33 Security Engineer jobs in the Philippines

The Information Security Engineer will have a passion for managing corporate security along with a desire to relentlessly champion best practices. This role is responsible for performing all functions required to support day-to-day data security operations, supporting and maintaining a broad suite of information security infrastructure, accountable for security and networking infrastructure component availability and integrity, monitoring compliance with IT security policy. Participate in the planning, design, installation, and maintenance of security systems in support of security policies. Work with Information Technology staff and business units to assess risk and address security issues.

JOB DESCRIPTIONS

1. Works in support of the Senior Information Security Engineer enhancing the security direction for the organization including
systems, networks, user services, and vendor development efforts
2. Assists with complex projects and assumes ongoing support of security operations
3. Conducts network and system tests via simulation or other means to highlight and find any weaknesses that may be exploited
4. Provides test result reports and recommend security gap enhancements
5. Designs, implements, supports, and evaluates security-focused tools and services including project leadership roles
6. Designs, implements, supports, and evaluates vulnerably management tools and services
7. Provides security tool integration and automation support
8. Works with System Engineers to evaluate and recommend new and emerging security products and technologies
9. Assists

in defining security requirements and review of systems to determine if they have been designed to comply with
established security standards. Develop new standards as necessary.
10. Participates in security compliance efforts (e.g., PCI DSS, SOX)
11. Participates in incident handling
12. Other related duties to support the information security function

JOB REQUIREMENTS and QUALIFICATIONS

Bachelor's degree in Computer Science, or Cyber-security or equivalent experience
Experience completing large, complex projects
Hands on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication
systems, log management, content filtering, etc
Strong time management and organisational skills
Knowledge of windows, Linux and Mac operating systems
Exceptional problem solving, communication, and customer service skills
Highly self-motivated and directed
Requirements: Language(s): English
Availability to travel: Yes
Availability to change residence: Yes
Work Day: Casual
Type of Job: Temporary contract
Minimum required education: Bachelor´s Degree

JOB TYPE

Work Day:Full Time

Employment type:Permanent Job

Salary:Negotiable

JOB REQUIREMENTS

Minimal experience:Unspecified

We are Hiring for IT Cloud Security Engineering | Earn up to Php 100,000 + Peripherals Provided | Online Process Only
br>- At least 2-5 years’ experience as Security Engineer < r>- Salary is range Php 80,000-100,000 (Negotiable)
- Bachelor’s degree in IT or any related field < r>- Metro Manila (Quezon City)
- Hybrid/ WFH Setup
- Full-time / Regular Schedule

Benefits package:
• Dental, < r>• iscellaneous allowance, < r>• M dical < r>• M ndated Benefits package < r>• I surances < r>• F exible work Arrangement < r>


Job Descriptions:
• R sponsible for designing, building and protecting enterprise systems application, data and infrastructure. < r>• S feguard company information, infrastructures, application and business processes for potential cyber threats. < r>• I plement possible and security practices through technology solutions. < r>
Job Requirements:
• B chelors in any Information Technology related courses. < r>• E perience at least 2-5 years’ experience as Security Engineer



Recruitment Process:
Online process Only!

Tech Security Engineer – GRC
₱150K MAX | BGC, Taguig | Hybrid (3 days on-site) | Shifting Schedule br>
Professional Certification & Licenses
-- Preferred: ISO27001 Lead Implementer/Lead Auditor, ISO31000 Risk Manager, CISSP, CISM, CRISC, or CISA
-- At least 4+ years’ experience in cybersecurity governance, risk management, and compliance < r>
Work Experience
-- Solid understanding of cybersecurity principles and risk management methodologies
-- Strong grasp of security frameworks and standards (ISO 27001, NIST, CIS, OWASP, GDPR, PCI-DSS)
-- Proficiency with GRC management and compliance tracking tools
-- Experience in audit processes and regulatory compliance
-- In-depth knowledge of security configurations, controls, protocols, encryption, and access controls
-- Familiarity with best practices in data security

Tech Security Engineer – VAPT
₱150K MAX | BGC, Taguig | Hybrid (3 days on-site) | Shifting Schedule br>
Work Experience
-- Minimum 5 years in a VAPT role or similar
-- Advanced penetration testing and bypassing security controls
-- Experience in reverse engineering, exploitation, malware analysis, threat emulation, persistence, and lateral movement
-- Hands-on expertise in exploitation techniques, tools, and processes
-- Strong analytical and problem-solving skills
-- Excellent communication and collaboration abilities

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start **Caring. Connecting. Growing together.**
**Primary Responsibilities:**
+ Analyze, remediate, and approve firewall rules/policies in accordance with enterprise established standards and compliance requirements.
+ Making critical decisions on enterprise security policies
+ Utilizing the security monitoring tools to support audits (Ex: AlgoSec)
+ Reporting and reviewing the compliance status and taking remediation actions
+ Determine the severity and complexity of issues pertaining to the security and protection of systems data, (autonomously or as part of a team) to ensure the protections, conservation and accountability of proprietary, personal, or privileged electronic data
+ Collaborate with director, managers, and other technical personnel to ensure mitigation of security risks pertaining to the company
+ Defines, implements, audits, and maintains firewall security policies
+ Promote the development of innovative approaches and solutions to complex problems and issues
+ Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so
**Required Qualifications:**
+ 7+ years of Palo Alto Firewall experience
+ 5+ years of Cloud Security experience
+ 5+ years of Security Architect experience
+ 5+ years of Firewall rule/policy compliance and governance experience
+ 5+ years of Firewall rule analysis and remediation experience
+ Proven communication skills for team and customer engagement
+ Proven team player
**Preferred Qualifications:**
+ Splunk experience
+ AlgoSec experience
+ Proven leadership skills
**Other Requirements**
+ Needs to work 40+ hours per week
+ Required shift will be 8-5 CST
+ Needs to meet RTO requirements
_At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission._

Job Title: Senior Cybersecurity Technical Support Engineer
Work setup: Onsite or Hybrid in BGC, Taguig br>Shift Schedule: Shift would depend on the Hiring Manager (EMEA, US, or APAC)

Required Qualifications:
> Bachelor's degree
> Solid background in Linux technical support
> Min. 5 years in Cloud Security (Azure/AWS/GCP)
> SIEM, EDR, and other security technologies
> Networking skills (TCP/IP, routing, and packet analysis)
> Experience with Jira and other bug tracking tools
> Advanced proficiency in Salesforce or similar CRM platforms
> Relevant Cloud Technology certifications are preferred
> Excellent communication skills, both verbal and written

_We are looking for_ **_Application Security Engineer (Threat Modeling)_** _who will be directly reporting to the Manulife ETS Cyber Assessment Application Security Team. Our group is consisting of highly motivated and experienced professionals and is composed of members located across different Manulife locations such as Manila and North America. As part of the ETS Global Cyber Security, we are responsible for the practice of identifying, classifying, monitoring, remediating and/or mitigating security vulnerabilities on applications, network and APIs across the organization._
_Have the skills and experience for the job? Learn more about it below!_
**Position Responsibilities:**
+ **Strategic Cybersecurity** : Contribute to the strategic guidance on the design of cybersecurity measures for complex systems and networks, incorporating product security strategies such as design principles and security architecture.
+ **Security Review** : Perform and coordinate in-depth security reviews, pinpoint potential vulnerabilities, and suggest all-encompassing remediation strategies by utilizing threat modeling methodologies and threat assessment frameworks.
+ **Security Insights** : Provide sound analysis on the security implications of introducing new systems or interfaces within our ecosystem, based on application security best practices, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA) implementation.
+ **Security Architecture Evaluation** : Assess proposed security architectures and designs to ensure they are equipped to meet both current and future security needs. This involves reviewing data flow diagrams for applications/system architectures and identifying potential threats as part of the threat modeling process.
**Required Qualifications:**
+ University/College graduate with at least 2 years of experience related to Application Security and Threat Modeling.
+ Must have background in application development / technology management.
+ Good experience in application security architecture.
+ Comprehensive understanding of security principles and their business implications.
+ Broad knowledge of networking concepts.
+ Good background in secure software development methodologies
+ Familiarity with various application security testing approaches and implementation.
+ Understanding of penetration testing concepts.
+ **_Amenable to work UP Ayala Technohub (Quezon City)_**
+ **_Amenable to work on a hybrid set-up (3x a week onsite)_**
+ **_Amenable to work on a fixed late mid shift / night shift schedule_**
**Must Have / Preferred Qualifications:**
+ Knowledge of industry trends, regulatory requirements, and their impact on security architecture.
+ Advocate constant learning from both success and failure, and encourages openness to change and continuous improvement.
+ Recognizable organizational and problem-solving abilities that enable you to manage through creative abrasion.
+ Proven stakeholder management skills and able to effectively articulate risk posture, technical vision, possibilities, and outcomes through strong verbal and written communication.
+ Self-driven, able to meet objectives with a minimal amount of managerial oversight/supervision.
**When you join our team:**
+ We'll empower you to learn and grow the career you want.
+ We'll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
+ As part of our global team, we'll support you in shaping the future you want to see.
**Acerca de Manulife y John Hancock**
Manulife Financial Corporation es un importante proveedor internacional de servicios financieros que ayuda a las personas a tomar decisiones de una manera más fácil y a vivir mejor. Para obtener más información acerca de nosotros, visite .
**Manulife es un empleador que ofrece igualdad de oportunidades**
En Manulife/John Hancock, valoramos nuestra diversidad. Nos esforzamos por atraer, formar y retener una fuerza laboral tan diversa como los clientes a los que prestamos servicios, y para fomentar un entorno laboral inclusivo en el que se aprovechen las fortalezas de las culturas y las personas. Estamos comprometidos con la equidad en las contrataciones, la retención de talento, el ascenso y la remuneración, y administramos todas nuestras prácticas y programas sin discriminación por motivos de raza, ascendencia, lugar de origen, color, origen étnico, ciudadanía, religión o creencias religiosas, credo, sexo (incluyendo el embarazo y las afecciones relacionadas con este), orientación sexual, características genéticas, condición de veterano, identidad de género, expresión de género, edad, estado civil, estatus familiar, discapacidad, o cualquier otro aspecto protegido por la ley vigente.
Nuestra prioridad es eliminar las barreras para garantizar la igualdad de acceso al empleo. Un representante de Recursos Humanos trabajará con los solicitantes que requieran una adaptación razonable durante el proceso de solicitud. Toda la información que se haya compartido durante el proceso de solicitud de adaptación se almacenará y utilizará de manera congruente con las leyes y las políticas de Manulife/John Hancock correspondientes. Para solicitar una adaptación razonable en el proceso de solicitud, envíenos un mensaje a .
**Modalidades de Trabajo**
Híbrido

**Introduction**
In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry
expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical
expertise to drive innovation and adoption of new technology.
A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe.
You'll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in
the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our
robust technology platforms across the IBM portfolio; including Software and Red Hat.
Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you'll be encouraged to challenge
the norm, investigate ideas outside of your role, and come up with creative solutions resulting in ground breaking impact for a wide network of
clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces
your unique skills and experience.
**Your role and responsibilities**
As a L3 SIEM Engineer, your responsibilities may encompass the following activities:
SIEM Implementation and Management
* Design and deploy SIEM solutions tailored to organizational and client-specific needs.
* Configure data sources, log collection mechanisms, and parsing for effective data ingestion and correlation.
* Maintain, update, and optimize SIEM rules, alerts, and dashboards to ensure high performance
Threat Detection and Response
* Develop and implement custom use cases, correlation rules, and workflows to identify and mitigate threats.
* Integrate threat intelligence platforms with SIEM systems for enhanced detection capabilities.
* Support incident response activities by providing event correlation, log analysis, and forensic insights.
System Optimization
* Continuously fine-tune SIEM performance to reduce false positives and improve detection accuracy.
* Ensure high availability, scalability, and redundancy of SIEM platforms.
* Work with vendors to troubleshoot issues, apply updates, and implement patches.
Collaboration and Reporting
* Collaborate with security analysts, SOC teams, and IT professionals to enhance threat detection capabilities.
* Generate regular reports on security trends, incidents, and compliance metrics.
* Mentor and train team members on SIEM functionalities, best practices, and new developments.
Compliance and Documentation
* Ensure SIEM configurations comply with industry and regulatory standards (e.g., GDPR, ISO 27001, PCI-DSS).
* Maintain comprehensive documentation of SIEM configurations, processes, and incident handling procedures.
Weekly and Monthly Client Debrief Reporting
* Prepare and deliver comprehensive weekly and monthly SIEM debrief reports for clients, including insights on security trends, incidents, system performance, and recommendations.
* Engage with clients during debrief meetings to address questions, gather feedback, and align on security objectives.
**Required technical and professional expertise**
* More than 3 years of hands-on experience with SIEM platforms such as Splunk, QRadar, ArcSight, Microsoft Sentinel, or LogRhythm.
* Strong understanding of cybersecurity principles, threat intelligence, and incident response processes.
* Familiarity with log management, data normalization, and network protocols.
* Creating Dashboards & Data Parsing: expertise in creating and managing custom dashboards, rules, reports, and alerts & advanced ability to ingest, parse, and normalize log data from diverse sources (e.g., firewalls, endpoints, cloud platforms, applications).
* Scripting, Log collection & Compliance Frameworks: proficiency in scripting languages like Python or PowerShell for automation and customization, hands-on experience with log collection protocols (e.g., Syslog, Windows Event Logs, API integrations) & knowledge of compliance frameworks and standards such as NIST, CIS, and MITRE ATT&CK.
**Preferred technical and professional experience**
* Strong analytical and problem-solving abilities with keen attention to detail.
* Excellent communication and collaboration skills, with the ability to interact effectively with stakeholders at all levels.
* Capable of managing multiple priorities in a fast-paced, dynamic environment.
* Certifications:
* Splunk Certified Admin/Architect, IBM QRadar Certified Deployment Professional, or equivalent SIEM-specific certifications
* General security certifications such as CISSP, GSEC, or GIAC SIEM.
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

System Administration (80%):
Performs daily IT technical and network administrative support to all employees. br>1. Server Management:
• Install, configure, and maintain Windows/Linux-based servers. < r>• Monitor server performance, identify issues, and troubleshoot. < r>• Perform regular updates, patches, and system optimizations. < r>• Manage server backups and restore operations. < r>2. System Security:
• Implement and maintain security measures, such as firewalls, antivirus < r>software, and encryption protocols.
• Ensure compliance with internal and external security policies and standards. < r>• Monitor security breaches and provide incident response. < r>3. User Management:
• Create, modify, and delete user accounts, groups, and permissions. < r>• Provide access control and manage authentication services (e.g., Active < r>Directory, LDAP).
4. Software Management:
• Deploy and maintain software applications and systems across the network. < r>• Assist with troubleshooting application issues and work with vendors for < r>software support.
• Ensure that software is up-to-date and properly licensed. < r>5. Monitoring and Reporting:
• Utilize monitoring tools to track system health, performance, and usage. < r>• Generate reports on server uptime, system performance, and other relevant < r>metrics.
6. Troubleshooting and Support:
• Provide technical support to end-users and resolve system-related issues. < r>• Troubleshoot hardware and software problems and provide timely < r>resolutions.
• Maintain comprehensive documentation of system configurations and < r>troubleshooting procedures.
Network Administration (20%):
1. Network Configuration:
• Configure and maintain network devices such as routers, switches, and < r>firewalls.
• Manage LAN/WAN configurations to ensure network stability and < r>performance.
• Assist with setting up VPNs and remote access configurations for users. < r>2. Network Monitoring:
• Monitor network performance to detect and resolve issues. < r>• Troubleshoot and resolve network connectivity issues, including DNS, DHCP, < r>and routing problems.
• Maintain and update network diagrams and documentation. < r>3. Security and Compliance:
• Implement and maintain network security protocols, including firewall < r>configurations and intrusion detection/prevention systems.
• Ensure that network policies comply with relevant industry standards and < r>regulations.
4. Collaboration with IT Teams:
• Work closely with other IT personnel to resolve network and system issues. < r>• Collaborate on projects involving both network and system administration < r>tasks.
WHAT'S EXPECTED FROM YOU:
• Proven experience as a System Administrator, Network Administrator, or in a < r>similar role for 3 years.
• Strong knowledge of server operating systems (Windows Server, Linux). < r>• Solid Understanding with Active Directory, DNS, DHCP, and other enterprise-level < r>systems management.
• Experience with networking protocols, VPNs, and network security practices. < r>• Knowledge of backup and disaster recovery solutions. < r>• Strong Experience with cloud platforms (AWS, Azure, etc.) and virtualization < r>(VMware, Hyper-V) as well cloud services and operations.
• Experience with managing cloud virtual server instances. < r>• Proficiency in using patch management systems such as Kaseya VSA. < r>• Excellent troubleshooting and problem-solving skills. < r>• Strong communication and teamwork abilities. < r>• Relevant certifications (e.g., AWS Certified SysOps Administrator, CompTIA < r>Server+, Microsoft Certified: Azure Administrator) are a plus.