101 Security Operations jobs in the Philippines

Qualifications:

• Bachelors degree graduate
• 1 and ½ - above years of experience in SOC
• Hands-on experience on various security tools (SIEM, EDR (Endpoint Detection and Response) and Email Security Appliance
• Solid foundation on security concepts such as Network Security, Endpoint security, Mail Security, MITRE ATT&CK framework, Adversary TTPs, and Vulnerabilities

Job Type: Permanent

Pay: Php70, Php80,000.00 per month

Application Question(s):

• What security tools (ex: SIEM, EDR (Endpoint Detection and Response) and Email Security Appliance?

Experience:

• SOC: 1 year (Required)
• SIEM: 1 year (Preferred)
• Network security: 1 year (Required)
• Endpoint Security: 1 year (Required)
• Mail Security : 1 year (Preferred)

Work Location: In person

SECURITY OPERATIONS OFFICER in NCR

For full job description please see PDF file on Civil Service Commission site by clicking on this job ad. To apply, please kindly follow the procedure described in the PDF file.

COMPANY PROFILE: Supplier of technologically advanced solutions that improve healthcare providers' financial performance and patient experience.

Position: Security Operations Analyst

Company Industry: BPO Industry

Work Location: Quezon City

Work Schedule: Nightshift/Shifting schedule

Salary: Php 60,000 (fixed, non-negotiable) + annual bonuses

Work setup: 4x onsite, 1x WFH

JOB REQUIREMENTS:

Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or related field

3years above of experience in Security Operations Center (SOC) or similar role

Preferably with experience in BPO Industry and global exposure.

Familiarity with network security, firewalls, IDS/IPS, and vulnerability management

Excellent problem-solving, communication, and analytical skills

Recruitment Process: online interview

This is Direct hirings

Job Types: Full-time, Fixed term

Contract length: 12 months

Pay: Php50, Php60,000.00 per month

Work Location: In person

JOB QUALIFICATIONS:

• Bachelor's degree in IT, Computer Science, or related field
• At least 2 years of experience in a SOC or cybersecurity operations role
• Proficient in SIEM tools, IDS/IPS, and incident handling workflows
• Relevant certifications (e.g., Security+, CEH, or equivalent) are preferred

JOB DESCRIPTIONS:

• Monitor and analyze security events and incidents from various sources
• Conduct initial triage and escalate based on defined procedures
• Support incident response and threat intelligence efforts
• Prepare reports and maintain documentation of security events

Job Type: Full-time

Application Question(s):

• Availability to start?

Experience:

• SOC: 2 years (Required)

Work Location: In person

The Security Operations Analyst (SOC) will be responsible for monitoring, reporting and analyzing the confidentiality, integrity and availability of all the information assets. They must be able to analyze all available information including logs, network traffic and all other data emanating from all security systems in place to determine the existence of anomalies, security breaches and all other related security incidents. They will coordinate triage with stakeholders on security alerts. They will ensure all security systems are up-to-date in terms of software and hardware changes. They will plan & document all data and information relating to security including physical security.

The SOC analyst will have opportunity to grow security career, earn advance security certifications (e.g. SANS/GIAC, Elearning Security, ISC2 , Offensive Security, Comptia certifications and more) and learn advance security skills such as SIEM, Incident Response, Digital Forensics, Malware Reverse Engineering, Threat Intelligence, Attacker Tactic & Techniques and other security technologies.

QUALIFICATIONS

• Graduate of any collegiate course preferably in the field of Information and Communication Technology
• Work related experience of up to one (1) year performing security monitoring, incident response.
• Fresh graduates who are passionate with cybersecurity are welcome to apply
• Experience in handling security technologies such as SIEM, EDR, Firewall a plus
• Entry level Security related certifications such as Certified in Cybersecurity, Comptia Sec+ or CYSA+ a plus.
• Attentive to details and meticulous with documentation, and processes.
• Excellent work ethics, hardworking with good interpersonal skills
• Driven and goal-oriented
• Willing to Work in Nexus CEBU
• Willing to work on shifts

Job Types: Full-time, Permanent

Benefits:

• Health insurance
• Life insurance
• Paid training
• Work from home

Work Location: In person

Overseeing the Managed Cybersecurity Services ensuring risks exposure are on manageable level.

Key Responsibilities:

• Manage threat detection and response by Identifying and mitigating security risks to prevent breaches
• Leading security investigations and implementing corrective actions for security incidents.
• Enforce policies ensuring compliance with security regulations and best practices.
• Promote continuous improvement enhancing security frameworks to adapt to evolving threats.
• Monitor security system resources and capacity utilization
• Monitor key performance indicators and service level agreements
• Deliver project requirements of IT Security Operations projects
• Provide IT/OT security consultation
• Managing security personnel and optimizing operational efficiency. Provide leadership and technical supervision for the whole Security Operations Team

Skills and qualifications:

• Bachelor's or master's degree in computer science, Information Systems, or a related field.
• Has at least 8 years of Information Technology experience with solid background in Information Security Management
• Proven experience in Security Operations Center, Incident Management and Security Adminsitration
• Strong knowledge of security frameworks, standards, and best practices (NIST, ITIL, COBIT, ISO/IEC 27001 and 27002, Project Management).
• Excellent project management skills, including the ability to manage multiple projects simultaneously.
• Experience in business development, sales, or marketing within the IT security industry.
• Strong understanding of IT security technologies, solutions, and services.
• Ability to build and maintain relationships with clients, partners, and key stakeholders.
• Excellent communication, negotiation, and interpersonal skills.
• Ability to work effectively in cross-functional teams and manage relationships with stakeholders

Require knowledge on several areas, including:

• Current security tools
• Business security practices and procedures
• Hardware/software security implementation
• Encryption techniques/tools
• Communication protocols

The following certifications (or equivalent) may also be required:

• CISSP
• CISM
• CISA
• CEH
• Security+
• MCSE: Security or MCSA

The Security Operations Analyst (SOC) will be responsible for monitoring, reporting and analyzing the confidentiality, integrity and availability of all the information assets. They must be able to analyze all available information including logs, network traffic and all other data emanating from all security systems in place to determine the existence of anomalies, security breaches and all other related security incidents. They will coordinate triage with stakeholders on security alerts. They will ensure all security systems are up-to-date in terms of software and hardware changes. They will plan & document all data and information relating to security including physical security.

The SOC analyst will have opportunity to grow security career, earn advance security certifications (e.g. SANS/GIAC, Elearning Security, ISC2 , Offensive Security, Comptia certifications and more) and learn advance security skills such as SIEM, Incident Response, Digital Forensics, Malware Reverse Engineering, Threat Intelligence, Attacker Tactic & Techniques and other security technologies.

QUALIFICATIONS

• Graduate of any collegiate course preferably in the field of Information and Communication Technology
• Work related experience of up to one (1) year performing security monitoring, incident response.
• Fresh graduates who are passionate with cybersecurity are welcome to apply
• Experience in handling security technologies such as SIEM, EDR, Firewall a plus
• Entry level Security related certifications such as Certified in Cybersecurity, Comptia Sec+ or CYSA+ a plus.
• Attentive to details and meticulous with documentation, and processes.
• Excellent work ethics, hardworking with good interpersonal skills
• Driven and goal-oriented
• Willing to Work in Nexus CEBU
• Willing to work on shifts

Cybersecurity / SOC Analyst (Mid to Senior Level)

Location: Quezon City

Work Setup: Hybrid (4 days onsite, 1 day WFH)

Schedule: Flexible / Shifting

About the Role:

We're looking for a proactive and skilled Cybersecurity / SOC Analyst to join our Cybersecurity Operations Team. This role is ideal for professionals passionate about protecting networks, detecting threats, and maintaining secure operations in a dynamic environment.

You'll play a key role in monitoring, analyzing, and responding to security incidents — ensuring that our systems and information remain safe and resilient.

Key Responsibilities:

• Monitor security tools to detect potential threats, network intrusions, and malware events.
• Review and analyze logs to identify unusual or suspicious activity.
• Perform incident triage, escalation, and investigation following established procedures.
• Correlate incident data to determine root causes and recommend remediation.
• Support new detection capabilities and improvements to existing security tools.
• Research emerging cyber threats, malware trends, and vulnerabilities.
• Maintain detailed records of investigations and incident response processes.
• Collaborate with cross-functional teams to strengthen overall security posture.

Qualifications:

• Minimum of 4 years of experience as a SOC Analyst or in a related IT/cybersecurity role
• Solid understanding of network security, firewalls, web security, and threat monitoring
• Hands-on experience with security tools and monitoring systems
• Strong analytical, documentation, and problem-solving skills
• Familiarity with ISO 27001, HIPAA, or SOX compliance standards

Preferred / Nice to Have:

• Certifications such as CISSP, CEH, CompTIA Security+, or Cloud Security (GCLD, CCSK)
• Knowledge of frameworks like NIST SP and SOC 2 AICPA controls
• Experience with incident response, forensic data analysis, or code review

Perks & Benefits:

• Competitive total rewards package
• Variable performance incentives
• HMO from Day 1 (with free dependent coverage)
• Life insurance
• Paid time-off and sick leave conversion
• Night differential pay
• Employee referral program
• All mandatory statutory benefits

Job Type: Full-time

Pay: Php50, Php70,000.00 per month

Application Question(s):

• 1. Total Relevant Years of Experience as a Cybersecurity/SOC Analyst in the BPO Industry:

• Total Relevant Years of Experience as a SOC Analyst:

• Active Viber Number:
• Active Email Address:
• Current Salary:
• Expected Salary:
• Availability for Interview (Please indicate preferred dates/times):
• Are you open to working in either BGC or Quezon City?
• Are you open to a flexible and/or night shift schedule?
• Are you amenable to work onsite?(4x a week Onsite, 1x WFH)
• Notice Period
• Reason for leaving your current/previous job

Work Location: In person

Job Summary:

We are seeking an experienced
Cloud Security Engineer
to design, implement, and maintain robust security solutions across hybrid cloud and on-premises environments. The ideal candidate will have deep expertise in native cloud security components, automation, and compliance frameworks, with a strong ability to collaborate across technical and business teams to enhance the organization's overall security posture.

Key Responsibilities:

• Configuration and Maintenance:
• Configure, maintain, and optimize native security components such as firewalls, network security groups, security lists, network access control lists (ACLs), and Web Application Firewalls (WAF).
• Security Solution Design:
• Design, deploy, and upgrade security solutions for hybrid cloud and on-premises environments, ensuring alignment with organizational policies, directives, and compliance standards.
• Automation and Scripting:
• Leverage scripting and automation tools (e.g., Python, PowerShell, F5 iRules) to streamline deployment, configuration, and monitoring of security components.
• Documentation and Standardization:
• Develop and maintain technical documentation including security configuration templates, runbooks, and operational procedures for deployment and support teams.
• Monitoring and Incident Response:
• Troubleshoot and analyze performance of security systems, respond to incidents, and optimize configurations to maintain high levels of protection and performance.
• Vulnerability & Compliance Management:
• Conduct vulnerability assessments and compliance audits to identify gaps and ensure alignment with industry best practices and security frameworks.
• Collaboration and Leadership:
• Collaborate with cross-functional teams, providing technical leadership, guidance, and mentoring on security best practices and native solution capabilities.
• Innovation & Change Management:
• Participate in business planning and change management processes to evaluate, recommend, and implement new security technologies and policies.

Required Skills and Experience:

• Deep expertise in
  cloud-native and on-premises security solutions
  , including endpoint protection, SIEM/SOAR, IAM, and threat intelligence.
• Hands-on experience with
  Azure
  and
  AWS
  security tools and services.
• Strong
  scripting and automation
  skills using Python, PowerShell, or equivalent languages.
• Solid understanding of
  network and application security principles
  , including firewalls, WAFs, VPNs, and ACLs.
• Familiarity with
  security frameworks
  such as ISO 27001, NIST, CIS, and related compliance standards.
• Experience performing
  security assessments, audits, and incident response
  in enterprise environments.
• Proven ability to create detailed
  technical documentation
  and training materials.
• Excellent
  communication and collaboration
  skills to engage effectively with stakeholders and teams.
• Proactive attitude with a strong commitment to
  operational excellence
  and continuous improvement.

Preferred Qualifications:

• Certifications:
  AZ-500 (Azure Security Engineer Associate), AWS Certified Security – Specialty, CISSP, CISM, or CCSP.
• Experience with
  infrastructure as code
  tools (Terraform, Ansible) for security automation.
• Exposure to
  DevSecOps
  practices and integration of security in CI/CD pipelines.