132 Identity And Access Management Expert jobs in the Philippines

GENERAL RESPONSIBILITIES

* Process user access requests, changes, and terminations across business applications, Active Directory, and Keycloak

* Maintain access logs and ensure all actions are properly documented for audit and compliance purposes.

* Ensure role-based access control (RBAC) is consistently applied across systems

* Conduct periodic access reviews and assist with internal and external audits

* Coordinate with HR, IT, and department heads to ensure timely and accurate provisioning/deprovisioning of user accounts

* Troubleshoot access-related issues and provide support to end-users

* Assist in maintaining and improving UAM-related policies, procedures, and documentation}

* Monitor adherence to the least privilege and segregation of duties principles

* Generate and analyze access reports to identify anomalies or risks

MINIMUM REQUIREMENTS

Education: Minimum of Bachelor's degree in Computer Science or related field, or equivalent.

Related Work Experience:

• Preferably 1-2 years of security administration experience in support of IT products or User account management and working knowledge of large IT organization operations.

• Minimum 2 years of hands-on experience with Active Directory Account Provisioning/De-provisioning. 

Knowledge (knowledgeable in the following):

|
• Knowledge of latest trends in information security, procedures, methodologies, and best practices

• Knowledge on O365 and its functionalities

Skills:

• Good understanding between on-premise and cloud environment.

• Good understanding of ITIL processes and ITSM tools.

• Working knowledge of ticketing system

• Ability to effectively work with customers and management personnel on all levels, business areas and across cultures

• Should have good verbal and oral communication

• Should be Quality Conscious

• Attention to details and accuracy is required

• Ability to work positively and collaborate with team members to achieve maximum team throughput

Other Job Requirements:
• Should be willing to work in rotational shifts (including night shift)

DUTIES AND RESPONSIBILITIES

• Assist users with troubleshooting user access issues, while maintaining the necessary approval and documentation requirements

• Collaborate and coordinate with Information Technology Department as UAM subject matter expert as part of the Technical Working Committee

• Manage all aspects of user access lifecycle, including user creation, account modification, deactivation, and reactivation

• Ensure that all request related to user access are processed in accordance to role and function based on approved access matrix and completed within the agreed service level agreement

GENERAL RESPONSIBILITIES

* Process user access requests, changes, and terminations across business applications, Active Directory, and Keycloak

* Maintain access logs and ensure all actions are properly documented for audit and compliance purposes.

* Ensure role-based access control (RBAC) is consistently applied across systems

* Conduct periodic access reviews and assist with internal and external audits

* Coordinate with HR, IT, and department heads to ensure timely and accurate provisioning/deprovisioning of user accounts

* Troubleshoot access-related issues and provide support to end-users

* Assist in maintaining and improving UAM-related policies, procedures, and documentation}

* Monitor adherence to the least privilege and segregation of duties principles

* Generate and analyze access reports to identify anomalies or risks

MINIMUM REQUIREMENTS

Education: Minimum of Bachelor's degree in Computer Science or related field, or equivalent.

Related Work Experience:

• Preferably 1-2 years of security administration experience in support of IT products or User account management and working knowledge of large IT organization operations.

• Minimum 2 years of hands-on experience with Active Directory Account Provisioning/De-provisioning. 

Knowledge (knowledgeable in the following):

|
• Knowledge of latest trends in information security, procedures, methodologies, and best practices

• Knowledge on O365 and its functionalities

Skills:

• Good understanding between on-premise and cloud environment.

• Good understanding of ITIL processes and ITSM tools.

• Working knowledge of ticketing system

• Ability to effectively work with customers and management personnel on all levels, business areas and across cultures

• Should have good verbal and oral communication

• Should be Quality Conscious

• Attention to details and accuracy is required

• Ability to work positively and collaborate with team members to achieve maximum team throughput

Other Job Requirements:
• Should be willing to work in rotational shifts (including night shift)

DUTIES AND RESPONSIBILITIES

• Assist users with troubleshooting user access issues, while maintaining the necessary approval and documentation requirements

• Collaborate and coordinate with Information Technology Department as UAM subject matter expert as part of the Technical Working Committee

• Manage all aspects of user access lifecycle, including user creation, account modification, deactivation, and reactivation

• Ensure that all request related to user access are processed in accordance to role and function based on approved access matrix and completed within the agreed service level agreement

GENERAL RESPONSIBILITIES

* Process user access requests, changes, and terminations across business applications, Active Directory, and Keycloak

* Maintain access logs and ensure all actions are properly documented for audit and compliance purposes.

* Ensure role-based access control (RBAC) is consistently applied across systems

* Conduct periodic access reviews and assist with internal and external audits

* Coordinate with HR, IT, and department heads to ensure timely and accurate provisioning/deprovisioning of user accounts

* Troubleshoot access-related issues and provide support to end-users

* Assist in maintaining and improving UAM-related policies, procedures, and documentation}

* Monitor adherence to the least privilege and segregation of duties principles

* Generate and analyze access reports to identify anomalies or risks

MINIMUM REQUIREMENTS

Education: Minimum of Bachelor's degree in Computer Science or related field, or equivalent.

Related Work Experience:

• Preferably 1-2 years of security administration experience in support of IT products or User account management and working knowledge of large IT organization operations.

• Minimum 2 years of hands-on experience with Active Directory Account Provisioning/De-provisioning. 

Knowledge (knowledgeable in the following):

|
• Knowledge of latest trends in information security, procedures, methodologies, and best practices

• Knowledge on O365 and its functionalities

Skills:

• Good understanding between on-premise and cloud environment.

• Good understanding of ITIL processes and ITSM tools.

• Working knowledge of ticketing system

• Ability to effectively work with customers and management personnel on all levels, business areas and across cultures

• Should have good verbal and oral communication

• Should be Quality Conscious

• Attention to details and accuracy is required

• Ability to work positively and collaborate with team members to achieve maximum team throughput

Other Job Requirements:
• Should be willing to work in rotational shifts (including night shift)

DUTIES AND RESPONSIBILITIES

• Assist users with troubleshooting user access issues, while maintaining the necessary approval and documentation requirements

• Collaborate and coordinate with Information Technology Department as UAM subject matter expert as part of the Technical Working Committee

• Manage all aspects of user access lifecycle, including user creation, account modification, deactivation, and reactivation

• Ensure that all request related to user access are processed in accordance to role and function based on approved access matrix and completed within the agreed service level agreement

GENERAL RESPONSIBILITIES

* Process user access requests, changes, and terminations across business applications, Active Directory, and Keycloak

* Maintain access logs and ensure all actions are properly documented for audit and compliance purposes.

* Ensure role-based access control (RBAC) is consistently applied across systems

* Conduct periodic access reviews and assist with internal and external audits

* Coordinate with HR, IT, and department heads to ensure timely and accurate provisioning/deprovisioning of user accounts

* Troubleshoot access-related issues and provide support to end-users

* Assist in maintaining and improving UAM-related policies, procedures, and documentation}

* Monitor adherence to the least privilege and segregation of duties principles

* Generate and analyze access reports to identify anomalies or risks

MINIMUM REQUIREMENTS

Education: Minimum of Bachelor's degree in Computer Science or related field, or equivalent.

Related Work Experience:

• Preferably 1-2 years of security administration experience in support of IT products or User account management and working knowledge of large IT organization operations.

• Minimum 2 years of hands-on experience with Active Directory Account Provisioning/De-provisioning. 

Knowledge (knowledgeable in the following):

|
• Knowledge of latest trends in information security, procedures, methodologies, and best practices

• Knowledge on O365 and its functionalities

Skills:

• Good understanding between on-premise and cloud environment.

• Good understanding of ITIL processes and ITSM tools.

• Working knowledge of ticketing system

• Ability to effectively work with customers and management personnel on all levels, business areas and across cultures

• Should have good verbal and oral communication

• Should be Quality Conscious

• Attention to details and accuracy is required

• Ability to work positively and collaborate with team members to achieve maximum team throughput

Other Job Requirements:
• Should be willing to work in rotational shifts (including night shift)

DUTIES AND RESPONSIBILITIES

• Assist users with troubleshooting user access issues, while maintaining the necessary approval and documentation requirements

• Collaborate and coordinate with Information Technology Department as UAM subject matter expert as part of the Technical Working Committee

• Manage all aspects of user access lifecycle, including user creation, account modification, deactivation, and reactivation

• Ensure that all request related to user access are processed in accordance to role and function based on approved access matrix and completed within the agreed service level agreement

OPENTEXT - THE INFORMATION COMPANY

OpenText is a global leader in information management, where innovation, creativity, and collaboration are the key components of our corporate culture. As a member of our team, you will have the opportunity to partner with the most highly regarded companies in the world, tackle complex issues, and contribute to projects that shape the future of digital transformation.

AI-First. Future-Driven. Human-Centered.

At OpenText, AI is at the heart of everything we do—powering innovation, transforming work, and empowering digital knowledge workers. We're hiring talent that AI can't replace to help us shape the future of information management. Join us.

The Opportunity:

The Manager, Security Operation Center is a member of the Information Protection Center team reporting to the Sr. Manager, Information Security. This position works across Corporate and Production teams to ensure the successful implementation of security tools, services, and technology. The Security operations center manager provides oversight and management of the SOC including security operations management and security incident response, incident detection and analysis, containment, and eradication of cybersecurity incidents. This position will manage resources, priorities, and internal projects, and manage the team directly when responding to business-critical security incidents. Ideally, this role will 8-5pm eastern standard time.

You Are Great At:

• Defining, managing, and implementing a comprehensive SOC service
• Be a leader in the expansion and growth of the SOC
• Lead the response to significant Security incidents, ensuring the SOC teams effective response
• Collaborate with client technical teams for issue resolution and mitigation
• Organizing and prioritizing assessments of security controls and services to ensure accurate coverage reporting and identification of coverage gaps
• Review personnel resources daily to assess workload and quality of work
• Coordinate with Incident Response, Threat Intelligence and Threat Hunting teams to create post-incident feedback loop to educate SOC analysts and enhance detection capability
• Implementing tools and processes to automate and visualize security metrics, reporting, and dashboards for varying audiences
• Develop and maintain Standard Operating Procedures for security analyst roles and responsibilities
• Interfacing with internal audit and compliance teams to produce required security artifacts
• Overseeing technical coordination/project management for security initiatives, projects, and integration of security tools and services
• Coordinating risk assessments for requested deviation to security policy/controls
• Security monitoring, managing security cases& tickets, security incident analysis, and other security tasks.
• Responding to incidents varying from endpoint to server systems
• Researching security advisories, e.g., CERT, and delivering appropriate course of action
• Creating documentation to ensure all team members can perform required tasks
• Creating meaningful and detailed metrics based on security events or activities
• Collecting evidence and artifacts to meet compliance requirements (ISO, SOX, HIPAA, SOC, etc.)
• Optimizing day-to-day shift resources and needs
• Ensuring appropriate staffing and coverage for assigned shifts
• Managing and communicating up effectively to leadership regarding staffing needs, events that occurred, etc

What It Takes:

• Creating and refining metrics to articulate and measure SOC performance.
• Knowledge and experience managing a SOC and security operations
• Experience in a delivery, operational or security program management role and previous experience in a leadership or supervisory role
• Demonstrated experience generating metrics to measure service and program effectiveness
• Understanding of compliance frameworks, like PCI, ISO 27001, NIST, etc.
• Excellent analytical skills, troubleshooting and problem solving
• Must be able to work in a fast paced and changing environment while handling multiple tasks, priorities, and directives. Capable of working under pressure.
• Excellent English writing and verbal communication skills
• BS in Computer Science, Cyber Security, or Information Security preferred
• 7+ years of information security experience
• 4+ years of experience working in a Security Operations Center
• 3+ years of experience managing a Security Operations Center
• CISSP, CISA, CISM, or other industry certifications preferred

OpenText's efforts to build an inclusive work environment go beyond simply complying with applicable laws. Our Employment Equity and Diversity Policy provides direction on maintaining a working environment that is inclusive of everyone, regardless of culture, national origin, race, color, gender, gender identification, sexual orientation, family status, age, veteran status, disability, religion, or other basis protected by applicable laws.

If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please contact us Our proactive approach fosters collaboration, innovation, and personal growth, enriching OpenText's vibrant workplace.

Job Brief

The primary function is to perform advisory and assurance projects of Audit Services Group (ASG) focused on IT, information security and data privacy risks. ASG is responsible for evaluating the adequacy and effectiveness of the company's systems of internal controls that guide company activities toward accomplishing key business objectives.

Duties and Responsibilities

• Participate in planning, scoping and execution of risk-based IT, information security, and data privacy assurance and advisory projects in accordance with the Institute of Internal Auditors (IIA) and ASG standards
• Perform test of design and operating effectiveness of controls
• Effectively communicate audit results to management
• Work with stakeholders to develop actions plans that address root cause of findings
• Anticipate the impact of new technologies and strategic initiatives of the Company on its information security and privacy risk profile
• Demonstrate up-to-date knowledge in information security and privacy and apply this to the development, execution and improvement of audit programs and recommendations
• Develop and maintain productive working relationships with stakeholders, while maintaining independence and objectivity.
• Contribute to various department initiatives to streamline processes, improve stakeholder experience, and increase productivity.
• Contribute specialized expertise to different assigned projects and may provide key updates to Project Lead and Manager.

Minimum Requirements

• Bachelor's degree in management information systems, computer science, accounting, finance, or other IT related fields is required
• 2-4 years of IT auditing, technology, information security, privacy or other relevant work experience is required
• Must have strong verbal and written communication skills; fluency in English is required
• Knowledge of auditing cloud services, encryption technology, mobile technology, application security, software development methodologies, and common security frameworks preferred
• Ability to travel up to 30% including international travel (valid passport required)
• Professional certifications (e.g., CIA, CISA, CISSP) are preferred

We at the Lennor Group, are urgently looking for a Information Security Manager for one of our client

About Lennor Group

As a proud Filipino company, we are committed to providing world-class business and workforce solutions. Our deep market expertise, combined with a global perspective, empowers us to serve businesses of all sizes and industries efficiently.

Our brand, Lennor Metier , is a leading recruitment agency and headhunting firm in the Philippines, partnering with reputable companies to source top talent for direct-hire opportunities. It specializes in IT, Finance, Engineering, Sales & Marketing, Supply Chain, HR, and Executive Search.

Salary Range : Up to P150,000

Work Setup : Onsite

Shift Schedule : Day Shift

Location : Taguig City

Job Overview

The Information Security Manager is responsible for overseeing the implementation and maintenance of the organization's information security strategy. This role ensures that security policies, procedures, and controls effectively protecting digital assets and aligning with regulatory requirements. The manager works closely with IT, compliance, and business units to manage risks, respond to incidents, and promote a culture of security awareness.

Your Responsibilities:

• Security Governance & Strategy
• Develop, implement, and maintain security policies, standards, and procedures.
• Align security initiatives with business objectives and regulatory requirements.

• Support internal and external audits and ensure compliance with frameworks (e.g., ISO 27001, NIST, GDPR).

• Risk Management

• Conduct regular risk assessments and vulnerability scans.
• Maintain and update the enterprise risk register.

• Recommend and oversee remediation plans for identified risks.

• Security Operations

• Monitor and manage security tools (e.g., SIEM, firewalls, antivirus, DLP).
• Lead incident response efforts and forensic investigations

• Coordinate with IT teams to ensure timely patching and system hardening.

• Identity & Access Management

• Oversee user access controls and privilege management.

• Ensure proper implementation of multi-factor authentication (MFA) and role-based access.

• Security Awareness & Training

• Develop and deliver security awareness programs for employees.
• Promote best practices and ensure ongoing education on emerging threats. 6. Project & Vendor Security
• Provide security oversight for IT and business projects.
• Review third-party vendor contracts and solutions for security compliance.

What our Client is Looking For:

• A Bachelor's Degree is required with a Master's Degree in cybersecurity, risk management, or IT governance being preferred
• Must possess a strong understanding of security frameworks (ISO 27001, NIST, COBIT)
• Experience with security operations tools and incident response
• Knowledge of cloud security (Azure, AWS, M365)
• Excellent communication and leadership skills
• Ability to manage cross-functional teams and influence stakeholders
• Analytical thinking and decision-making under pressure
• The following certifications are preferred:
• CISM (Certified Information Security Manager) – by ISACA Ideal for managing enterprise security programs.
• CISSP (Certified Information Systems Security Professional) – by (ISC)² Broad coverage of security domains.
• ISO/IEC 27001 Lead Implementer or Auditor – for governance and compliance
• CompTIA Security+ or CySA+ – for foundational and operational security
• CEH (Certified Ethical Hacker) – for threat analysis and penetration testing

Ready to take the next step in your career? Submit your application now

• We kindly request your patience as we receive a significant number of applications. Rest assured that our team will update your application's status soon. In the meantime, we encourage you to follow our LinkedIn page to stay informed about future opportunities and company updates.

Company Description

Work with Us. Change the World.

At AECOM, we're delivering a better world. Whether improving your commute, keeping the lights on, providing access to clean water, or transforming skylines, our work helps people and communities thrive. We are the world's trusted infrastructure consulting firm, partnering with clients to solve the world's most complex challenges and build legacies for future generations.

There has never been a better time to be at AECOM. With accelerating infrastructure investment worldwide, our services are in great demand. We invite you to bring your bold ideas and big dreams and become part of a global team of over 50,000 planners, designers, engineers, scientists, digital innovators, program and construction managers and other professionals delivering projects that create a positive and tangible impact around the world.

We're one global team driven by our common purpose to deliver a better world. Join us.

Job Description

Job Brief

The primary function is to perform advisory and assurance projects of Audit Services Group (ASG) focused on IT, information security and data privacy risks. ASG is responsible for evaluating the adequacy and effectiveness of the company's systems of internal controls that guide company activities toward accomplishing key business objectives.

Duties and Responsibilities

• Participate in planning, scoping and execution of risk-based IT, information security, and data privacy assurance and advisory projects in accordance with the Institute of Internal Auditors (IIA) and ASG standards
• Perform test of design and operating effectiveness of controls
• Effectively communicate audit results to management
• Work with stakeholders to develop actions plans that address root cause of findings
• Anticipate the impact of new technologies and strategic initiatives of the Company on its information security and privacy risk profile
• Demonstrate up-to-date knowledge in information security and privacy and apply this to the development, execution and improvement of audit programs and recommendations
• Develop and maintain productive working relationships with stakeholders, while maintaining independence and objectivity.
• Contribute to various department initiatives to streamline processes, improve stakeholder experience, and increase productivity.
• Contribute specialized expertise to different assigned projects and may provide key updates to Project Lead and Manager.

Qualifications

Minimum Requirements

• Bachelor's degree in management information systems, computer science, accounting, finance, or other IT related fields is required
• 2-4 years of IT auditing, technology, information security, privacy or other relevant work experience is required
• Must have strong verbal and written communication skills; fluency in English is required
• Knowledge of auditing cloud services, encryption technology, mobile technology, application security, software development methodologies, and common security frameworks preferred
• Ability to travel up to 30% including international travel (valid passport required)
• Professional certifications (e.g., CIA, CISA, CISSP) are preferred

Additional Information

Shift schedule: Morning shift (9AM to 6PM)

About AECOM

AECOM is proud to offer comprehensive benefits to meet the diverse needs of our employees. Depending on your employment status, AECOM benefits may include medical, dental, vision, life, AD&D, disability benefits, paid time off, leaves of absences, voluntary benefits, perks, flexible work options, well-being resources, employee assistance program, business travel insurance, service recognition awards, retirement savings plan, and employee stock purchase plan.

AECOM is the global infrastructure leader, committed to delivering a better world. As a trusted professional services firm powered by deep technical abilities, we solve our clients' complex challenges in water, environment, energy, transportation and buildings. Our teams partner with public- and private-sector clients to create innovative, sustainable and resilient solutions throughout the project lifecycle – from advisory, planning, design and engineering to program and construction management. AECOM is a Fortune 500 firm that had revenue of $16.1 billion in fiscal year 2024. Learn more at

What makes AECOM a great place to work

You will be part of a global team that champions your growth and career ambitions. Work on groundbreaking projects - both in your local community and on a global scale - that are transforming our industry and shaping the future. With cutting-edge technology and a network of experts, you'll have the resources to make a real impact. Our award-winning training and development programs are designed to expand your technical expertise and leadership skills, helping you build the career you've always envisioned. Here, you'll find a welcoming workplace built on respect, collaboration and community - where you have the freedom to grow in a world of opportunity.

As an Equal Opportunity Employer, we believe in your potential and are here to help you achieve it. All your information will be kept confidential according to EEO guidelines.

Information Security Engineer III

Experience Level:
 5+ years

About the Role

We're looking for a highly skilled 
Information Security Engineer
 to strengthen and scale security across our cloud, application, and enterprise environments. In this role, you'll:

• Lead secure SDLC practices and embed security into every stage of the development lifecycle.
• Drive threat modeling, vulnerability management, and detection engineering.
• Operate and optimize key security platforms (EDR, DLP, SIEM, Email Security).
• Strengthen cloud and Microsoft 365 security, while ensuring enterprise resilience.

Key Responsibilities

Application & Cloud Security

• Integrate security into design, development, and deployment workflows.
• Conduct threat modeling and architecture reviews.
• Secure cloud platforms (AWS, Azure, Microsoft 365) through identity controls, hardening, and policy enforcement.

Security Platform Operations

• Operate and monitor EDR/XDR, DLP, SIEM, and email security platforms.
• Ensure tools are tuned, integrated, and delivering actionable insights.

Security Monitoring & Response

• Support day-to-day monitoring and incident investigations.
• Lead triage, containment, and remediation of threats.
• Contribute to detection tuning, post-incident reviews, and process improvements.

Threat & Vulnerability Management

• Identify, assess, and remediate vulnerabilities across endpoints, infrastructure, and cloud.
• Support patching strategy, scanning, and threat intel correlation.

Endpoint & Infrastructure Hardening

• Implement secure configurations for Windows/Linux endpoints, servers, and network appliances.
• Align with CIS benchmarks and industry best practices.

Detection Engineering & Risk Management

• Build and tune detection logic in SIEM/XDR platforms.
• Collaborate across teams to reduce false positives and improve fidelity.
• Contribute to business continuity and disaster recovery planning.

Qualifications

• 5+ years of progressive experience in information security (application, cloud, infrastructure).
• Strong experience managing and securing 
  cloud platforms
   (AWS, Azure, Microsoft 365).
• Hands-on expertise with 
  security tools
  : EDR/XDR, DLP, SIEM, email security, vulnerability scanners.
• Knowledge of 
  secure SDLC, application security testing, DevSecOps
   practices.
• Familiar with 
  IAM, zero trust, and conditional access
   frameworks.
• Exposure to 
  threat modeling methodologies
   (STRIDE, MITRE ATT&CK).
• Understanding of 
  compliance standards
   (NIST, ISO 27001, GDPR, SOC 2, PCI-DSS).

Why Join Us?

• Work on 
  high-impact security initiatives
   that safeguard financial systems worldwide.
• Grow with us through 
  certifications, training, and clear career pathways
  .
• Collaborate with 
  smart, driven colleagues
   solving complex security challenges.
• Thrive in a 
  hybrid setup
   (2x per month onsite) with a focus on trust and flexibility.
• Be part of a 
  Great Place to Work-certified company
   that values people, not just output.

Note on Data Privacy

By applying, you consent to the use of your personal data for recruitment purposes. Data may be shared with third-party services and our parent company, ETS London, for recruitment and assessment. For questions, contact our 
DPO at 
.