resume

+
short cover note

explaining why you're the right fit.

2.Answer this question in your application:
"If you were brought in today to contain and remediate our malware attack, what are your first 5 steps?"

3.Share your
hourly rate

and an
estimate of hours

you believe full remediation would take.

Why This Matters Now

We are currently facing an active malware attack affecting 5 company websites. This is not theory or "future planning"—we need a
skilled professional who can take the lead immediately

.

Your first mission will be
containment and recovery

. From there, you'll help us set up stronger defenses, build smarter recovery systems, and guide our team on better security practices.

This role is
impact-driven

: if you succeed, you will not only help secure our business today but also shape how we prevent and respond to threats tomorrow.

Important Note for Applicants

This is a
high-impact, high-trust role

. We are looking for a partner who:

• Is confident in
  hands-on malware remediation

• Can
  communicate clearly

with non-technical leadership

• Values both
  immediate execution

and
future prevention

If that's you, we want to hear from you today.

Qualifications:

1. Bachelor's degree in Information Technology, Computer Science, or related field (or equivalent work experience).
2. Knowledge of cybersecurity concepts, tools, and frameworks.
3. Familiarity with incident response, vulnerability management, and compliance standards.
4. Strong analytical, problem-solving, and communication skills.
5. Ability to work independently and collaboratively in a team environment.

Key Responsibilities:

1. Monitor security alerts and events to identify potential threats.
2. Conduct vulnerability assessments and help address identified risks.
3. Contribute to the development and delivery of security awareness training.
4. Assist in managing user access rights and permissions.
5. Support the implementation and maintenance of identity and access management solutions.
6. Assist in developing and maintaining security policies and procedures.
7. Help configure and fine-tune security solutions
8. Assist in ensuring compliance with cybersecurity standards, frameworks, and regulations.
9. Support the deployment of security patches for systems and applications.
10. Research and evaluate emerging security tools and solutions.

Job Duties

• Implement and maintain security controls to protect information systems.
• Conduct periodic security audits to identify vulnerabilities and ensure compliance with security policies.
• Monitor and respond to security incidents, including breaches and malware attacks.
• Develop and enforce security policies and procedures.
• Perform risk assessments and recommend mitigation strategies.
• Stay updated with the latest cybersecurity threats and trends.
• Collaborate with IT and other departments to enhance overall security posture.
• Provide training and support to staff on cybersecurity best practices.

Qualifications and Skills

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• With proven 2-4+ years of experience in cybersecurity or a related field.
• Proficiency in security tools and technologies such as firewalls, intrusion detection systems, and antivirus software.
• Strong understanding of network protocols and security architecture.
• Experience with security frameworks and standards (e.g., ISO 27001, NIST).
• Excellent problem-solving skills and attention to detail.
• Certifications such as CISSP, CISM, or CEH is an added advantage.
• Experience with cloud security (e.g., AWS, Azure).
• Knowledge of scripting languages (e.g., Python, PowerShell).

Job Type: Full-time

Pay: Php20, Php50,000.00 per month

Benefits:

• Company events
• Opportunities for promotion
• Paid training
• Promotion to permanent employee

Ability to commute/relocate:

• Alabang: Reliably commute or planning to relocate before starting work (Required)

Education:

• Bachelor's (Required)

Experience:

• Security frameworks and Standards: 1 year (Required)
• Cybersecurity Officer: 1 year (Required)

Language:

• English (Required)

License/Certification:

• Certified Information Systems Security Professional (Required)
• Certified Information Security Manager (Required)
• Certified Ethical Hacker (Required)

Willingness to travel:

• 100% (Required)

Work Location: In person

Job Description: Cybersecurity Specialist

Responsibilities:

·    Detect and respond to security incidents across the Applus company.

·    Log analysis.

·    Develop and implement preventive security measures (detection, monitoring, exploitation).

·    Develop security tools that enable the Applus security team to operate at high speed and scale.

·    Vulnerability management and mitigation.

·    Maintenance of security tools.

·    Test and evaluate security products.

·    Stay up to date with the latest developments in security and technology.

Knowledge and Skills:

·    Strong knowledge of networks and operating systems (Windows/Linux).

·    Understanding of network and system administration, virtualization, software development processes, security evaluation, and penetration testing.

·    Fluent English (spoken and written).

·    The ability to perform penetration testing and technical audits will be positively valued.

·    Ability to work in a team.

·    A responsible and motivated individual.

Required Experience:

·    Cybersecurity analyst with 2–3 years of experience in cybersecurity incident management.

·    Experience in Cybersecurity Operations environments, particularly in SOC Level 1–2, will be valued.

·    Knowledge of managing security tools such as:

·    Firewalls (FW)

·    Endpoint Detection and Response (EDR)

·    Intrusion Detection/Prevention Systems (IDS/IPS)

·    Network Access Control (NAC)

·    Mobile Device Management (MDM)

·    Security Information and Event Management (SIEM)

·    Cloud Access Security Broker (CASB)

·    Secure Email Gateway (SEG)

·    Web Application Firewall (WAF)

Experience with vulnerability analysis tools such as nmap, Nessus, Nexpose, OpenVAS, etc.

CyberSecurity Lead - Engineering - PH PDC

Date: 17 Sept 2025

Service Line / Portfolios: Engineering, AI & Data

Location:Manila, PH

Title: Cyber Senior Consultant based in Deloitte Consulting Philippines Delivery Center

Are you ready to unleash your potential?

At Deloitte, our purpose is to make an impact that matters for our clients, our people, and the communities we serve.

We believe we have a responsibility to be a force for good, and WorldImpact is our portfolio of initiatives focused on making a tangible impact on society's biggest challenges and creating a better future. We strive to advise clients on how to deliver purpose-led growth and embed more equitable, inclusive as well as sustainable business practices.

Hence, we seek talented individuals driven to excel and innovate, working together to achieve our shared goals.

We are committed to creating positive work experiences that foster a culture of respect and inclusion, where diverse perspectives are celebrated, and everyone is recognized for their contributions.

Ready to unleash your potential with us? Join the winning team now

Work you will do

Deloitte's Engineering offers help to enable organization's end-to-end journey from on-premise legacy systems to the cloud, from design through deployment, and leading to the ultimate destination—a transformed organization primed for growth.

As a Cybersecurity Lead, you will:

• Provide Level 2 to Level 3 support for our managed detection services, with a specific focus on Microsoft Sentinel and CrowdStrike.
• Engage in wide-ranging security consulting work, including security architecture and design.
• Act as a security advisor and consultant to help clients embed secure-by-design practices into their projects and systems.
• Lead the implementation of various cyber tools and controls, including the design and implementation of Data Loss Prevention (DLP) solutions.
• Conduct technical security assessments and effectively respond to security incidents.
• Utilise your excellent report writing and presentation skills to communicate findings and strategies to stakeholders.

Your role as a leader

At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We connect our purpose and shared values to identify issues as well as to make an impact that matters to our clients, people and the communities. Additionally, Senior Consultant across our Firm are expected to:

• Actively seek out developmental opportunities for growth, act as strong brand ambassadors for the firm as well as share their knowledge and experience with others.
• Respect the needs of their colleagues and build up cooperative relationships.
• Understand the goals of our internal and external stakeholder to set personal priorities as well as align their teams' work to achieve the objectives.
• Constantly challenge themselves, collaborate with others to deliver on tasks and take accountability for the results.
• Build productive relationships and communicate effectively in order to positively influence teams and other stakeholders.
• Offer insights based on a solid understanding of what makes Deloitte successful.
• Project integrity and confidence while motivating others through team collaboration as well as recognising individual strengths, differences, and contributions.
• Understand disruptive trends and promote potential opportunities for improvement.

Enough about us, let's talk about you

• Bachelor's degree in Software Engineering, Information Technology, or equivalent
• You have at least 8 years of experience in the IT Industry with 5-8 years of experience in the cybersecurity field.
• You hold a relevant Information Technology related qualification or a certification in Cyber security.
• You possess excellent report-writing and presentation skills.
• You are enthusiastic with a real drive to 'get things done'.
• Your experience ideally includes working in a Consulting/Advisory role, which could span security architecture, "secure by design" practices, or tool implementation.
• You must have experience with implementing and using Microsoft Sentinel (preferred) or CrowdStrike for security monitoring and incident response.
• Experience working in a Consulting/Advisory role is preferred.
• You have excellent communication and interpersonal skills.

What is in store for you?

• Embrace the dynamic nature of our work environment with the opportunity to work on a hybrid set-up and on a shifting schedule.
• Rewards platform – your hard work won't go unnoticed at Deloitte
• Training and development - at Deloitte we believe in investing in our best assets, the people You will have access to world class training and funding towards industry and other professional certifications.
• Receive support and mentoring to progress your career. You will have access to mentors and coaches who will help you pave a path for career progression.
• Benefits effective upon hiring including paid time off and holidays, health, and life insurance

Next Steps

Sound like the sort of role for you? .

Due to volume of applications, we regret only shortlisted candidates will be notified.

Please note that Deloitte will never reach out to you directly via messaging platforms to offer you employment opportunities or request for money or your personal information. Kindly apply for roles that you are interested in via this official Deloitte website.

2025 DCPDC Inc.

Requisition ID:

In Philippines, the services are provided by Navarro Amper & Co and other related entities in Philippines ("Deloitte in Philippines"), which are affiliates of Deloitte Southeast Asia Ltd. Deloitte Southeast Asia Ltd is a member firm of Deloitte Touche Tohmatsu Limited. Deloitte in Philippines, which is within the Deloitte Network, is the entity that is providing this Website.

Protect. Prevent. Empower. Be a Cybersecurity Governance, Risk, and Threat Analyst at Smartsourcing and keep businesses safe, compliant, and resilient.

Hi We're
Smartsourcing
and we're on the lookout for a
full-time
and
onsite Cybersecurity Engineer
. Here, we exist to protect what matters most—people, data, and trust. This role strengthens that mission by combining governance, risk management, and threat intelligence to keep businesses resilient.

Where?
JEG Tower, Archbishop Reyes, Corner Acacia St., Barangay Kamputhaw, Cebu City, 6000 Cebu

About the Role

The Cybersecurity Advocate, Risk & Threat Analyst, strengthens the organization's security culture by combining awareness training, threat analysis, and compliance oversight. This role leads purple-team exercises, manages incidents, and drives security-first behavior to reduce risk and ensure regulatory alignment.

Key Responsibilities

Maintenance of Governance Framework

• Develop, update, and assist in the enforcement of cybersecurity policies, standards, and guidelines aligned with business objectives and regulatory frameworks.
• Management of cybersecurity process workflows.

Cybersecurity Awareness & Training

• Coordinate and deliver internal communication on cybersecurity awareness, updates, critical alerts and cybersecurity posture.
• Lead cybersecurity awareness training across departments, ensuring higher participation rates.
• Facilitate phishing simulations and training feedback loops.
• Ensure communication plans are tested and aligned with organizational policies.
• Ensure communication plans and cybersecurity training programs are tested and aligned with organizational policies and compliance requirements.

Threat and Risk Management

• Advise internal stakeholders on emerging risks and proactive mitigation strategies.
• Track and manage incidents ensuring incidents have updated documentation and reporting.
• Maintain compliance rates for Keeper usage, breach watch alerts and engagement across teams.
• Provide policy enforcement and support to all Departments
• Champion secure behavior, working closely with functional team leads to embed controls in day-to-day operations.
• Supports risk identification, assessment, and mitigation tracking.
• Perform and assist internal departments in business assessments to analyse risks and opportunities through appropriate tools.

Compliance, Audit & Reporting

• Champion compliance efforts across the business
• Lead compliance checks and audit preparation aligned with ISO 27001 and other regulatory standards.
• Produce structured reports for audits, team metrics, training KPIs, and incident summaries.
• Support documentation updates related to ISMS and audit tracking.

Requirements

KNOWLEDGE & EXPERIENCE:

• Knowledge of threat detection and purple teaming concepts
• Experience in coordinating or delivering cybersecurity awareness training
• Familiarity with password management and security alert systems (e.g. Keeper)
• Working knowledge of ISO 27001 and regulatory frameworks
• Knowledge of incident management and SLA-based resolution practices
• Strong report-writing and KPI tracking experience
• Strong technical communication skills
• Solid understanding of the NIST Cybersecurity Framework
• Solid knowledge of threat intelligence and frameworks such as MITRE ATT&CK

SKILLS:

• Effective communicator, with strong written and verbal presentation skills
• Ability to lead cross-departmental training programs
• Strong understanding of threat remediation tools and techniques
• Organized, with strong attention to documentation and audit-readiness
• Comfortable leading purple-team simulations and collaboration
• Capable of interpreting metrics and adapting strategy based on findings
• Able to interact with stakeholders in cross-functional teams.
• Good team player interested in sharing knowledge and cross-training other team members and shows interest in learning new technologies and products.
• Ability to create documents of quality.

Step Into the Smartsourcing Experience

Smartsourcing was created with one mission: to change lives. We're here to ensure that businesses flourish and, just as importantly, that every member of the crew is inspired, supported, and set up to thrive. For the fourth year running, we've been recognized as one of HR Asia's Best Companies to Work For. This award isn't just a title—it's a testament to our commitment to making Smartsourcing an incredible place to build a career.

Why You'll Love Working Here

At Smartsourcing, we believe the best work comes from people who feel seen, heard, and valued. That's why we're all about fostering an environment where you can be your true self. We take pride in being certified as a Great Place to Work because we know that when you love where you work, extraordinary things happen. Here's just a glimpse of what we offer:

• Weekends are yours (we respect your time off)
• 5-day Christmas Leave (unwrap real time off)
• Healthcare from Day 1 for you and your family (because healthcare matters)
• Free lunch and barista-crafted coffee daily (we take our caffeine seriously)
• Night shift differential for evening schedules
• Subsidized gym membership and sports wellness clubs including hiking and free-diving
• Smartsourcing Exclusives (deals made just for you)
• Themed BFFs, monthly knockoffs, summer parties
• Community give-back programs and personal development workshops
• And so much more

We're not just another outsourcing company. We're building something that actually matters here – a place where good work meets good culture.

Secure your future while securing others. Apply now at Smartsourcing.

Lexmark is now a proud part of Xerox, bringing together two trusted names and decades of expertise into a bold and shared vision.

When you join us, you step into a technology ecosystem where your ideas, skills, and ambition can shape what comes next. Whether you're just starting out or leading at the highest levels, this is a place to grow, stretch, and make real impact—across industries, countries, and careers.

From engineering and product to digital services and customer experience, you'll help connect data, devices, and people in smarter, faster ways. This is meaningful, connected work—on a global stage, with the backing of a company built for the future, and a robust benefits package designed to support your growth, well-being, and life beyond work.

Responsibilities :

Responsible for analyzing network security systems (LAN/WAN, telecommunications, voice systems) and/or information systems. Safeguards the network against unauthorized modification, destruction, or disclosure. Researches, evaluates, designs, tests, recommends, communicates, and implements new security software or devices. Implements, enforces, communicates, and may develop network security policies or security plans for data, software applications, hardware, telecommunications, and computer installations.

How to Apply ?

Are you an innovator? Here is your chance to make your mark with a global technology leader. Apply now

We're hiring for Cybersecurity Managers at GECO Asia to integrate cybersecurity measures into cybersecurity infrastructure, ensuring compliance, and fostering a secure environment.

Responsibilities:

• To lead, plan, manage a staged integration process to stabilise and standardise the new JVco before full integration to cybersecurity
• To bridge cyber security, IT, and business functions, overseeing the design, implementation, and maintenance of security solutions
• To review and streamline transition and integration path to evaluate opportunities of improvement, cost rationalisation and securing growth
• To assess security vulnerabilities in transition and integration to inform risk decisions to business owners from CISCO
• To provide oversight of group cyber security metrics and manage all aspects of integration metrics

Qualifications:

• Degree in IT, computer science, engineering, systems management
• Min 5 years of relevant experience in end-to-end project management framework and methodology to manage execution of cybersecurity programs, including intake from business and IT, prioritisation, capacity and backlog management, and reporting
• Experience in Google Workspace and security stack
• Experience in Microsoft security stack including M365, SOC operatives,
• Exposure in areas such as PAM, DLP, EDR, endpoint security management, access control management, IAM, vulnerability assessment/management, network security, cloud security e.g. AWS, Azure, etc.