What Jobs are available for Information Security in the Philippines?

We're looking for an Information Security Analyst (Access Provisioning) to join our ETS Control and Governance team at MBPS. In this role, you are expected to define and maintain a standard access model for cloud resources, review and approve access requests every day within the committed SLA. You will enhance existing automation to make the review and approval task more efficient. Furthermore, you will drive remediation of deviations from the standard access model.

Position Responsibilities:

• Define and communicate the standard access model for various access level to resources in the Public Cloud service.
• Own the intake channels including SNOW Process and IaC Pipelines.
• Manage access authorization for public cloud resources.
• Perform access review and approval on a daily basis with the committed SLAs.
• Develop/enhance automation for intake, review, and implementation.
• Monitor assignment of privileged roles on a daily basis.
• Discover and remediate deviations from approved access model in the existing environment.
• Maintain an exception process and tracks temporary elevation of privileges.

Required Qualifications:

• University/College graduate with 2 – 4 years of progressive experience related to identity and access management, cloud security
• Proven security mindset, Knowledge and understanding of any industry standard Access Management Framework, Principal of Least Privileged Access, Just-in-Time Access, RBAC and ABAC etc.
• Possess "automation-first" mindset. Writes automation(s) to streamline common tasks, tests, and workflows.
• Knowledge of following cloud platforms and Devop tools: Azure, Terraform, Github, GitHub Actions, Python, JIRA, Confluence
• Amenable to work in UP Ayala Technohub (Quezon City)
• Amenable to work in a hybrid set-up (3x a week onsite)
• Amenable to work in a fixed NIGHT shift schedule

Preferred Qualifications:

• Self-driven, able to meet objectives with a minimal amount of managerial oversight/supervision.
• A team player who can interact with various internal functions such as business unit security officers, security engineers, reliability engineers, DevOps engineers.
• Advocate constant learning from both success and failure, and encourages openness to change and continuous improvement.
• Proficient in English, both verbal and written

When you join our team:

• We'll empower you to learn and grow the career you want.
• We'll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
• As part of our global team, we'll support you in shaping the future you want to see.

Ensure the confidentiality, integrity, and availability of the organization's information assets

Duties and Responsibilities

• Risk Management – govern, manage, and mitigate information assets security risks

• Policy Development – create and maintain policies, standards and procedures (Information

Security and Data Governance)

• Security Awareness Training – such as but not limited to eLearning, Phishing, Information

Security Broadcasts

• Compliance & Security Review

• Incident & Risk Acceptance Management

• Project Management for Cybersecurity Solutions

• Vulnerability Management (MSOC, ASM, Broken Links, etc.)

Job Type: Full-time

Pay: Php25, Php30,000.00 per month

Benefits:

• Paid training

Work Location: In person

We're Hiring: Information Security Analyst – Incident Investigation

Location:
Cyber Security Operations Center

Reports To:
Cyber Security Incident Investigation and Threat Intel Manager

Division:
Cyber Security Investigation and Threat Intel

Are you passionate about uncovering the root cause of security incidents and leading investigations that make a real impact? Join our Cyber Security Operations Group as an Incident Investigation Analyst and help us strengthen our defenses against advanced threats.

What You'll Do

• Collect and analyze evidence or artifacts to determine root cause of incidents.
• Provide recommendations to improve the organization's security posture.
• Draft incident and threat intelligence reports.
• Coordinate with internal and external teams (HR, Legal, Compliance, Fraud, etc.).
• Assist the incident response team and stay updated on global security trends.

What You Bring

• Education:
  Graduate of IT or Engineering-related course (e.g., Computer Science, Computer Engineering, Physics, Mathematics, MIS, ECE).
• Experience:
  Minimum 4–8 years in cybersecurity, with at least 4 years of hands-on experience in incident investigation and threat intelligence.
• Skills:
• Incident response, digital forensics, malware analysis, and administrative investigation
• Advanced understanding of TCP/IP, UNIX/Linux and Windows OS
• Experience with security tools and frameworks (Splunk, Hadoop, ELK, YARA, etc.)
• Excellent communication, analytical, and leadership skills

What Sets You Apart

• Deep expertise in incident investigation and threat intelligence
• Ability to work under pressure and outside regular hours as needed
• Impeccable personal and professional integrity

What Success Looks Like

• Timely and thorough investigative and threat intel reports
• Enhanced detection and prevention capabilities
• Documented and scalable security processes

Why Join Us?

This is more than a job—it's a mission-critical role. You'll be part of a team that's shaping the future of cybersecurity, where your expertise directly protects our organization. If you're ready for a challenge and want to make a difference, we want you on our team.

Apply now and help us stay ahead of cyber threats.

We're Hiring: Cyber Security Access Management – Supervisor

Location:
Compliance Management Center

Division:
Access Management

Reports To:
Cyber Security Access Management – Manager

Supervises:
Cyber Security Access Management – Analyst

Are you ready to lead the charge in safeguarding digital identities and access? Join our Cyber Security Operations Group as an Access Management Supervisor and play a pivotal role in shaping and enforcing access governance across the organization. If you're passionate about identity and access management (IAM), process improvement, and cross-functional leadership, this is your opportunity to make a real impact.

What You'll Do

• Own and develop user access management processes, aligning with both company and industry best practices.
• Lead the implementation and enforcement of access management policies and procedures.
• Ensure timely, accurate, and complete submission of access-related reports.
• Coordinate and engage with key stakeholders (IAOs/IACs, UAM teams) and participate as a subject matter expert in audits.
• Oversee technology implementation for access, authentication, and authorization (IAM, PAM, Access Workflow, MFA, etc.).
• Research, evaluate, and integrate new access management technologies; automate manual processes where feasible.
• Maintain comprehensive documentation for access governance, compliance, and risk management.
• Conduct regular knowledge-sharing sessions and awareness campaigns.
• Supervise and mentor Access Management Analysts.

What You Bring

• Education:
  Bachelor's degree in Computer Science, Computer Engineering, IT, MIS, or any 4–5-year IT-related course.
• Experience:
  5–7 years in IT security and/or risk management, with hands-on experience in access, authentication, authorization, and identity technologies (IAM, PAM, MFA, etc.).
• Skills:
• Business and technical writing
• Security risk management
• User and privilege access management
• Identity and profile management
• Project management and resource planning
• Strong communication and technical writing skills (intermediate level)
• Certifications:
  CISA, CISM, CRISC, CISSP, or any IT security-related certification (required). Project management certification/training is a plus.
• Attributes:
  Critical thinking, initiative, cross-functional collaboration, and the ability to manage multiple projects and stakeholders.

What Success Looks Like

• Timely updates and documentation of access management policies, standards, and processes.
• Effective compliance and risk management, including audit resolution and gap closure.
• High stakeholder engagement and accountability.
• Successful delivery of access management projects and continuous process improvements.

Why Join Us?

This is more than a supervisory role—it's a mission to protect our digital ecosystem. You'll lead a team, drive innovation, and ensure that only the right people have the right access at the right time. If you're ready to take your career to the next level in cybersecurity leadership, we want you on our team.

Apply now and help us secure the future of digital access.

Job Summary

Responsible in enforcing policies and procedures that protect the organization's computing infrastructure from all forms of security breaches. Oversee information security, cybersecurity and IT risk management programs based on industry-accepted information security and risk management frameworks. Responsible for identifying vulnerabilities and working with ALH's IT Team (Hotels and Resorts) in resolving tickets and ensuring that network environment and data remain secure. Educate staff in various information security topics.

Key Responsibilities and Duties

Security Monitoring and Incident Response:

• Monitor the organization's data, IT infrastructure, and systems for security breaches and investigate any violations.
• Lead the incident response to potential security incidents by providing detailed analysis, collaborating with various cybersecurity incident response teams, and recommending remediation actions.
• Conduct root cause analysis and prepare comprehensive incident reports.

Vulnerability Management:

• Perform regular vulnerability assessments and penetration testing to identify security gaps.
• Collaborate with IT teams to remediate identified vulnerabilities.
• Track and report on the status of vulnerabilities and remediation efforts.

Security Policies and Procedures:

• Work with the Information Security Management Team to develop, implement, and maintain security policies, procedures, and guidelines.
• Ensure policies and procedures are aligned with industry standards and regulatory requirements.
• Conduct regular reviews and updates of security policies.

Security Awareness and Training:

• Develop and deliver security awareness training programs for employees.
• Promote a culture of security awareness within the organization.
• Provide guidance and training on security best practices.

Compliance and Risk Management:

• Ensure compliance with relevant laws, regulations, and industry standards (e.g., DPA 2012, GDPR, PCI-DSS).
• Conduct risk assessments and provide recommendations to mitigate identified risks.
• Maintain documentation for compliance audits and assessments.

Collaboration and Communication:

• Work closely with IT and other business units to ensure security measures are integrated into all aspects of the organization's operations.
• Communicate security issues and recommendations to senior management and stakeholders.

Security Management and Implementation:

• Plan, implement, manage, monitor, and upgrade security measures for the protection of the organization's data, systems, and networks.
• Ensuring that the organization's data and infrastructure are protected by enabling the appropriate security controls.
• Participating in the change management process.

Qualifications

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity or a technology-related field.
• Relevant certifications (e.g. CompTIA Security+, CEH) is a plus.
• A minimum of two (2) years of experience in Information Security.
• Familiarity with security tools and technologies such as firewalls, IDS/IPS, SIEM, and antivirus software.
• Basic understanding of risk assessment methodologies and mitigation strategies.
• Knowledge of network security, application security, and data protection principles.
• Strong analytical and problem-solving skills. This is applicable in Security Analytics (SIEM) and User Entity Behavior Analysis.
• Excellent problem-solving and analytical skills.
• Detail-oriented with a proactive approach to identifying and addressing security risks.
• Ability to coordinate with different business units and stakeholders for incident response and remediation efforts.
• Ability to educate a non-technical audience about various information security program.
• Effective verbal and written communication skills.

We are looking for a skilled Network Security Engineer to join our team. The successful candidate will be responsible for designing, implementing, and maintaining secure network infrastructures, monitoring for potential threats, and ensuring compliance with security standards and best practices. This role requires strong technical expertise, problem-solving skills, and the ability to communicate effectively with both technical and non-technical stakeholders.

What You'll Do:

• Design, implement, and secure network infrastructures (firewalls, VPNs, IDS/IPS).
• Monitor threats, investigate incidents, and respond quickly to risks.
• Perform vulnerability scans, risk assessments, and harden defenses.
• Collaborate with IT & business teams to enforce security best practices.
• Stay ahead of evolving cybersecurity trends and technologies.

What We're Looking For:

• 3–5 years in network security or IT security roles
• Strong knowledge of firewalls, VPNs, IDS/IPS, SIEM, and enterprise networks
• Hands-on troubleshooting and incident response skills
• Security certifications (CCNA/CCNP Security, CEH, CompTIA Security+, CISSP) are a big plus

Job Types: Full-time, Permanent

Pay: Php30, Php40,000.00 per month

Benefits:

• Additional leave
• Health insurance
• Life insurance
• Opportunities for promotion
• Paid training
• Promotion to permanent employee

Work Location: In person

About the Role

As a Senior SOC Analyst, you'll take the lead in detecting, investigating, and responding to security incidents across global networks, endpoints, and cloud environments. You'll mentor SOC analysts, support compliance audits, and continuously refine detection processes to keep us one step ahead of attackers.

Key Responsibilities

• Lead investigations of security incidents and breaches (P1/P2).
• Perform threat hunting, anomaly detection, and forensic analysis.
• Monitor firewalls, DLP systems, endpoints, and cloud environments.
• Execute crisis communication plans and coordinate incident response.
• Support compliance audits (PCI DSS, ISO 27001, SOC 2 Type II).
• Track SOC KPIs/SLAs and conduct quality audits.
• Mentor and train SOC analysts and associates.
• Stay updated on emerging threats and trends.

Must-Have Qualifications

• 5+ years in Information Security, with hands-on SOC experience.
• Proven expertise in incident response and security alert investigations.
• Strong knowledge of threats, vulnerabilities, and the incident lifecycle.
• Experience with firewalls, cloud monitoring, and DLP alert investigations.
• Proficiency in Windows/Linux OS, network technologies, web apps, and cloud platforms.
• Risk and vulnerability management skills.
• Ability to work in rotating shifts.

Good-to-Have

• Bachelor's degree in IT or related fields.
• Security certifications (CISSP, CISM, CEH, GIAC, etc.).
• Prior team leadership or mentorship experience.
• Technical writing skills.

Why Join Us

• Be part of a global SOC team tackling advanced cyber threats.
• Gain exposure to cutting-edge tools and enterprise environments.
• Opportunity to mentor and influence the next generation of SOC analysts.
• Contribute to compliance and security standards trusted by leading organizations.

Company Overview

UBX is a wholly owned subsidiary of Unionbank of the Philippines. UnionBank is a top 10 universal bank in the Philippines by assets, with annual revenues of over PHP 25 Billion. UnionBank is a leader in digital financial services and has been recognized as the top digital bank in the Philippines by Asiamoney and IDC. UnionBank has established UBX to build on its leadership in digital: UBX facilitates UnionBank's exploration and creation of new, digital and potentially non-banking business models.

UBX's mission includes investments in financial technology (fintech) companies and other ventures whose capabilities complement UBX's platform development. UBX is developing platforms that embed financial services into customer and business experiences. This results in financial services that are accessible to a broader community – physically, logically and economically. UBX invests to positively and materially impact financial inclusion.

Truly innovative financial technology should make banking perfectly transparent in the lives of consumers and businesses. When we talk about banking today, we still talk about accounts, lines of credit and cash management services. Banking still distracts and interrupts. Our ultimate goal: banking that becomes invisible, banking vanishes into our lives and businesses. This is why we are particularly focused on ecosystems: can we participate in and build the platforms where we can seamlessly embed banking in the context of experiences for consumers and businesses.

Our Customers:

Ecosystems are built on platforms that support multi-participant markets and multi-point transactions. Therefore, from an ecosystem development perspective, our customers are the participants in these ecosystems.

This can be made clearer by way of example. For the financial services platform, the resulting ecosystem has the following participants:

• Financial institutions such as rural bank and non-bank financial institutions (coops, lenders, etc.)
• Customers of these financial institutions
• Financial service providers that leverage the platform such as lenders and insurers
• Technology providers that build solutions on top of the platform

Role Overview:

The SOC Analyst is responsible for monitoring, detecting and responding to security incidents. They will provide cybersecurity incident response support.

Task and Responsibilities:

• L1 to L3 Cybersecurity Incident Response Support
• On-Call Incident Response support for Medium to Critical Incidents
• Daily Cybersecurity Ticket Management
• Daily Cybersecurity Incident Detection/ Monitoring via different tools such as SIEM, API Security, EDR, and SOAR
• Daily tracking for Phishing and SMShing
• Provision of Incident Reports
• Daily and Weekly Incident Reporting
• Basic Threat Intelligence
• Social Network Site/ Public Repositories Investigation (e.g. Information about the bank)
• Research the latest Cybersecurity Threats / Vulnerabilities affecting the Bank's Platforms
• Threat Intel Research and Free Public Platforms/ Knowledgebase/ Threat Intelligence Feeds of Security Vendors
• Research on New/ Emerging Cybersecurity Frameworks
• Vulnerability Assessment and Penetration Testing exercise/ assistance
• Cybersecurity compliance activities

Qualifications:

• Graduate of 4-year course. Bachelor's Degree in preferably in IT, computer science, Engineering or related field
• 3 Years of work experience as Security Operations Center Analyst
• Have foundational knowledge and understanding of networking, operating systems and cyber security principles
• Relevant experience Certifications such as CompTIA Security+, CEH, GCIH preferred
• Knowledge of of MITRE ATT&CK framework, threat analysis, threat hunting techniques, digital forensics, and incident response
• Knowledgeable with SIEM tools, IDS/IPS, endpoint protection, and forensic tools
• Ability to work under pressure and in a fast-paced environment
• Team Oriented mindset with a proactive attitude
• Strong Attention to detail and willingness to learn