276 Cybersecurity Specialist jobs in the Philippines

Job Description: Cybersecurity Specialist

Responsibilities:

·    Detect and respond to security incidents across the Applus company.

·    Log analysis.

·    Develop and implement preventive security measures (detection, monitoring, exploitation).

·    Develop security tools that enable the Applus security team to operate at high speed and scale.

·    Vulnerability management and mitigation.

·    Maintenance of security tools.

·    Test and evaluate security products.

·    Stay up to date with the latest developments in security and technology.

Knowledge and Skills:

·    Strong knowledge of networks and operating systems (Windows/Linux).

·    Understanding of network and system administration, virtualization, software development processes, security evaluation, and penetration testing.

·    Fluent English (spoken and written).

·    The ability to perform penetration testing and technical audits will be positively valued.

·    Ability to work in a team.

·    A responsible and motivated individual.

Required Experience:

·    Cybersecurity analyst with 2–3 years of experience in cybersecurity incident management.

·    Experience in Cybersecurity Operations environments, particularly in SOC Level 1–2, will be valued.

·    Knowledge of managing security tools such as:

·    Firewalls (FW)

·    Endpoint Detection and Response (EDR)

·    Intrusion Detection/Prevention Systems (IDS/IPS)

·    Network Access Control (NAC)

·    Mobile Device Management (MDM)

·    Security Information and Event Management (SIEM)

·    Cloud Access Security Broker (CASB)

·    Secure Email Gateway (SEG)

·    Web Application Firewall (WAF)

Experience with vulnerability analysis tools such as nmap, Nessus, Nexpose, OpenVAS, etc.

SUMMARY

Cybersecurity Specialist performs most primary cybersecurity functions on the Security Team. These functions include reviewing and resolving standard cybersecurity-related tickets, alerts, and escalations from internal and external customers, conducting audits, and responding to incidents.

JOB RESPONSIBILITIES

• Resolve a variety of IT security-related services related to:
• Email security.

• Active directory.

• Group policy.

• Firewall security.

• Cloud services security.

• Multi-factor authentication

• Implement security-related projects.

• Cybersecurity auditing and compliance-related activities.

• Threat detection and response.

• Understand and configure encryption technologies.

• Complete IT security maintenance tasks.

• Oversee the cybersecurity of our computing assets, including all laptops (including remote maintenance) and server infrastructure.

• Maintain Security Awareness Training and Security Risk Assessment platform.

• Other duties, as assigned.

QUALIFICATIONS

• Bachelor's degree in Cybersecurity or related technical discipline is preferred.

• 5+ years of experience in an IT-related field preferred.

• Security Certification and Training are preferred.

• Must have strong documentation skills including the ability to document your work in real-time.

• Very strong communication skills.

• Strong networking knowledge.

• Good understanding of Active Directory and Group Policy.

• Strong analytical, and problem-solving skills, and situational awareness.

• Experience configuring routers/firewalls, related rules, and security services.

• Ability to prioritize, multi-task, stay organized, follow up, and complete tasks in a timely fashion.

• Polite, courteous, helpful, and friendly to customers and team members.

• Able to work collaboratively with other teams.

• Self-motivated to increase knowledge in the cybersecurity field through training, certifications, and research.

• Willing and able to obtain security certifications according to a training/education plan.

JOB REQUIREMENTS

• Should be willing to accept a long-term work-from-home arrangement.

• Should be amenable to a permanent night shift schedule.

Cyber Security Analyst

Location: Remote / Flexible (with overlap to US CST)

Department: Security Operations

Schedule: Monday–Friday, 8:00 AM–5:00 PM US CST (flexibility +/- 3 hours)

Salary: PHP80,000 to 95,000/mo (paid bimonthly)

About the Role

As a Cyber Security Analyst, you will play a key role in supporting our Incident Response and Security Operations programs, ensuring the safety and integrity of both the company and our clients' systems. You will be responsible for monitoring, identifying, and investigating security events, responding to incidents in a timely and structured manner, and escalating issues as needed. This role requires strong analytical skills, attention to detail, and a passion for staying ahead of emerging cybersecurity threats.

Key Responsibilities:

• Develop an understanding of Marco's information systems, managed technology solutions, and security architecture.
• Monitor security solutions, tickets, and communication channels to identify and triage potential threats.
• Respond promptly to escalated incidents, perform investigations, and provide thorough post-event analyses.
• Collaborate with clients, internal teams, vendors, and legal stakeholders to manage and resolve security threats.
• Stay updated on the latest threat intelligence, security breaches, malware, and regulatory changes.
• Continuously tune, manage, and evaluate security solutions for effectiveness.
• Follow the company's incident response plan and maintain proficiency with the NIST Cybersecurity Framework (CSF).
• Document investigations, maintain accurate records, and comply with administrative procedures.
• Participate in on-call rotation and provide after-hours support when required.
• Attend team and company meetings and contribute to daily security management tasks.
• Perform additional duties as assigned in line with company policies.

Qualifications:

• Associate degree in Computer Science, Cybersecurity, Information Security, or related field preferred.
• 1+ years in information technology, cybersecurity, or related experience (or equivalent combination of education and experience).
• Certifications (preferred): Security+, CISSP, CISA, CEH, GSOC, or equivalent incident response/forensics certifications.
• Understanding of IT service management and security operations concepts.
• Knowledge of common security products (firewalls, EDR, SIEM, network security, PIM/PAM solutions).
• Proficiency with Microsoft Office and business collaboration tools.
• Strong organizational and time management skills with attention to detail.
• Excellent verbal and written communication skills across technical and non-technical audiences.
• Self-motivated, proactive, and able to work independently with minimal supervision.
• Integrity, professionalism, and commitment to organizational values.
• Dedication to continuous improvement and delivering high-quality results.

Job Type: Full-time

Pay: Php80, Php95,000.00 per month

Benefits:

• Additional leave
• Health insurance
• Work from home

Application Question(s):

• Are you comfortable with the proposed salary range of ₱80,000 to ₱95,000 per month for this role? If not, please provide your salary expectation in PHP/month.

Education:

• Elementary/ Primary school (Preferred)

Experience:

• NIST Cybersecurity Framework (CSF): 1 year (Required)
• Security+, CISSP, CISA, CEH, GSOC: 1 year (Required)
• firewalls, EDR, SIEM, network security, PIM/PAM solutions): 1 year (Required)
• Microsoft Office: 1 year (Required)

Location:

• Philippines (Required)

Work Location: Remote

We have an exciting day shift, opportunity available for a Cybersecurity Consultant. Work from home or the office - you choose

When you join Yempo, you'll receive the following fantastic benefits:

• Highly competitive salary – paid weekly

• HMO enrollment on commencement

• Additional HMO dependents added each year of service

• 20 vacation days per year; 7 sick days

• Annual performance bonuses and incentives

• Annual salary reviews and increases

• Free cooked rice, snacks and hot drinks

• Company polo shirts provided

• Fantastic, bright and cheerful open-plan work environment

• Prestigious clients and highly professional and friendly co-workers

Our Client

In this role, you will be assigned to our Australian-based client, a trusted cybersecurity partner helping organizations navigate the evolving cyber landscape with confidence. They specialize in delivering unified, native security solutions that protect workforce, data, cloud, and AI environments while simplifying complexity and maximizing the value of Microsoft Security investments. By combining zero-trust principles, AI-native security, and industry security frameworks with practical experience, we empower organizations to safely and efficiently embrace AI and modern technologies. They are also committed to building lasting partnerships with their customers, enabling them to operate smarter, safer, and more resiliently in an AI-driven world.

Your Responsibilities

The primary role of a Cybersecurity Consultant is to deliver projects and has the following responsibilities:

• Be accountable for the deliverables within the Statement of Work, including implementation of security solutions

• Reviewing customer project deliverables and providing timely feedback to the project team

• Provide input and time estimation for Statements of Work

• Work as part of a team to deliver projects

• To work alongside the client PMO to determine work tasks, priorities, and schedules

• During an engagement to identify potential customer problems and suggest solutions

• Complete weekly project status reports

• Provide knowledge transfer and mentoring of customer technical staff and Secure Native colleagues as required

• Identify pre-sales opportunities during the course of the engagement that could lead to further sales

• To conduct all activities in accordance with client's policies and procedures

• Achieve assigned KPIs for your role

Your Background

The primary skills and experience required of a Cybersecurity Consultant are:

• Possess level 300 skills and implementation knowledge, and hands-on experience in all or some of the following:

• • Microsoft Azure
• • Microsoft Security
• • Microsoft Intune
• • Microsoft Purview
• • Microsoft Windows Client & Server
• • Microsoft Office 365
• • Microsoft Entra ID / Active Directory

• At least 2 years of experience delivering high-value customer projects in a technical delivery role

• At least one of Microsoft certifications SC-100, SC-200, SC-300, SC-400 or AZ-500 is preferred

• Experience authoring documentation for consumption by different stakeholder groups

• Ability to whiteboard and present technical concepts to a customer

• Familiarity and experience with Agile framework and project governance would be a plus

• Able to work autonomously and as part of a team

• Excellent collaboration skills, well-organised, flexible, proactive with a high attention to detail

• Solid documentation skills

• Strong time management skills – ability to multitask, set priorities and meet deadlines

• Great ability to build relationships with internal and external stakeholders

• Highly motivated and result-driven

Disclaimer for salary ranges. Yempo provides an indicative range of salary that we deem relevant for the advertised role. This may be adjusted for the skills and experience of the selected candidate.

Qualifications:

• Minimum of 7 years' prior professional experience of data protection either in a risk management or compliance capacity
• Appreciation for data protection principles and application of controls to protection of confidential and personal data
• Experience in operational data protection processes, including Privacy Impact Assessment (PIA), Records of Processing Activities (ROPA), Incident Management and Data Subject Requests (DSR)
• Experience in delivery of project solutions to enable monitoring and testing of compliance
• Advanced MS office knowledge (Word, Excel, PowerPoint)
• Strong research and communications skills
• Breach management
• Local compliance

Work Location: Mckinley West, Taguig City

Work Setup: Hybrid (2 days RTO per week)

Work Schedule: Dayshift Schedule

Job Type: Full-time

Pay: Up to Php130,000.00 per month

Work Location: In person

JOB SUMMARY:

Under the direct supervision of the Data Privacy Officer, performs activities of the IT Compliance Testing and Validation Department related to the implementation of the Bank's Compliance Program and adherence by IT and Information Security Units to regulatory requirements and/or standards in the performance of business or functions, as the case may be.

JOB DESCRIPTION

A. IT Compliance Program / Plan

Provides assistance to the Department Head (DH) in the:

1. preparation and updating of the Bank's IT Compliance Testing Plan;
2. identification of relevant banking laws, rules, regulations, policies and ethical standards on banking operations and identification and analysis of corresponding compliance risks; and
3. supervision of the coordination with various units concerned in the implementation of the IT Compliance Program, particularly the IT Compliance Testing Plan.

B. Communication & Training

As may be required, assists the DH in the preparation of training materials on the Bank's IT Compliance Program, Compliance Testing Methodology, among others and/or conducts lectures on the same.

C. Constructive Working Relationship with Regulatory Agencies

As may be required., assists the DH in coordinating with IT and Information Security Units with regards to documentary and other examination requirements during regular BSP and other regulatory examinations.

D. IT Compliance Testing, Monitoring & Assessment

1. Compliance Testing, Controls and Monitoring
2. Conduct independent compliance testing of IT and Information Security Units relating to banking laws, rules and regulations; maintains working papers/documentation of findings and prepares corresponding comment sheets
3. Coordinate with the Unit Management regarding findings/exceptions noted in order for the Unit to respond and/or take appropriate course of action;
4. Discuss with Unit Management significant issues as a result of the independent compliance testing, explain attendant compliance risks and secures actions to be taken including specific time table on noted exceptions/observations;
5. Prepares draft report for endorsement to and review of the DH and assists the DH in preparation of report of results to the Corporate Governance Committee;
6. Monitors the status of remedial plans taken on issues arising from Independent Testing and the preparation of updates to the Corporate Governance Committee for review of the DH;
7. Supervises/Assists the Compliance Analysts in the conduct of other compliance testing (head office or branch units), and participates in the discussion of the significant issues noted in the ICT; and
8. Supervises/Assists the preparation of ICT reports and reviews the reports prepared by other units' Compliance Analysts.

E. Reporting

Prepares summary reports and presentation materials for Corporate Governance Committee and other Bank committees as needed;

F. Administration

Assists the DH in the preparation of IT Compliance Testing and Validation Department Annual Business Plan, IT Annual Accomplishment Report and Annual Training Plan for approval of the Chief Compliance Officer;

G. Others

1. Promotes best practice and ethical standards.
2. Performs other tasks that may be assigned from time to time.

The Data Privacy Officer (DPO) will oversee the organization's compliance with data privacy laws and regulations, ensuring the protection of personal data across all company functions. This role serves as the primary point of contact for data privacy matters, ensuring the company adheres to the Data Privacy Act and other relevant regulations, while fostering a culture of privacy awareness throughout the organization.

Key Responsibilities:

• Ensure full compliance with data protection laws (e.g., Data Privacy Act, NPC regulations) and act as the liaison with the NPC.
• Develop and implement privacy documents, including manuals, notices, consent forms, and impact assessments.
• Create and enforce internal privacy policies and guidelines for consistent data handling across the organization.
• Collaborate with IT, HR, marketing, and operations to align data processes with privacy regulations and best practices.
• Conduct regular training, manage privacy risk assessments, lead data breach responses, and handle data subject requests.

Qualifications:

• Bachelor's Degree in Law, IT, Business Administration, or a related field (JD or legal background preferred but not required).
• At least 2–4 years of experience in data privacy, legal compliance, or IT security; preferably with exposure to e-commerce, retail, or FMCG sectors.
• Strong working knowledge of the Data Privacy Act of 2012, NPC Circulars, and global best practices (e.g., GDPR is a plus).
• Demonstrated ability to draft legal or policy documentation (e.g., manuals, notices, data-sharing agreements).
• Strong analytical, communication, and training skills.

Job Type: Full-time

Work Location: In person

Department
Corporate Legal 1

Employee Type
Probationary

WHAT IS THE JOB LIKE?

• Ensure that the organizations being managed and handled collect, process, store, share, & discard/return the personal data of all data subjects in compliance with the applicable data privacy & protection laws and regulations .
• Serve as a the primary liaison officer of the organization and represent them before the the National Privacy Commission (NPC) and any other relevant government agencies.
• Implement a privacy by design approache in the organizations aligned with laws, regulations and their actual operations.
• Monitor and implement data privacy policies, controls and measures, document issues, file and register with the NPC and relevant government units, and coordinate/collaborate with other groups as necessary within the organization.
• Monitor and stay updated with current privacy trends, legislation and activities.
• Ensure proper data breach and security incident management by the organizations, PIC or PIP, including the latter's preparation and submission to the NPC of reports and other documentation concerning security incidents or data breaches within the prescribed periods.
• Inform and cultivate awareness on privacy and data protection within the organizations, including all relevant laws, rules and regulations and issuances of the NPC;
• Perform other duties and tasks that may be assigned by the organizations that will further the interest of data privacy, security within the company, and uphold the rights of the data subjects.

Experience Range Range (Years)
5 - 10 years

Job posted on

Duties & Responsibilities

• Responsible for overseeing the organization's data privacy
• Authorized on data protection matters, safeguarding the rights of data subjects, ensuring organizational accountability, and building a culture of privacy and security across all levels of the organization.
• Formulate, implement, and maintain privacy policies, procedures and governance frameworks

Job Specifications

• Bachelor's degree in Law, Information Technology, Business Administration, or related field. A Master's Degree of Certifications in Data Privacy is an advantage
• Must have at least 2-5 years of relevant work experience on data privacy, compliance, information security, legal, or risk management, or corporate governance
• Strong analytical, investigative, and problem-solving abilities
• Ability to develop and implement policies, frameworks, and training programs