264 Security Engineer jobs in the Philippines

Experience Level: 5+ years

We are seeking a highly skilled Information Security Engineer to lead the development and implementation of robust security controls across our cloud, application, and enterprise environments. This individual will drive secure SDLC practices, lead threat modeling, manage detection and response capabilities, and strengthen security for cloud and Microsoft 365 platforms. The ideal candidate is a hands-on security expert with a broad technical background, deep problem-solving abilities, and a proactive mindset.

Key Responsibilities

1. Application & Cloud Security

• Implement secure SDLC initiatives by integrating security into design, development, and deployment workflows.

• Conduct threat modeling for both applications and infrastructure to identify and mitigate risks early in the lifecycle.

• Secure cloud platforms, including identity controls, configuration hardening, and policy enforcement.

• Assess and secure financial web applications hosted in AWS through code reviews, penetration testing coordination, and architecture reviews.

2. Security Platform Operations

• Operate and monitor key security platforms such as:

• EDR/XDR solutions

• DLP solutions across endpoints, cloud, and email

• Email Security Solutions

• Ensure proper tuning, coverage, and integration of security tools with enterprise IT systems and logging pipelines.

3. Security Monitoring & Response

• Participate in day-to-day security monitoring using SIEM, EDR/XDR, and other detection platforms to augment the SOC team when required.

• Assist in configuring and tuning monitoring tools for optimal detection coverage.

• Collaborate with different teams to investigate security alerts and incidents.

• Support incident response activities, including triage, containment, and remediation efforts.

• Contribute to post-incident reviews and continuous improvement of detection and response processes.

4. Threat & Vulnerability Management

• Implement and coordinate the identification, triage, and remediation of vulnerabilities across cloud, endpoints, and infrastructure.

• Support ongoing patch management strategy, vulnerability scanning, and threat intelligence correlation.

5. Endpoint & Infrastructure Hardening

• Implement and enforce hardened configurations for endpoints (Windows/Linux), servers, and network appliances.

• Align baseline configurations with CIS benchmarks and industry best practices.

6. Detection Engineering

• Understand, implement, and tune detection rules and logic in SIEM/XDR platforms for proactive threat identification.

• Collaborate with different colleagues to improve alert fidelity, reduce false positives, and create meaningful security detections.

7. Business Continuity & Risk

• Contribute to BCP/DR planning and implementation with a security-first approach.

• Collaborate with stakeholders to ensure critical business processes remain secure and resilient.

Qualifications

• 5+ years of progressive experience in information security roles, preferably with exposure across application, cloud, and infrastructure domains.
• Bachelor's Degree in Computer Science, Information Technology, Software Engineering, Computer Engineering, Electronics Engineering, or related field.
• Experience in managing and securing cloud platforms.
• Hands-on experience with security tools including EDR, DLP, email security, vulnerability scanners, and SIEM.
• Working knowledge of secure SDLC practices, application security testing, and DevSecOps integration.
• Experience with identity and access management (IAM), conditional access, and zero trust architecture.
• Intermediate background in detection engineering, incident response, and threat modeling methodologies (STRIDE, MITRE ATT&CK, etc.).
• Familiarity with regulatory and compliance standards (e.g., NIST, ISO 27001, GDPR, SOC 2, PCI-DSS).
• Excellent communication and collaboration skills; ability to work across technical and non-technical teams.

By applying to this job, you are permitting our organization to use your personal data solely for recruitment purposes. This data may be shared with third-party services to streamline the processing of your application and with our parent company, ETS London, for recruitment assessment and interview purposes.

We are committed to protecting and respecting your privacy. For more information on how we collect, use, store, and protect your personal data, please read our Privacy Notice or contact our

Data Protection Officer

The Opportunity

• Liaise with external vendors to ensure timely resolution of hardware / software issues
• Investigate vulnerability scan status and findings. Consult to cross functional teams for remediation
• Security reporting and presenting to Senior Executives
• Develop & maintain relationship with internal & external stakeholders
• Maintain current documentation as per contractual obligations
• Participate in ongoing continuous improvement activities
• Updating operational procedures documentation
• Monitoring & actioning Security related Incidents & Requests in ServiceNow
• Utilise & comply with all relevant ITIL processes - Incident, Problem, Change, Capacity, Availability, Asset & Configuration Management

Knowledge | Skills | Abilities:

• At least 5-6 years' experience as a Security Engineer in a managed service environment or large government agency
• Proven experience developing, operating & maintaining security systems
• Extensive knowledge of operating system & database security
• Proficiency in networking technologies, network security and network monitoring solutions
• Knowledge of security systems including anti-virus applications, content filtering, firewalls, authentication systems & intrusion detection & notification systems
• In-depth knowledge of security protocols & principles
• Ability to analyse complex technical issues & develop effective solutions
• Ability to effectively communicate technical information to both technical & non-technical audiences
• Ability to assess security risks & develop appropriate mitigation strategies
• Ability to stay up-to-date with the latest security threats & technologies

What Makes Us NRI?

Transformative digital solutions take more than IT expertise. They take a partner you can count on. With an eye for precision and the vision to help you progress. Who can move quickly to find the right ways forward - so that you're always ahead of tomorrow.

We're that partner for countless businesses. Designing, implementing, and managing digital solutions that are as personalised as they are progressive. That open the doors to greater digital success - across business, government and beyond.

We deliver everything from business strategy and consulting through to infrastructure and managed IT services. We're backed by a global reach that makes us a truly game-changing alternative in the digital services space - with local decision-making and authority. And we're powered not just by technology, but by passionate people who are fearlessly committed to getting it right for our customers.

You've found yours with NRI.

About the Role

We are looking for a skilled Web & API Security Engineer with strong offensive security expertise. In this hands-on role, you will test modern web applications and APIs to find vulnerabilities, simulate real-world attacks, and work with engineering teams to improve our platform's security.

What You'll Do

• Perform manual security testing on web applications and APIs (REST, GraphQL, gRPC).
• Identify vulnerabilities such as logic flaws, authentication bypasses, and chained exploits.
• Simulate real-world attacks and design potential attack paths.
• Test and analyze security controls like WAFs, rate limits, and authentication systems.
• Document findings clearly to help engineers fix issues quickly.
• Explore edge cases and scenarios often missed by automated tools.

What We're Looking For

• Proven experience in penetration testing of web apps and APIs.
• Strong knowledge of HTTP, cookies, sessions, JWTs, CORS, and authentication flows.
• Expertise in AuthN/AuthZ vulnerabilities (OAuth, IDOR, BOLA, SSO bypass).
• Familiarity with API attack methods (replay attacks, schema issues, parameter pollution).
• Proficiency with tools like Burp Suite Pro, Postman, sqlmap, jwt_tool, and scripting (Python/Bash).
• Ability to think like an attacker and uncover hidden risks.

Job Type: Full-time

Pay: Php100, Php120,000.00 per month

Application Question(s):

• Are you comfortable working in a hybrid set up?
• Are you comfortable working night shift?
• Do you have hands-on experience with Burp Suite Pro for manual security testing?
• Have you used of mitmproxy for intercepting and analyzing traffic?

Experience:

• Manual Penetration Testing: 5 years (Required)
• Python or Bash: 5 years (Required)
• API: 5 years (Required)

Work Location: In person

We are seeking a skilled and motivated Security Engineer to join our Enterprise Security and Access team, focusing on the implementation and operational support of SailPoint IdentityNow. This role involves designing, configuring, and maintaining identity governance workflows, ensuring secure and compliant access across the organization.

Key ResponsibilitiesImplement and maintain SailPoint IdentityNow solutions for identity lifecycle managementDevelop and troubleshoot workflows, transforms, and provisioning policiesIntegrate IdentityNow with systems such as Active Directory, LDAP, HRIS, and cloud platformsConduct unit testing and peer reviews to ensure quality and security of IAM configurationsCollaborate with global teams including cybersecurity, development, QA, and product managementDocument processes, change controls, and technical configurationsMentor junior team members and contribute to knowledge sharingSupport compliance initiatives (SOX, GDPR, HIPAA) through access certification and audit reporting

Required Qualifications3+ years of hands-on experience with SailPoint IdentityNowStrong understanding of IAM concepts: provisioning, RBAC, certification, and governanceExperience with scripting (BeanShell, PowerShell), REST APIs, and connector configurationsFamiliarity with backend infrastructure and cloud environments (Azure, AWS)Excellent troubleshooting and documentation skillsBachelor's degree in Computer Science, Information Security, or related field

Preferred SkillsSailPoint IdentityNow certification (Engineer or Professional)Experience with ITSM tools and change management processesKnowledge of security frameworks and regulatory standardsExposure to DevOps and CI/CD pipelinesStrong communication and stakeholder engagement skills

Job description:

The position will play a critical role in our IT security team, focusing on the safeguarding of our computer networks and systems. This role involves assessing our security measures, identifying vulnerabilities, implementing security solutions, and responding to security breaches. The ideal candidate will have a strong foundation in information security principles, be detail-oriented, and possess excellent problem-solving skills.

Key Responsibilities:

• Monitor our network for security breaches and investigate a violation when one occurs.
• Install and use software, such as firewalls and data encryption programs, to protect sensitive information.
• Perform vulnerability testing, risk analyses, and security assessments.
• Plan, implement, and upgrade security measures and controls.
• Develop and document security policies and procedures.
• Conduct internal and external security audits.
• Manage network, intrusion detection, and prevention systems.
• Analyze security breaches to identify the root cause.
• Coordinate with different departments to improve security.
• Stay updated on the latest intelligence, including hackers' methodologies, to anticipate security breaches.
• Provide technical advice to colleagues on how to securely develop and maintain computer systems.

Requirements:

• Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent work experience.
• Preferrably with Professional Certification as Google Cloud Security Engineer.
• Proven work experience as a Security Engineer or similar role.
• Familiarity with various operating systems and databases.
• Experience in using security tools and technologies.
• Knowledge of patch management, firewalls, and intrusion detection/prevention systems.
• Understanding of secure coding practices, ethical hacking, and threat modeling.
• Excellent problem-solving and communication skills.
• Willing to work in graveyard shift.

Interested applicants may also send their CVs to Apply now and be part of our growing team

Job Type: Full-time

Pay: Php40, Php70,000.00 per month

Benefits:

• Company events
• Flextime
• Health insurance
• Paid training
• Work from home

Work Location: Remote

PRINCIPAL RESPONSIBILITIES

· Analyze security breaches and weaknesses, identify security gaps, provide remediation advice, and recommend actionable solutions for risk mitigation.

· Initiate security awareness training for employees.

· Monitor and optimize network and server security performance using monitoring tools to identify and address issues proactively.

· Conduct regular network & security assessments and audits to identify optimization opportunities.

· Develop and maintain comprehensive documentation related to IT infrastructure security configurations, processes, and procedures.

· Provide after-hours support when required in emergencies.

· Lead project implementations, configure and manage cybersecurity tools like Endpoint Protection tools, EPP/EDR, SIEM/XDR, DLP, SASE and File Encryption to ensure timely delivery and successful results.

· Involve in data security projects and activities such as DR, migration, retrieval and protection.

· Provide technical guidance and support to internal teams and customers on security product-related issues.

· Write detailed technical reports for both technical staff and non-technical stakeholders, outlining security issues and solutions.

· Stay updated on the latest cybersecurity threats, vulnerabilities, and trends.

· Work closely with network and systems teams for any security related projects or activities.

TECHNICAL QUALIFICATIONS

· Bachelor's Degree in Computer Engineering or Computer Science

· Familiarity with operating systems (Windows, Linux, Unix, etc.)

· Knowledge of networking protocols and technologies

· Proficiency in using cybersecurity tools such as Wireshark, Nmap, Metasploit, Trend Micro.

· Basic understanding of encryption techniques and cryptography

· Ability to perform security assessments and vulnerability scans

· Certifications such as CISSP, CEH, GSSP, GSEC, CSSLP, GIAC, ISA Cybersecurity is desirable.

· Proven experience in Python, Ansible and other network automation tools.

· Strong understanding of cybersecurity principles, protocols, and best practices.

· Excellent problem-solving and analytical skills.

· Strong communication and teamwork skills.

· Proven experience in Security devices and tools like firewall, EDR, SIEM, Endpoint Protection, SASE and vulnerability management tools

· Familiarity with compliance frameworks such as SOC 2, ISO 27001, and PCI.

Let's be #BrilliantTogether

Overview
The role's primary focus is protecting the Firm's information security interests, leveraging advanced security tools and applications. As part of the Information Security Office (ISO), this role will work closely with technology functions to identify areas of improvement and supporting initiatives to promote information security within the organization.

Responsibilities

• Planning, implementing, managing, monitoring, and upgrading security measures for the protection of the organization's data, systems, and networks.
• Troubleshooting Security and network related problems.
• Responding to all system and/or network security issues.
• Ensuring the organization's data and infrastructure are protected by enabling the appropriate security controls.
• Participating in the change management process.
• Testing and identifying network and/or system security vulnerabilities.
• Evaluating the organization's security requirements and establishing best practices and standard accordingly.
• Daily administrative tasks, reporting, and communication with the relevant stakeholders in the organization.

Required Qualifications

• Bachelor's degree in information technology or similar IT related course.
• Must have 5-12 years of Security Engineering experience including establishing and monitoring information security controls.
• Proven and strong technical writing capability – be prepared to provide and/or discuss samples.

Essential Skills

• 5+ years of real-world experience in one or more of the following security tools and technologies:

• Microsoft Sentinel

• Microsoft Defender Suites (Identity, Endpoint, Security, Cloud, others)
• CyberArk Privileged Access Management (PAM)
• Zscaler Cloud Security
• Tenable Vulnerability Management

• Physical Security

• Excellent verbal and written communication skills, with the ability to coordinate effectively with vendors and global teams; strong administrative capabilities in task development, time management, and resource allocation to meet target deadlines.

• Demonstrated troubleshooting, follow-through, and critical-thinking skills.
• Have a high-level of risk intelligence and security awareness.
• Relevant vendor and/or vendor neutral certification(s) such as Microsoft Security Operations Analyst (SC-200), Microsoft Cybersecurity Architect (SC-100), CyberArk Trustee / CyberArk Defender / CyberArk Sentry / CyberArk Guardian, Zscaler Digital Transformation Administrator (ZDTA) / Zscaler Digital Transformation Engineer (ZDTE), CASP+, ISC2 SSCP.

Work Shift and Arrangement

• Embrace a dynamic work environment to work on a mid-shift (2:00PM-11:00PM PHT) or graveyard shift (11:00PM-8:00AM PHT).
• On-call rotation participation.
• Amenable to go on a hybrid working arrangement (at least 3 days work onsite per week) and work in Makati City.

What You Can Expect From Us
At ISS STOXX, our people are our driving force. We are committed to building a culture that values diverse skills, perspectives, and experiences. We hire the best talent in our industry and empower them with the resources, support, and opportunities to grow—professionally and personally.

Together, we foster an environment that fuels creativity, drives innovation, and shapes our future success.

Let's empower, collaborate, and inspire.

Let's be #BrilliantTogether.

About ISS STOXX
ISS STOXX GmbH is a leading provider of research and technology solutions for the financial market. Established in 1985, we offer top-notch benchmark and custom indices globally, helping clients identify investment opportunities and manage portfolio risks. Our services cover corporate governance, sustainability, cyber risk, and fund intelligence. Majority-owned by Deutsche Börse Group, ISS STOXX has over 3,400 professionals in 33 locations worldwide, serving around 6,400 clients, including institutional investors and companies focused on ESG, cyber, and governance risk. Clients trust our expertise to make informed decisions for their stakeholders' benefit.

Visit our website:

View additional open roles:

Institutional Shareholder Services ("ISS") is committed to fostering, cultivating, and preserving a culture of diversity and inclusion. It is our policy to prohibit discrimination or harassment against any applicant or employee on the basis of race, color, ethnicity, creed, religion, sex, age, height, weight, citizenship status, national origin, social origin, sexual orientation, gender identity or gender expression, pregnancy status, marital status, familial status, mental or physical disability, veteran status, military service or status, genetic information, or any other characteristic protected by law (referred to as "protected status"). All activities including, but not limited to, recruiting and hiring, recruitment advertising, promotions, performance appraisals, training, job assignments, compensation, demotions, transfers, terminations (including layoffs), benefits, and other terms, conditions, and privileges of employment, are and will be administered on a non-discriminatory basis, consistent with all applicable federal, state, and local requirements.

About Trustwave
Trustwave is a leading cybersecurity and managed security services provider focused on threat detection and response. We uncover threats that others can't and respond quicker than others can to protect against the devastating impacts of cyberattacks. We're a world-class team of cyber consultants, threat hunters and researchers serving clients in 96 countries. At Trustwave, you can learn alongside the best, make a personal impact on a global scale, and solve new challenges every day. Learn more about us at

.

Responsibilities

• Firewall Administration: Administer firewall platforms, ensuring proper functioning, software updates, and patch management.
• Firewall Configuration and Security Policy Development: Configure, manage, and maintain firewall devices and related security infrastructure to safeguard the customer's network. Develop and enforce security policies, access controls, and firewall rules to protect against unauthorized access, data breaches, and cyber threats.
• Configure, manage, and upgrade FW, IDS, IVS, IPS, NAC, Encryption and a wide variety of other security products/appliances
• Use strong TCP/IP networking skills to perform network troubleshooting to isolate and diagnose common network problems
• Respond to inbound requests via phone and other electronic means for technical assistance with managed services
• Respond in a timely manner (within documented SLA) to support, threat and other cases
• Document actions in cases to effectively communicate information internally and to customers
• Respond to needs and questions of customers concerning their access to network resources through their managed device.
• Adhere to policies, procedures, and security practices
• Resolve problems independently and understand escalation procedure

Required Technical Experience

• Requires strong critical thinking and problem-solving skills
• Strong understanding and practical experience of network security concepts, including threat detection, intrusion detection, and vulnerability management.
• Requires significant experience with Linux, Windows and Network Operating Systems
• In-depth knowledge and experience of firewall technologies, including Cisco ASA, Palo Alto, Fortinet, and other leading firewall platforms.
• Requires working knowledge with VPN technologies, network protocols, and network architecture.
• Knowledge of configuring, upgrading, and maintaining all aspects of Palo Alto Panorama network management software.
• Should have recent, documented professional expertise with several of the following security products: Cisco, Palo Alto, IPTables, Snort, Meraki, Fortinet, Checkpoint, or other technologies
• Strong, recent professional experience in Information Security and Networking.

Key Competencies

• Must have strong written/verbal communication skills
• Must be detail oriented with strong customer service skills
• Requires strong interpersonal and organization skills
• Take responsibility for customer satisfaction and overall success of managed services
• Interface with a variety of customers in a polite, positive, and professional manner

Desirable Skills

• Palo Alto PCNSE and or Cisco CCNA or CCNP Security certification highly desirable.
• A strong passion for information security and data security
• Preferred candidates will have multiple certifications in Security/Networking, including but not limited to: Security+, GSEC, GCIA, GCIH, CISA, or CISSP.
• In addition to English, additional language skills are also desired, including Spanish, Portuguese, Mandarin or Urdu.

Education

• A bachelor's degree in a security discipline or a related field is preferred. However, a minimum of a high school diploma or equivalent is required for employment.

This is a remote opportunity open to anyone legally authorized to work in the Philippines. Guided by our flexible workplace philosophy,
Moments That Matter
, people gather in the office when in-person interaction is most impactful; full-time remote employees may be asked to travel occasionally based on the needs of the team and the business.

Trustwave is an Equal Opportunity Employer. We're committed to treating everyone with respect, one of our core TRUST Values, and strive to create a culture that empowers all Trustees to be their best, most authentic selves. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age, or any other federally protected class.

To All Agencies
Please, no phone calls or emails to any employee of Trustwave outside of the Talent Acquisition team. Trustwave's policy is to only accept resumes from agencies via the Trustwave Agency Portal. Agencies must have a valid fee agreement in place and they must have been assigned the specific requisition to which they submit resumes, by the Talent Acquisition team. Any resume submitted outside of this process will be deemed the sole property of Trustwave and in the event a candidate is submitted outside of this policy is hired, no fee or payment of any kind will be paid.

Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats.

Summary: As a Security Engineer, you will engage in a variety of tasks that involve applying your security expertise to design, build, and protect enterprise systems, applications, data, assets, and people. Your typical day will include collaborating with various teams to ensure the security of information and infrastructures while providing solutions to safeguard against cyber threats. You will also be responsible for making key decisions that impact the security posture of the organization, ensuring that all systems and processes are resilient against potential vulnerabilities. Roles & Responsibilities: - Expected to be an SME. - Collaborate and manage the team to perform. - Responsible for team decisions. - Engage with multiple teams and contribute on key decisions. - Provide solutions to problems for their immediate team and across multiple teams. - Develop and implement security policies and procedures to enhance the security framework. - Conduct regular security assessments and audits to identify vulnerabilities and recommend improvements. - Stay updated on the latest security trends and technologies to ensure the organization is protected against emerging threats. Professional & Technical Skills: - Required Skill: Expert proficiency in Security Information & Event Management (SIEM) Platform Operations. - Strong understanding of network security protocols and best practices. - Experience with incident response and threat hunting methodologies. - Familiarity with security compliance standards and frameworks such as ISO 27001, NIST, or GDPR. - Proficient in using security tools and technologies for monitoring and analysis. Additional Information: - The candidate should have minimum 5 years of experience in Security Information & Event Management (SIEM) Platform Operations. - This position is based at our Manila office. Minimum 5 year(s) of experience is required