20 Firewalls jobs in the Philippines

We are Hiring for IT Cloud Security Engineering | Earn up to Php 100,000 + Peripherals Provided | Online Process Only
br>- At least 2-5 years’ experience as Security Engineer < r>- Salary is range Php 80,000-100,000 (Negotiable)
- Bachelor’s degree in IT or any related field < r>- Metro Manila (Quezon City)
- Hybrid/ WFH Setup
- Full-time / Regular Schedule

Benefits package:
• Dental, < r>• iscellaneous allowance, < r>• M dical < r>• M ndated Benefits package < r>• I surances < r>• F exible work Arrangement < r>


Job Descriptions:
• R sponsible for designing, building and protecting enterprise systems application, data and infrastructure. < r>• S feguard company information, infrastructures, application and business processes for potential cyber threats. < r>• I plement possible and security practices through technology solutions. < r>
Job Requirements:
• B chelors in any Information Technology related courses. < r>• E perience at least 2-5 years’ experience as Security Engineer



Recruitment Process:
Online process Only!

Responsibilities

Involve in Red Team activities:

• Perform penetration testing of Web and Mobile (iOS, Android, Windows and Mac) applications
• Own the vulnerability management lifecycle from identification, remediation to reporting
• Active monitoring and detection of operational security risks in the organization
• Conduct technical investigations on security incidents and tools
• Liaise directly with users on security enquiries and concerns during Pre-sales and Support

Conduct engagement with the Blue Team for the following:

• Work with engineering and DevOps teams to implement security best practices
• Implement and improve workflows to automate vulnerability detection as part of the software development lifecycle
• Review risks and patches of software components used in the applications
• Facilitate threat modelling as part of the software development lifecycle
• Help in security awareness training
• Help in implementing the needed controls for different certification bodies such as ISO 27001 and SOC Type 2

Qualifications

• At least 5 years of experience in application security testing and assessments
• Solid understanding of cybersecurity principles, standards and protocols such as OWASP Top 10 and SANS Critical Security Controls
• Experience with application security tools as Burpsuite, OWASP ZAP, Metasploit, Sonarqube (experience with Ghidra or IDA is a plus)
• Experience with programming languages such as Java, JavaScript, C/C++
• Experience with scripting languages such as bash or Powershell
• Experience and knowledge of cloud solutions and architectures such as AWS
• Experience and knowledge of Security information and event management (SIEM) technologies
• Good analytical skills
• Strong sense of ownership
• Technical and industry certifications such as CISA, CISM, CISSP are a plus

Others:

• This is for a hybrid work setup.
• Successful completion of background check and NBI clearance will be required.

COMPANY PROFILE: Develop significant traveler supplier ties outside of the United States. Known as one of the country's top travel companies.
br>Position: Information Security Engineer
Company Industry: Travel Industry
Work Location: Makati Site, QC, Alabang, Cebu, and Bacolod
Work Schedule: Flexible Schedule, Rotational Shift
Salary: Php 40,000-60,000
Work Set Up: Onsite/Hybrid

JOB REQUIREMENTS:
• Bachelor’s degree in Computer Science, Information Technology, or related fields.
• W th strong verbal and written communication skills, with technical writing experience. < r>• W th relevant certifications is advantage (e.g., CompTIA Security+, GSEC, CEH, CISSP, etc.) < r>• E perience in cloud, network, server and database security < r>
JOB RESPONSIBILITIES:
• O ersee the establishment, dissemination, and regular revisions to CTPI's information security policy. < r>• E sure policies are consistent with developing threats, industry best practices, and standards such as ISO 27001 and SOC 2. < r>• W rk with subject matter experts (SMEs) to identify vulnerabilities in networks, hardware, software, and procedures. < r>• P ovide security solutions and guidance for system and software development in accordance with ISDP policies. < r>• P ovide Level 1 cybersecurity incident response (CIRT), including threat analysis and security event evaluations. < r>• M ke recommendations regarding incident management and mitigation. < r>• P epare and present cybersecurity reports to management. < r>• S ay current on industry developments, technology, and processes to consistently strengthen CTPI's security posture. < r>
RECRUITMENT PROCESS: (ONLINE)
Initial Interview
Technical Assessment
Final Interview
Job offer

**Introduction**
We are seeking a highly skilled and experienced Cloud Security Engineers to support the implementation, tuning, and maintenance of cloud security platforms (CSPM, CWPP, SSPM). This role focuses on engineering tasks, posture policy management, reporting, and platform operations.
**Your role and responsibilities**
Key Responsibilities
As a Cloud Security Engineer, you will play a crucial role in assisting in implementing, tuning, and optimizing Prisma Cloud CSPM policies across AWS, Azure, and GCP. Perform baseline and periodic posture assessments to identify configuration drift and highlight risky assets. Collect, parse, and analyze Prisma Cloud audit logs from cloud workloads to detect misconfigurations and threats. Support onboarding and configuration of the SSPM platform for key SaaS applications used by the client. Assist in defining and tuning posture policies and compliance baselines across CSPM, CWPP, and SSPM.
You'll also maintain and update SOPs, RQL templates, and operational documentation. Support monthly knowledge transfer sessions and cloud security framework awareness activities. Administer and monitor CSPM (Cloud Security Posture Management), CWP (Cloud Workload Protection), and SSPM (SaaS Security Posture Management) platforms. Perform cloud misconfiguration analysis, vulnerability detection, and incident triage from cloud-native and third-party security tools.
You will be responsible in automating policy enforcement and remediation scripts in coordination with DevOps/CloudOps. Integrate tools into SIEM, SOAR, ITSM, and CI/CD pipelines as required. Participate in onboarding cloud accounts/projects into security tooling and ensure correct tagging, coverage, and visibility. Provide operational metrics, dashboards, and reporting to stakeholders. Collaborate with cloud architects and app teams to provide security reviews and technical remediation guidance. Assist in the implementation of SOPs for platform and incident management of CSPM/CWP/SSPM. Ensure CSPM alert integration into the client's SIEM and ITSM systems, mapped to SOC workflows.
**Required technical and professional expertise**
Technical Requirements:
* 5+ years in cloud security consulting, architecture, or posture management.
* Proven and extensive experience with Prisma Cloud (CSPM/CWPP) and SSPM platforms.
* Hands-on experience integrating alerts into SIEM/SOAR tools like Google SecOps.
* Familiar with cloud-native and hybrid environment architecture in AWS, Azure, or GCP
* Familiar with compliance frameworks: NIST CSF, CIS, GDPR, PCI DSS.
* Experience integrating alerts and posture signals into SIEM/ITSM (e.g., Chronicle, Splunk, ServiceNow)
Soft Skills:
* Strong analytical and problem-solving abilities with keen attention to detail.
* Excellent communication and collaboration skills, with the ability to interact effectively with stakeholders at all levels.
* Capable of managing multiple priorities in a fast-paced, dynamic environment.
**Preferred technical and professional experience**
Certifications: CCSP, GCSA, CISSP, CRISC, CISA, AWS/Azure/GCP Security Specialty ( or any cloud platform-specific certs), Prisma Cloud Certification (e.g., Palo Alto Networks Certified Cloud Security Engineer-PCCSE), Google Cybersecurity Professional Certificate or SIEM-specific trainings (e.g., Chronicle)
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

Tech Security Engineer – GRC
₱150K MAX | BGC, Taguig | Hybrid (3 days on-site) | Shifting Schedule br>
Professional Certification & Licenses
-- Preferred: ISO27001 Lead Implementer/Lead Auditor, ISO31000 Risk Manager, CISSP, CISM, CRISC, or CISA
-- At least 4+ years’ experience in cybersecurity governance, risk management, and compliance < r>
Work Experience
-- Solid understanding of cybersecurity principles and risk management methodologies
-- Strong grasp of security frameworks and standards (ISO 27001, NIST, CIS, OWASP, GDPR, PCI-DSS)
-- Proficiency with GRC management and compliance tracking tools
-- Experience in audit processes and regulatory compliance
-- In-depth knowledge of security configurations, controls, protocols, encryption, and access controls
-- Familiarity with best practices in data security

Tech Security Engineer – VAPT
₱150K MAX | BGC, Taguig | Hybrid (3 days on-site) | Shifting Schedule br>
Work Experience
-- Minimum 5 years in a VAPT role or similar
-- Advanced penetration testing and bypassing security controls
-- Experience in reverse engineering, exploitation, malware analysis, threat emulation, persistence, and lateral movement
-- Hands-on expertise in exploitation techniques, tools, and processes
-- Strong analytical and problem-solving skills
-- Excellent communication and collaboration abilities

Are you insatiably curious and do you lean into uncertainty, take risks, and learn quickly from? Are you passionate about cybersecurity?Do you enjoy working on a high-performing, fast-paced sales team?Are you insatiably curious and do you lean into uncertainty, take risks, and learn quickly from your mistakes? Are you ready to join the team that is at the leading edge of innovation at Microsoft? If so, we are looking for you?
The Microsoft Security organization's mission of making the world a safer place has never been more important. As threats become more frequent and sophisticated, we must work to keep our customers safe through our Security Solutions. The Solution Specialist Unit team within the Microsoft Security organization is at the forefront of this effort, engaging directly with customers to contribute to their success. As the largest security company in the world, we are ideally placed to think outside the box to help our customers make the world a safer place.
As a Security Security Engineer, you will be a senior technical sales leader and trusted customer advisor, working with cutting-edge security technologies such as Microsoft Defender for XDR and Sentinel. You will lead a v-team of other internal, partner and consulting resources to help map Microsoft solutions to customer security challenges and priorities, demonstrate and prove our solutions, and win the technical decision enabling the team to achieve/exceed quarterly and annual revenue targets. You will help solve complex security challenges for our customers, enabling them to help modernize their security architecture and posture.
Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
**Responsibilities**
+ Primary technical point of contact for potential customers during the sales process, owing and driving technical win for security opportunities
+ Deep technical understanding of cloud security architectures, solutions/technologies including Microsoft M365 Defender, Defender for cloud and Sentinel and expertise in extended detection and response (XDR), zero trust and cloud security solutions and architectures
+ Remediate blockers; leads and ensures technical wins for Microsoft Security and adjacent technologies. Engages with and reaches out to customers proactively and independently; builds credibility with customers as a trusted advisor for Microsoft Security; and searches for and uses Microsoft Security customer references; and facilitates handoff to customer success for post sales deployment.
+ Develop strategies and recommendations to improve the client's security posture, shapes technical win plan and tailors Microsoft messaging to audience for security opportunities. Enhances team capabilities for extended detection and response (XDR), zero trust and cloud security and develops differentiated compete strategies for Microsoft Security for assigned customers.
+ Lead technical presentations, demonstrations, workshops, architecture design sessions, explain, demonstrate, and architect the solution to help solve customer security challenges and priorities.
+ Drives cross-workload support for Microsoft solutions for security. Leverages insights and coaches' teams to align new or changing technology to customer security needs.
+ Responsible for engaging with other teams within and outside the organization throughout the sales cycle. Engaging partners in sell-with scenarios and supporting their technical capabilities is key to scaling solution delivery.
**Qualifications**
**Required Qualifications (RQs)**
+ 5+ years technical pre-sales or technical consulting experience
+ OR Bachelor's Degree in Computer Science, Information Technology, or related field AND 4+ years technical pre-sales or technical consulting experience
+ OR Master's Degree in Computer Science, Information Technology, or related field AND 3+ years technical pre-sales or technical consulting experience
+ OR equivalent experience
**Preferred Qualifications (PQs)**
+ 6+ years technical pre-sales, technical consulting, or technology delivery, or related experience
+ OR equivalent experience.
+ 4+ years experience with cloud and hybrid, or on premises infrastructures, architecture designs, migrations, industry standards, and/or technology management.
+ Certification in relevant technologies or disciplines (e.g., Office 365, Power BI, Azure Architect and Development exams, Cloud Platform Technologies, Information Security, Architecture).
+ 7+ years of technical pre-sales, technical consulting, or related experience
+ Cloud Computing: Infrastructure as a Service (IaaS), Platform as a Services (PaaS), and Software as a service and understanding of one or more cloud security standards and frameworks such as CIS, NIST, CSA, etc.,
+ Experience and passion for learning (technical and professional skills); implementing practices from others; trying, failing, and learning from both successes and failures; sharing practices and knowledge for others' benefit
+ Certification in Microsoft 365 Security Administration or Azure Security
+ One or more of Industry certifications such as CISSP, CCSP, IAAP, etc. Is preferred
+ Security Information and Event Management (SIEM) systems; Next Gen Web Application Firewalls and Secure Web Gateways; Threat detection technologies; Log analysis and Incident Response; Cloud security technologies, architectures and concepts such as Zero Trust, cloud security posture management, cloud workload protection, Cloud code security and Cloud infrastructure entitlement management
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start **Caring. Connecting. Growing together.**
**Primary Responsibilities:**
+ Analyze, remediate, and approve firewall rules/policies in accordance with enterprise established standards and compliance requirements.
+ Making critical decisions on enterprise security policies
+ Utilizing the security monitoring tools to support audits (Ex: AlgoSec)
+ Reporting and reviewing the compliance status and taking remediation actions
+ Determine the severity and complexity of issues pertaining to the security and protection of systems data, (autonomously or as part of a team) to ensure the protections, conservation and accountability of proprietary, personal, or privileged electronic data
+ Collaborate with director, managers, and other technical personnel to ensure mitigation of security risks pertaining to the company
+ Defines, implements, audits, and maintains firewall security policies
+ Promote the development of innovative approaches and solutions to complex problems and issues
+ Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so
**Required Qualifications:**
+ 7+ years of Palo Alto Firewall experience
+ 5+ years of Cloud Security experience
+ 5+ years of Security Architect experience
+ 5+ years of Firewall rule/policy compliance and governance experience
+ 5+ years of Firewall rule analysis and remediation experience
+ Proven communication skills for team and customer engagement
+ Proven team player
**Preferred Qualifications:**
+ Splunk experience
+ AlgoSec experience
+ Proven leadership skills
**Other Requirements**
+ Needs to work 40+ hours per week
+ Required shift will be 8-5 CST
+ Needs to meet RTO requirements
_At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission._
_Optum is a drug-free workplace. © 2025 Optum Global Solutions (Philippines) Inc. All rights reserved._

_We are looking for_ **_Application Security Engineer (Threat Modeling)_** _who will be directly reporting to the Manulife ETS Cyber Assessment Application Security Team. Our group is consisting of highly motivated and experienced professionals and is composed of members located across different Manulife locations such as Manila and North America. As part of the ETS Global Cyber Security, we are responsible for the practice of identifying, classifying, monitoring, remediating and/or mitigating security vulnerabilities on applications, network and APIs across the organization._
_Have the skills and experience for the job? Learn more about it below!_
**Position Responsibilities:**
+ **Strategic Cybersecurity** : Contribute to the strategic guidance on the design of cybersecurity measures for complex systems and networks, incorporating product security strategies such as design principles and security architecture.
+ **Security Review** : Perform and coordinate in-depth security reviews, pinpoint potential vulnerabilities, and suggest all-encompassing remediation strategies by utilizing threat modeling methodologies and threat assessment frameworks.
+ **Security Insights** : Provide sound analysis on the security implications of introducing new systems or interfaces within our ecosystem, based on application security best practices, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA) implementation.
+ **Security Architecture Evaluation** : Assess proposed security architectures and designs to ensure they are equipped to meet both current and future security needs. This involves reviewing data flow diagrams for applications/system architectures and identifying potential threats as part of the threat modeling process.
**Required Qualifications:**
+ University/College graduate with at least 2 years of experience related to Application Security and Threat Modeling.
+ Must have background in application development / technology management.
+ Good experience in application security architecture.
+ Comprehensive understanding of security principles and their business implications.
+ Broad knowledge of networking concepts.
+ Good background in secure software development methodologies
+ Familiarity with various application security testing approaches and implementation.
+ Understanding of penetration testing concepts.
+ **_Amenable to work UP Ayala Technohub (Quezon City)_**
+ **_Amenable to work on a hybrid set-up (3x a week onsite)_**
+ **_Amenable to work on a fixed late mid shift / night shift schedule_**
**Must Have / Preferred Qualifications:**
+ Knowledge of industry trends, regulatory requirements, and their impact on security architecture.
+ Advocate constant learning from both success and failure, and encourages openness to change and continuous improvement.
+ Recognizable organizational and problem-solving abilities that enable you to manage through creative abrasion.
+ Proven stakeholder management skills and able to effectively articulate risk posture, technical vision, possibilities, and outcomes through strong verbal and written communication.
+ Self-driven, able to meet objectives with a minimal amount of managerial oversight/supervision.
**When you join our team:**
+ We'll empower you to learn and grow the career you want.
+ We'll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
+ As part of our global team, we'll support you in shaping the future you want to see.
**Acerca de Manulife y John Hancock**
Manulife Financial Corporation es un importante proveedor internacional de servicios financieros que ayuda a las personas a tomar decisiones de una manera más fácil y a vivir mejor. Para obtener más información acerca de nosotros, visite .
**Manulife es un empleador que ofrece igualdad de oportunidades**
En Manulife/John Hancock, valoramos nuestra diversidad. Nos esforzamos por atraer, formar y retener una fuerza laboral tan diversa como los clientes a los que prestamos servicios, y para fomentar un entorno laboral inclusivo en el que se aprovechen las fortalezas de las culturas y las personas. Estamos comprometidos con la equidad en las contrataciones, la retención de talento, el ascenso y la remuneración, y administramos todas nuestras prácticas y programas sin discriminación por motivos de raza, ascendencia, lugar de origen, color, origen étnico, ciudadanía, religión o creencias religiosas, credo, sexo (incluyendo el embarazo y las afecciones relacionadas con este), orientación sexual, características genéticas, condición de veterano, identidad de género, expresión de género, edad, estado civil, estatus familiar, discapacidad, o cualquier otro aspecto protegido por la ley vigente.
Nuestra prioridad es eliminar las barreras para garantizar la igualdad de acceso al empleo. Un representante de Recursos Humanos trabajará con los solicitantes que requieran una adaptación razonable durante el proceso de solicitud. Toda la información que se haya compartido durante el proceso de solicitud de adaptación se almacenará y utilizará de manera congruente con las leyes y las políticas de Manulife/John Hancock correspondientes. Para solicitar una adaptación razonable en el proceso de solicitud, envíenos un mensaje a .
**Modalidades de Trabajo**
Híbrido