94 Security Engineering jobs in the Philippines

*** This is an onsite role based in Ho Chi Minh City, Vietnam - relocation assistance will be provided ***

About the role

You will be responsible for facilitating the business's transition to new IT systems and exploring opportunities securely. This will involve enforcing security policies and designing solutions that safeguard business value against security risks, threats, and vulnerabilities. To define the fundamental principles, conceptual and logical security models, and controls essential for designing a secure system solution that safeguards business values. To provide consultation and support to the business, project teams, and technical practitioners in identifying and addressing critical security issues. To engage with senior management and project leaders to ensure that solution requirements are updated to incorporate security needs.

Your Responsabilities

• Over 5 years of experience in Solution Architecture with a strong focus on security.
• Delivering thought leadership and Security Architecture expertise in a consultative manner to help Business and Project teams understand the implications of proposed system changes and solutions. This includes navigating challenging discussions and influencing colleagues to ensure that solution requirements adequately address security needs.
• Oversee major architectural decisions in collaboration with senior management, sponsors, and project teams to ensure secure outcomes and compliance with governance practices, including timely notifications to Technology Architecture Forums.
• Providing conceptual and logical security design frameworks to establish the Security Architecture for solutions. This includes taking into account the business drivers for security and detailing controls across various domains such as Identity and Access Management, Data and Media Protection, Security Information and Event Management, Communications, Configurations, and Vulnerability Management.
• Analyzing non-standard flows within systems, applications, and proposed solutions to identify risks, security threats, and vulnerabilities, which will help determine the necessary security control components and countermeasures.
• Utilizing and enhancing existing control reference patterns while developing new ones to define integration approaches, use cases, reuse strategies, and technical references for Enterprise security capabilities.
• Actively managing risk and assurance requirements when creating designs that alter the risk posture within the established Risk Appetite, ensuring compliance throughout the process.
• Guiding and mentoring individuals in the practical implementation of security and risk management concepts, principles, strategies, and applicable industry standards. Assisting in the development of specific skills and providing insights to promote both professional and personal advancement.

Skill and experience required

• Over 10 years of experience in the technology industry, including more than 2 years in Security Architecture
• Alternatively, 5+ years of experience in Solution Architecture with substantial exposure to security practices

*** This is an onsite role based in Ho Chi Minh City, Vietnam - relocation assistance will be provided ***

COMPANY PROFILE:

A reputable and established BPO company dedicated to delivering comprehensive business outsourcing solutions to its clients.

Position: Vulnerability Management Analyst

Industry: Business Process Outsourcing (BPO)

Location: Pasay City

Work Schedule: Mid Shift (starts at 4:00 PM or 5:00 PM)

Salary Range: Php 60,000 – Php 70,000

Work Arrangement: Hybrid setup (1-2x RTO) per month

QUALIFICATIONS:

• Bachelor's degree in Computer Science, Information Systems, Cyber Intelligence, or a related discipline
• 1–2 years of experience in cybersecurity, specifically in threat detection, vulnerability assessment, or penetration testing
• Knowledge in cybersecurity fundamentals and attack methodologies
• Hands-on experience in creating Nuclei templates
• Proficiency with tools used in network and web application penetration testing, such as Burp Suite, Nmap, Fiddler, OWASP ZAP, Metasploit, or Wireshark

RESPONSIBILITIES:

• Perform regular vulnerability assessments and support remediation efforts
• Detect, evaluate, and report potential security threats
• Collaborate with internal teams to enhance system security
• Maintain and improve security tools and scripts for threat detection
• Participate in incident response and resolution activities

RECRUITMENT PROCESS (Online)

• HR Interview
• Technical Assessment
• Interview with Hiring Manager
• Job Offer

Job Types: Full-time, Permanent

Pay: Php60, Php70,000.00 per month

Benefits:

• Company events
• Employee discount
• Health insurance
• Life insurance
• Opportunities for promotion
• Pay raise
• Promotion to permanent employee

Work Location: In person

Introduction
We are seeking for a Vulnerability Management Analyst to support daily operations of our vulnerability assessment platform. This role involves executing scheduled scans, managing asset groupings, tracking remediation efforts, and generating dashboards and reports. The ideal candidate is detail-oriented, collaborative, and eager to grow in the cybersecurity and risk management field.

Your Role And Responsibilities

• Execute scheduled and ad-hoc vulnerability scans, including discovery, compliance, and web application scans.
• Monitor scan schedules and ensure timely completion across in-scope systems and assets.
• Manage and update asset groupings, scan configurations, and scan credentials within the VA platform.
• Analyze scan findings, generate posture reports, and escalate critical issues based on defined SLAs.
• Support in generating weekly vulnerability dashboards and monthly executive summary reports.
• Track remediation activities in collaboration with server, network, and application teams; provide timely updates.
• Assist in agent deployment, configuration, and troubleshooting across supported assets.
• Conduct ad-hoc scanning requests from internal audit, risk, or operational teams and prepare tailored reports.
• Support documentation and SOPs related to scanning procedures, asset onboarding, and credential management.
• Contribute to audit readiness by maintaining accurate records of scans, findings, and remediation status.
• Collaborate with the SME and security teams in maintaining platform stability, versioning, and health.

Preferred Education
Bachelor's Degree

Experience
Required technical and professional expertise

• Hands-on experience with VA platforms such as Qualys, Tenable, or Rapid7.
• Basic understanding of asset discovery, vulnerability scoring (CVSS), and common remediation strategies.
• Strong attention to detail and ability to track multiple remediation efforts across different teams.

Soft Skills

• Strong analytical and problem-solving abilities with keen attention to detail.

Preferred Certifications
Preferred technical and professional experience

• Tenable Certified Analyst or Qualys Certified Specialist or similar certifications
• GIAC Security Essentials (optional)

Do you want to take the first step in making Filipinos' lives better everyday? Here in GCash we want to stay at the forefront of the FinTech industry by creating innovative, meaningful, and convenient financial solutions for the nation G ka ba? Join the G Nation today

Who You'll Be Working With
If you have a strong background in IT, computer science, or software engineering, and are analytical, technologically savvy, solutions and process-focused, then the Technology & Operations team may be for you

You'll Be Responsible For The Following

• Defining and leading the overall strategy for enterprise-wide vulnerability management and risk assessment.
• Developing and enforcing standards, policies, and procedures for vulnerability assessments and remediation.
• Representing vulnerability management in risk committees, audit reviews, and executive briefings.
• Overseeing the end-to-end vulnerability lifecycle including scanning, validation, risk classification, ticketing, remediation tracking, and metrics reporting.
• Implement KPIs and dashboards to measure the effectiveness and maturity of the program (e.g., SLA compliance, Mean-Time-To-Remediate).
• Maintain alignment with NIST, ISO 27001, CIS Controls, PCI DSS, and other security frameworks and standards.
• Managing and mentoring a team of vulnerability analysts, engineers and managers.
• Coordinating with Security Defense Team, IT Ops, AppSec, and DevSecOps teams to support patching and configuration remediation activities.
• Oversee the deployment, configuration, and tuning of scanning tools (e.g., Qualys, Nessus, Rapid7, CrowdStrike Falcon Spotlight).
• Lead efforts in integrating vulnerability data into ticketing systems (e.g., JIRA, ServiceNow) and CMDBs for accurate asset-risk correlation.

We're Looking For

• Bachelor's or Master's degree in Cybersecurity, Information Technology, or a related field
• 8–12 years of experience in IT security with 5+ years in vulnerability management and risk assessment.
• 5+ years of experience in a managerial or leadership role.
• Strong understanding of CVSS, EPSS, threat intelligence, and risk-based prioritization models.
• Experience with vulnerability scanning platforms and asset discovery tools.
• Familiarity with cloud security (AWS, Azure, GCP, Alibaba), container security, and CI/CD pipelines.
• Excellent communication, analytical thinking, and stakeholder management skills.
• Relevant certifications preferred (e.g., CISSP, CISM, GIAC GCCC, OSCP, CRISC).

What We Offer
Opportunity for career growth and development in the #1 FinTech company in the country Working with a dynamic and highly collaborative team who want to change the game A company that values their people with highly competitive and flexible compensation and benefits package

Key Responsibilities:

• Lead the deployment, configuration, and initial operationalization of in the organization.
• Integrate with asset inventory systems (e.g., CMDB), directory services, and other security tools.
• Define asset groups, tagging policies, and scan zones aligned with business units, device types, and criticality.
• Configure scan policies for different asset types, including authenticated and unauthenticated scans.
• Ensure proper coverage of external and internal networks, including firewalls, servers, and cloud environments.
• Troubleshoot scan failures and coordinate with system and network teams for scan access and permissions.
• Establish user roles, permissions, and access controls within for different stakeholders.
• Collaborate with the Security, Infrastructure, and Application teams to validate asset visibility and scan accuracy.
• Create custom dashboards, reports, and alerting based on vulnerability severity, asset criticality, and SLAs.
• Document setup procedures, scan configurations, and operational guidelines.
• Stay up-to-date on Tenable best practices and updates, applying improvements as needed

Qualifications

Professional & Technical Skills:

• Bachelor's degree in Information Technology, Cybersecurity, or a related field (or equivalent experience).
• 3+ years of experience in vulnerability management, security engineering, or network security roles.
• Hands-on experience setting up and administering (or Tenable.SC/Nessus Pro)
• Strong understanding of vulnerability scanning, asset discovery, risk prioritization, and remediation workflows
• Familiarity with firewall technologies, network segmentation, and enterprise architecture
• Experience with scripting (PowerShell, Python, Bash) and automation is a plus
• Knowledge of governance frameworks (e.g., NIST, ISO and security best practices
• Certifications such as CompTIA Security+, CEH, or Tenable Certified Professional are a plus.

Additional Requirements:

• Strong analytical and troubleshooting skills
• Attention to detail and process-oriented mindset
• Excellent communication and documentation skills
• Ability to work independently and collaboratively across teams
• Comfortable in a fast-paced, evolving IT environment
• Must be willing to work on a shifting schedule at our Cubao office (hybrid work set-up)

What's in it for you?

• Competitive Total Rewards (Compensation, Performance Bonus, 13th Month Pay, Day 1 HMO & Life Insurance Coverage)
• Expanded maternity leave up to 120 days*
• Expanded paternity leave up to 30 days*
• Flexible Working Arrangements*
• Healthy and Encouraging Work Environment
• Company-sponsored trainings like upskilling and certification
• Employee Stock Purchase Pan
• Loyalty and Christmas Gift
• Inclusion and Diversity Benefits
• Car and housing plan*

*Terms & Conditions apply

Reference Number

Position Level

TL5

Department

Information Technology Department

Division

Cybersecurity and Compliance Unit, ITD

Location

Asian Development Bank Headquarters

Date Posted

Tuesday, August 19, 2025

Closing Date

Tuesday, September 2, :59 p.m Manila Time, 0800 GMT)

Join Our Mission to Foster Prosperity in Asia

Are you ready to make a difference on the future of Asia and be a catalyst for positive change? We are thrilled to offer a unique opportunity to become an important part of the prestigious Asian Development Bank (ADB). At ADB, our mission is simple yet powerful: to alleviate poverty and promote sustainable development in the Asia-Pacific region.

Organizational Setting and Reporting Relationship

The position is assigned in the Cybersecurity and Compliance Unit (ITOD-CS) within the Information Technology Department (ITD). ITD manages the information systems and technology services required for ADB's Headquarters and Field Offices. ITOD-CS sets the Information Security standards, policies, incident management and Business Continuity approaches for Technology within ADB. The team also monitors compliance with the standards and policies within ITD.

You will be based at our Headquarters in Manila, Philippines. You will report to the Designated Technical International Staff and Senior Officer (as applicable).

Your position title upon appointment is IT Officer (Information Security).

Your Role

As an IT Officer (Security Governance and Architecture), you will oversee the cybersecurity safeguards throughout the system development life cycle (SDLC) for ADB's IT systems and services. You will work closely with other teams in ITD and business users of ADB's systems to ensure they understand the security requirements and enforce the agreed security controls.

You will:

• Facilitate the end-to-end security clearance process for new solution deployments and IT projects by working closely with project/deployment teams to understand the security architecture, draft the security clearance checklist by identifying applicable security controls based on the nature of the IT project/solution and guide on how to fulfill these requirements.
• Oversee the end-to-end security testing process for ADB's business applications and underlying infrastructure to ensure that security findings are addressed, well-documented, and remediated.
• Assess the day-to-day IT change requests (e.g. system enhancements) and ad-hoc consultations from ITD teams and advise applicable security requirements.
• Work closely with project/deployment teams, change administrators, and other relevant teams to guide compliance with security requirements.
• Work closely with ITD risk focal and action owners to monitor the closure of operational risks identified (e.g., due to non-compliance with security requirements).
• Operate security tools/platforms (e.g. web application firewalls) and assist in the enhancement/replacement of these tools.
• Prepare technical evaluation criteria for evaluating security solutions and facilitate request for proposals and proof-of-concept tests.
• Support the cyber security due diligence process of third-party technology solution/service providers.
• Develop, update, or revise cybersecurity architecture standards, guardrails, and processes.
• Develop security training materials, such as presentations and handouts.
• Identify opportunities to improve or strengthen security controls or processes in own areas of work.
• Assist in conducting risk assessments from a security architecture perspective.
• Take up other duties and tasks as assigned.

You will need:

• Bachelor's degree in any IT-related domains, such as Information Systems Management, Information Security, or Computer Science preferably with advance training.
• At least 8 years relevant work experience in IT Security. Relevant certifications in IT security / governance such as CISSP, CISA, CISM, GSEC are highly favored.
• Knowledge in cybersecurity and IT governance frameworks and standards such as NIST CSF, SWIFT CSCF, CIS, COBIT, ITIL, and ISO 27000 series. Actual experience in their implementation and operation is an advantage.
• Fundamental knowledge of cloud computing technologies, such as Microsoft Azure, Amazon Web Services. Relevant experiences and / or certifications are an advantage.
• Basic knowledge about penetration testing methodologies, tools and findings (such as those from OWASP). Actual experience and / or certifications (such as those from Offensive Security or GIAC) are an advantage.
• Demonstrated critical thinking skills to perform security analysis needed in the design, review, or assessment of system architecture, application functions and IT infrastructure.
• Strong communication and interpersonal skills and ability to operate in a matrixed environment, and the ability to articulate / present ideas in a verbal or written context.
• High attention to details and a methodical approach to daily tasks.
• Proficiency in productivity tools like Microsoft 365, Power Platform.
• Please refer to the link for ADB Competency Framework for Technical Local Staff grade 5.

Benefits

ADB offers a rewarding salary and a comprehensive benefits package. The salary will be based on ADB's standards and comparator markets, taking into account your qualifications and experience.

• Retirement plan
• Medical and health benefits
• Paid leave (including parental)
• Life and other insurance plans
• Staff development

Additional Information

This appointment is open to internal and external applicants.

This is a fixed term appointment with option to renew, initially for a period of up to 3 years, or up to the Normal Retirement Date (NRD), whichever comes earlier, for the purpose(s) and conditions determined by ADB, in accordance with Administrative Order No Recruitment and Appointment). After the initial fixed-term period, ADB may choose to renew the appointment for up to an additional 3 years or not renewed. This decision will be made in the overall interest of ADB, based on factors including but not limited to the requirement of Staff's particular blend of skills and experience for the medium-term work program of the organizational unit, sufficient funding to cover the renewed period, and Staff's performance and suitability for employment. There is no limit to the number of renewals up to NRD. However, this appointment is not convertible to a regular appointment.

About Us

Asian Development Bank (ADB) is an international development finance institution headquartered in Manila, Philippines and is composed of 69 members, 50 of which are from the Asia and Pacific region. ADB is committed to achieving a prosperous, inclusive, resilient, and sustainable Asia and the Pacific, while sustaining its efforts to eradicate extreme poverty. ADB combines finance, knowledge, and partnerships to fulfill its expanded vision under our Strategy 2030.

ADB only hires nationals of its 69 members.

To view ADB Organizational Chart, please click here.

ADB wants to ensure that everyone is treated with respect and given equal opportunities to work in an inclusive environment. ADB encourages all qualified candidates to apply regardless of their racial, ethnic, religious and cultural background, gender, sexual orientation or disabilities. Women are highly encouraged to apply.

Visit ADB Careers FAQ for more information.

Stay up to date Subscribe to our newsletter and get the latest issues, news, events, jobs and data in your e-mail inbox.

Lexmark is now a proud part of Xerox, bringing together two trusted names and decades of expertise into a bold and shared vision.

When you join us, you step into a technology ecosystem where your ideas, skills, and ambition can shape what comes next. Whether you're just starting out or leading at the highest levels, this is a place to grow, stretch, and make real impact—across industries, countries, and careers.

From engineering and product to digital services and customer experience, you'll help connect data, devices, and people in smarter, faster ways. This is meaningful, connected work—on a global stage, with the backing of a company built for the future, and a robust benefits package designed to support your growth, well-being, and life beyond work.

JOB SUMMARY:

Xerox is in search of a Network Security Engineer with a passion for designing, configuring, and enhancing a global enterprise network. The selected candidate will collaborate with multiple teams to ensure the implementation and maintenance of Xerox's enterprise network infrastructure and security policies. This role involves working with architects and business teams to ensure the confidentiality, integrity, and availability of the enterprise network and connected systems. The Network Security Engineer will also be responsible for documenting procedures, coordinating implementations, and eliminating barriers to achieve desired outcomes. Additionally, they will liaise with other IT operation teams to resolve any network-related issues. The ideal candidate must possess robust communication skills and the ability to manage competing priorities effectively.

WHAT YOU WILL BE DOING:

• Configuration and delivery of multiple network security systems to include next gen firewalls, unified threat management services, and Secure Access Service Edge (SASE).
• Execution of network configuration processes such as firewall configurations, network security reports, network security solution configurations, network infrastructure hardening, and software/hardware licensing.
• Creation of logical diagrams, datacenter diagrams, and network operational procedures.
• Development and use of automation to execute repeatable tasks and processes.
• Coordination of high-impact infrastructure changes and outages during on and off-hours.
• Collaboration with architecture and operational teams providing design feedback, process improvement opportunities, and potential solution enhancements.
• Act as the escalation contact for the network operations and incident managers.
• Light travel may be required to deliver certain projects.
• Be an advocate and change leader for network-security initiatives and operational processes with a goal of improving the overall culture.

DESIRED QUALIFICATIONS, SKILLS, EXPERIENCE

• Bachelor's degree in computer engineering or related field with 2-4 years of networking and security experience.
• Knowledge of network security technologies including Data-Loss Prevention, Sandboxing, Network Antivirus, Cloud Application Security Brokers, Web Application Firewalls, AAA, and SSL Inspection.
• Knowledge of network security concepts such as Zero-Trust and Least Privilege.
• Knowledge of network services, including IPSec, TLS, PKI, and logging/alerting systems.
• Knowledge of Secure Access Service Edge (SASE) and Network Access Control (NAC) technologies.
• Knowledge of scripting and automation (Python).
• Experience configuring Fortinet, Cisco, Infoblox, Microsoft Azure, Amazon Web Services (AWS), Palo Alto, Checkpoint, and Zscaler.
• Familiar with NIST CSF, CIS, and ISO 27001 information security frameworks.
• Advanced troubleshooting and diagnostic skills.
• Excellent verbal and written communication skills.
• Proven ability to lead and manage multiple priorities with proven organizational skills with the ability to manage multiple tasks with changing priorities.
• Strong ability in multiple technologies, analytical techniques, and leadership skills.
• Familiar with IT operational processes (Event, Incident, Change, Problem, ITSM), development frameworks (Agile, SAFe), and service management frameworks (ITIL).

PREFERRED CERTIFICATIONS:

• Microsoft Azure Certifications (AZ-900, AZ-700, AZ-500, AZ-204)
• CompTIA + Certifications (Network+, Security+, CASP+)
• Cisco Certifications (CCNA, CCNP)

EDUCATIONAL QUALIFICATIONS:

• Bachelor's degree in Information Technology, Computer Science, Engineering, Cybersecurity, or related field

YEARS OF EXPERIENCE IN THIS FIELD:

• 5+ years of Information Technology experience

Job Types: Full-time, Permanent

Benefits:

• Company events
• Employee discount
• Flexible schedule
• Flextime
• Free parking
• Health insurance
• Life insurance
• On-site parking
• Opportunities for promotion
• Paid training
• Work from home

Work Location: In person

JOB SUMMARY:

Senior Network Security Engineer (NSE) will play a critical role in designing, implementing, and managing the firewall infrastructure to protect Clients' network and sensitive information from cyber threats. NSE will work closely with cross-functional teams to assess security risks, develop firewall policies, and respond to security incidents.

Work-from-home option is not offered for this position.

DUTIES & RESPONSIBILITIES:

• Design, deploy, configure, and maintain firewall systems to safeguard the Clients' network infrastructure.
• Develop and enforce firewall policies and access controls to ensure compliance with industry standards and regulatory requirements.
• Monitor firewall logs and security events to identify and mitigate potential security vulnerabilities or breaches.
• Collaborate with network engineers and other IT stakeholders to integrate firewall solutions into the overall network architecture.
• Conduct regular security assessments and audits of firewall configurations to identify weaknesses and recommend improvements.
• Investigate and respond to security incidents, including analyzing security alerts, performing root cause analysis, and implementing remediation measures.
• Stay up-to-date on emerging threats, vulnerabilities, and security technologies to proactively enhance the organization's security posture.
• Provide guidance and mentorship to junior members of the security team, and contribute to knowledge sharing initiatives.

Qualifications:

• Bachelor's of Science in Computer Science, Information Technology or related field
• Proven experience with at least five (5) working experience as a security engineer, with a focus on firewall technologies.
• In-depth knowledge of firewall platforms such as Cisco ASA, Palo Alto Networks, Juniper SRX, FortiGate, Check Point etc.
• Strong understanding of networking concepts, protocols, and security principles.
• Hands-on experience with firewall configuration, rule management, and troubleshooting.
• Experience with intrusion detection/prevention systems (IDS/IPS) and other security tools.
• Relevant industry certifications.
• Excellent analytical and problem-solving skills, with the ability to assess complex security issues and develop effective solutions.
• Strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams.

Job Types: Full-time, Permanent

Benefits:

• Company events
• Flextime
• Health insurance
• Opportunities for promotion

Work Location: In person