9 Security Design jobs in the Philippines

Position Overview:
As a Security Architect, you will engage across various domains within information security, focusing on: br>Evaluating and auditing existing security controls and solutions.
Designing and implementing new security measures.
Providing expert counsel within the department and beyond.
Assisting in the design and optimization of our SIEM/MDR solutions.
Conducting risk assessments for infrastructure, applications, and vendors.

Qualifications:
Bachelor's degree in any field; degrees in Information Security, Computer Science, or Software Engineering preferred but not mandatory.
Certifications such as Azure Architect, Azure Security, OSCP, OSEP, CISSP, Security+, ISO 27001, CISM, or CRISC are advantageous but not required.
Excellent English communication skills.
Knowledge in areas such as:
Risk Management
Third-Party Risk Management
Control Management
Security Frameworks (ISO 27001/27002/27005, NIST 800-53, NIST CSF)
Policy and Procedure Development
Infrastructure and Cloud Security (Azure)
MDR/SIEM/Log Analytics
Incident Response
Vulnerability and Penetration Testing
Identity and Access Management (IAM)
Technical Security and Risk Assessments
Disaster Recovery Planning
Willingness to engage with the CISO on professional matters.

Job Scope:
To manage all RX security assessments and play a key part in ensuring RX's security compliance optimization. Monitor assessments while ensuring that Reed Exhibitions internal systems are compliant with RELX and industry standards. Proactively manage the third-party risk assessments, compliance evidence gathering of their IT services, infrastructure, applications and relevant services against their Security policies and related frameworks. Training and development will be provided in all areas of the role as required.
Key Responsibilities:
Security Assessment Management
+ Serve as an advanced technical advisor for third-party assessments, providing detailed security insights and solutions.
+ Perform in-depth security reviews and risk assessments for new and existing third-party vendors, ensuring compliance with organizational and regulatory requirements.
+ Demonstrate advanced knowledge in RELX security compliance policies and procedures.
+ Stay current with updates and developments in security standards such as OWASP Top 10, ISO27001, and SOC 2, and ensure their proper implementation across the organization.
+ Develop and deliver training and awareness on security policies and standards to business units.
+ Gain in-depth knowledge of the organization's major infrastructure security controls, ensuring they align with RELX Policies and Standards, industry best practices, and regulatory requirements.
+ Coordinate with technology/service owners and business owners to conduct annual security audits, vulnerability assessments, and penetration tests where applicable.
+ Work collaboratively within all business areas and key stakeholders to ensure the review and approach of all security governance, risk, and compliance scope is appropriate and proactive.
+ Ensure continuous monitoring and reporting of compliance and risk status against NIST2.0, RELX Framework, ISO27001, SOC2, PCI DSS, regional and global regulations, and all other relevant standards.
+ Support internal and external audits by providing detailed documentation and evidence of security controls and practices.
+ Perform RX Business Unit and Third-Party security audits according to the CISO office strategic plan and produce detailed documentation and evidence against security controls and practices tested.
+ Act as a point of escalation for security-related incidents, providing advanced security support and guidance to Level I Analysts and other team members.
+ Provide regular updates and at least monthly metric reports to senior management on security compliance and risk posture.
+ Escalation of high impact security issues to Security Compliance Manager.
Ideal candidate profile:
Technical Skills:
+ Bachelor's Degree holder.
+ Background in IT, compliance, and/or information security.
+ Ability to work across all levels of seniority within business teams to drive a working partnership.
+ Strong analytical and critical thinking skills.
+ Understanding of industry standards for IT security (e.g., ISO27001/2, SOC 2, PCI DSS).
+ Basic understanding of IT security applications (e.g., firewalls, intrusion detection, virus protection).
+ Understanding of IT security testing and vulnerability management, and Threat Modeling.
+ Understanding in Cloud Environment (e.g., AWS, Azure or GCP)
+ Understanding of Service Level Management.
+ Desired understanding of OneTrust portal or Similar.
+ With CompTIA Security+ or Similar or Higher.
Personal Skills:
+ Ability to work across all levels of seniority within the organization and suppliers to drive a working partnership.
+ Good communication skills at all levels, both oral and written.
+ Good interpersonal skills.
+ Ability to produce effective influence and persuasive arguments in support of security assessment process goals.
+ Highly driven and self-motivated individuals.
+ Skilled in project management and able to work independently in a fast-paced environment.
We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our Applicant Request Support Form or please contact 1- .
Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams here .
Please read our Candidate Privacy Policy .
We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law.
USA Job Seekers:
EEO Know Your Rights .
RELX is a global provider of information-based analytics and decision tools for professional and business customers, enabling them to make better decisions, get better results and be more productive.
Our purpose is to benefit society by developing products that help researchers advance scientific knowledge; doctors and nurses improve the lives of patients; lawyers promote the rule of law and achieve justice and fair results for their clients; businesses and governments prevent fraud; consumers access financial services and get fair prices on insurance; and customers learn about markets and complete transactions.
Our purpose guides our actions beyond the products that we develop. It defines us as a company. Every day across RELX our employees are inspired to undertake initiatives that make unique contributions to society and the communities in which we operate.

Job Overview: The Chief Information Security Officer works with other executives across different departments to design security systems and assets. The CISO’s main responsibility is creating and implementing an information security program that is designed to protect enterprise communications, systems, and assets from any potential threats. He/She will ensure compliance to legal security practices.Job Description: ● Define and own a multi-year cybersecurity roadmap and key performance indicators focused on reducing cyber risk ● Build and inspire a highly skilled and diverse Cybersecurity team. Foster a culture of trusted cross-functional partnership, service, and continuous improvement ● Create quarterly, annual, and long-term cyber security and cyber risk management goals, articulate strategies, define metrics and provide necessary updates to executive leadership ● Partner with leadership for the development, planning, and execution of major security initiatives. Support Secure Software Development Lifecycle ● Collaborate with the SOC team and ISO 27001 Core team to establish appropriate security standards and provide an effective governance structure to ensure cyber compliance and accountability ● Lead Security Incident Response, Third Party Information Security Assessment, Data Protection and Encryption, ● Identity & Access Management and Privileged User Access to protect customer and employee data ● Define cyber security governance and control strategies for emerging technologies such as cloud & containerization, blockchain, etc. ● Keep well informed of developing security threats, and proactively create strategies to understand and mitigate potential security problems that might arise from acquisitions or other big business moves ● Other job-related activities may be assigned from time to time.RequirementsRequirements: ● Education – At least graduate with a Bachelor’s Degree in IT, Computer Science, Engineering, or any related course. ● Related Work Experience - Key Industry certifications in Information Security, such as CISSP, CISM and CISA ● Knowledge – Knowledgeable in security and operations processes. ● 15+ years of experience in Information/Cybersecurity in a public or large private technology company with a global customer base ● 7+ years people management experience with hands-on experience building diverse teams while promoting an inclusive organization ● A demonstrated knowledge of information security standards (e.g., NIST, ISO-27001), rules and regulations related to information security and data confidentiality (e.g., PCI, NIST, NSA) and other various security standards and policies ● A strong understanding of Cloud Security Mode and key principles, such as CSPs Shared Responsibility Models, Security and Infrastructure as Code, Preventive/Reactive Guardrails, Containerization, Server-less Computing, Continuous monitoring/drift detection, and the importance of end-to-end automation ● Strong interpersonal and communication skills with the ability to influence at all levels of the organization, while being able to simplify complex topics for understanding and critical decision making by Executive Management and the Board ● Ability to understand not only emerging industry trends as far as cyber security is concerned but also the landscape of emerging threats, making appropriate adjustments within the cybersecurity program

Required Experience:
- Bachelor’s degree in: Information Technology, Computer Science, or related fields. br>- At least 5 years of experience in IT networking and cybersecurity.
- At least 5 years in a managerial role handling security and network teams.
- Proficiency in Japanese (at least JLPT N3) and English.
- Strong knowledge of firewalls, penetration testing, and security protocols.
- Proficiency in MS Office, Google Suites, and IT security tools.

-Certifications (Preferred but not required):
＊CompTIA Security+ < r>＊CISSP (Certified Information Systems Security Professional) < r>＊CISM (Certified Information Security Manager) < r>＊CCNP Security (Cisco) < r>＊Fortinet NSE < r>＊CCNA (Cisco Certified Network Associate) < r>＊Juniper JNCIA-Junos < r>
Responsibilities:
Cybersecurity Leadership:
・Oversee cybersecurity for Asia & Oceania branches. < r>・Analyze and address vulnerabilities in IT infrastructure and systems. < r>・Develop and implement security policies for IT, infrastructure monitoring, incident response, and penetration testing. < r>
Network Security & Risk Management:
・Ensure robust firewall and security measures to prevent cyber threats. < r>・Implement change management and incident response procedures. < r>・Propose strategies for improving IT security across the company. < r>
Compliance & System Integrity:
・Ensure compliance with industry standards and best practices. < r>・Regularly test and update security frameworks to mitigate risks. < r>・Collaborate with IT teams and stakeholders to enhance security measures.

**_Job Title:_**
Senior Research Scientist - Network Security
**About** **Trellix:**
**Trellix, the trusted CISO ally, is redefining the future of cybersecurity and soulful work.** Our comprehensive, GenAI-powered platform helps organizations confronted by today's most advanced threats gain confidence in the protection and resilience of their operations. Along with an extensive partner ecosystem, we accelerate technology innovation through artificial intelligence, automation, and analytics to empower over 53,000 customers with responsibly architected security solutions.
We also recognize the importance of closing the 4-million-person cybersecurity talent gap. We aim to create a home for anyone seeking a meaningful future in cybersecurity and look for candidates across industries to join us in soulful work. More at .
**_Role Overview:_**
We are looking for a Senior Research Scientist to help us build and expand
Trellix Network Detection and Response. The ideal candidate is someone who is passionate about solving real problems by turning cutting edge research into operational production solutions. In this role, you will focus on analyzing network-based attacker behavior and develop innovative solutions to address emerging challenges in the field of networking.
**Responsibilities:**
+ Research attacker methodologies and develop innovative solutions to identify detection solutions
+ Knowledge on how machine learning can be applied in networking problems
+ Perform data analysis to measure efficacy and identify methodologies to improve existing solutions
+ Forward Looking Research - Researcher will help develop leading edge prototypes to solve emerging challenges.
+ Threat Analytics - Leverage threat intelligence from different sources, identify patterns to co-relate and establish the origin and flow of attacks.
+ Drive roadmap for detection efficacy and network research operation
**Requirements:**
+ Total 8 to 14years experience with at least three years direct or equivalent experience in areas of network-based threats and other aspects of cyber attacks.
+ Strong understanding of networking protocols (e.g., TCP/IP) and network architecture.
+ Proficiency in programming languages such as Python, C++, or Java.
+ Knowledge of cybersecurity principles and practices
+ Strong analytical, problem-solving, and communication skills
**Preferred:**
+ Hands-on reverse engineering and knowledge of operating system internals.
+ Red teaming experience on various techniques
+ Machine learning experience
**Additional Qualifications**
Above all, the right passion and attitude to solve new challenges
**_Company Benefits and Perks:_**
We believe that the best solutions are developed by teams who embrace each other's unique experiences, skills, and abilities. We work hard to create a dynamic workforce where we encourage everyone to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees.
+ Retirement Plans
+ Medical, Dental and Vision Coverage
+ Paid Time Off
+ Paid Parental Leave
+ Support for Community Involvement
We're serious about our commitment to a workplace where everyone can thrive and contribute to our industry-leading products and customer support, which is why we prohibit discrimination and harassment based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.

Required Experience:
- Bachelor’s degree in: Information Technology, Computer Science, or related fields. br>- At least 5 years of experience in IT networking and cybersecurity.
- At least 5 years in a managerial role handling security and network teams.
- Proficiency in Japanese (at least JLPT N3) and English.
- Strong knowledge of firewalls, penetration testing, and security protocols.
- Proficiency in MS Office, Google Suites, and IT security tools.

-Certifications (Preferred but not required):
＊CompTIA Security+ < r>＊CISSP (Certified Information Systems Security Professional) < r>＊CISM (Certified Information Security Manager) < r>＊CCNP Security (Cisco) < r>＊Fortinet NSE < r>＊CCNA (Cisco Certified Network Associate) < r>＊Juniper JNCIA-Junos < r>
Responsibilities:
Cybersecurity Leadership:
・Oversee cybersecurity for Asia & Oceania branches. < r>・Analyze and address vulnerabilities in IT infrastructure and systems. < r>・Develop and implement security policies for IT, infrastructure monitoring, incident response, and penetration testing. < r>
Network Security & Risk Management:
・Ensure robust firewall and security measures to prevent cyber threats. < r>・Implement change management and incident response procedures. < r>・Propose strategies for improving IT security across the company. < r>
Compliance & System Integrity:
・Ensure compliance with industry standards and best practices. < r>・Regularly test and update security frameworks to mitigate risks. < r>・Collaborate with IT teams and stakeholders to enhance security measures.

Schedule: 9 AM - 6 PM
br>Required Experience:
- Bachelor’s degree in: Information Technology, Computer Science, or related fields. < r>- At least 5 years of experience in IT networking and cybersecurity.
- At least 5 years in a managerial role handling security and network teams.
- Proficiency in Japanese (at least JLPT N3 level) and English.
- Strong knowledge of firewalls, penetration testing, and security protocols.
- Proficiency in MS Office, Google Suite, and IT security tools.
+ Security Certifications (Preferred but not required):
＊CompTIA Security+ < r>＊CISSP (Certified Information Systems Security Professional) < r>＊CISM (Certified Information Security Manager) < r>＊CCNP Security (Cisco) < r>＊Fortinet NSE < r>+Network Certifications (Preferred but not required):
＊CCNA (Cisco Certified Network Associate) < r>＊Juniper JNCIA-Junos < r>
Responsibilities:
Cybersecurity Leadership:
・Oversee cybersecurity for Asia & Oceania branches. < r>・Analyze and address vulnerabilities in IT infrastructure and systems. < r>・Develop and implement security policies for IT, infrastructure monitoring, incident response, and penetration testing. < r>
Network Security & Risk Management:
・Ensure robust firewall and security measures to prevent cyber threats. < r>・Implement change management and incident response procedures. < r>・Propose strategies for improving IT security across the company. < r>
Compliance & System Integrity:
・Ensure compliance with industry standards and best practices. < r>・Regularly test and update security frameworks to mitigate risks. < r>・Collaborate with IT teams and stakeholders to enhance security measures.

Design and implement cloud-native security architectures and solutions
br>Design and implement CASB strategies to protect the Firm's cloud services and applications

Develop and maintain security policies, standards, and best practices for cloud environments

Conduct security assessments and audits of cloud infrastructure and applications

Create and Maintain solution documentation for cloud network security

Qualification
A Computer Science bachelor’s degree or equivalent professional experience < r>
Extensive experience in designing and implementing enterprise cloud security solutions

Extensive working experience with Microsoft cloud security tools including Microsoft Defender for Cloud Apps and Microsoft Defender for Cloud

Experience in deploying enterprise CASB and CNAPP solutions

Experience configuring and troubleshooting network security, including security groups, network ACLs and load balancers in cloud environments

Strong knowledge of IAM solutions with desired experience in Microsoft Entra ID

Strong application and Network security risk assessment skills to identify gaps in security configuration and design

Expert-level problem-solving and analytical skills

Strong written and oral English communication skills, and ability to convey complex concepts to non-technical constituents

Strong Knowledge and understanding of network security frameworks and compliance standards