227 Software Security jobs in the Philippines

Company Description
Founded and headquartered in Switzerland, Avaloq is continuously expanding its global footprint with around 2,500 colleagues in 10 countries, and more than 160 clients in 35 countries. We are an industry-leading provider of wealth management technology and services for financial institutions around the world, including private banks and wealth managers, investment managers, as well as retail and neo banks. Our research led approach and continual innovation is powered by the passion and creativity of our colleagues.

We are always looking for talented people to join us on our mission to orchestrate the financial ecosystem and democratize access to wealth management. Avaloq offers the opportunity to work closely with some of the world's leading financial institutions as we jointly develop and shape careers. Championing a collaborative, supportive and flexible work environment empowers our colleagues to reach their full potential.

Job Description
The Avaloq Security team is an international team of analysts, senior and expert software engineers and architects. The Avaloq Security team develops and maintains central application security frameworks and tools for all companywide technology stacks and consults the business teams on best practice implementations for context specific security requirements. It furthermore operates the group-wide application security assessments, monitors the security vulnerabilities and supports the business teams in related risk mitigation plans.

Your key tasks

• Analysis, design and development of requirements in collaboration with colleagues of Product Development, customers, business analysts and software partners
• Collaboration and contribution in projects across departments
• Check the daily automated build process for security warnings and provide support to resolve it
• Monitor third party library enrolment, update, and removal by using in-house tools and Whitesource
• Provide expert analysis on false positives findings, validate exploitability of detected vulnerabilities, and develop possible fixes
• Maintain data for configuration control of the release baseline.
• Coordinate security actions across multiple team to ensure the high quality of the Avaloq products
• Prepare and distribute reports and documentation of security risks
• Conduct periodic reviews to ensure compliance with established security policies and procedures
• Participate in technical talks to internal members regarding security implementation, vulnerabilities, and opportunities for improvement

Qualifications

• University degree graduate preferably in IT, Mathematics or Physics
• Exposure to Financial Markets and understanding of financial products
• Deep Knowledge on security concepts, industry standards and good practices
• Experience in Java, JavaScript. Objective C, PL/SQL
• Ability to convey technical information to non-technical individuals
• With enthusiasm for complex multi-platform security solutions in the intranet and internet environment
• Strong analytical skills and high standards of quality
• Ability to promote a positive attitude among the organization through personal behaviour

Additional Information

We realize that managing work life balance is a challenge we all face in our daily lives and in order to support with this we are pleased to offer hybrid and flexible working for most of our Avaloqers to maintain work life balance and still continue our fantastic Avaloq culture in our global offices.

In Avaloq we are proud to embrace diversity and understand the success of our business is built on the power of different opinions, we are whole heartedly committed to fostering an equal opportunity environment and inclusive culture where you can be your true authentic self.

We hire, compensate and promote regardless of origin, age, gender identity, sexual orientation or any other fantastic traits that make us all unique, we have done our best to write this advert in an inclusive and neutral way.

Please be aware that we will not accept speculative CV submissions for any of our roles from recruitment agencies, and any unsolicited candidate submissions will be exempt from any payment expectations.

Job Description:

Project Title : SAP Security Vulnerability assessment

Location : Metro Manila

Work setup : Hybrid

Summary:Responsible for applying security skills to design, build, and protect enterprise systems, applications, data, assets, and people. Your typical day will involve providing services to safeguard information, infrastructures, applications, and business processes against cyber threats.

Must have: Need 3+years of in SAP Security Vulnerability assessment

Roles & Responsibilities:

• Expected to perform independently and become an SME.

• Required active participation/contribution in team discussions.

• Contribute in providing solutions to work related problems.

• Develop and implement security measures to protect computer systems, networks, and data.

• Conduct vulnerability assessments and penetration testing to identify security weaknesses.

• Monitor security vulnerabilities and threats to proactively prevent security breaches.

• Collaborate with cross-functional teams to ensure security best practices are implemented.

• Stay updated on the latest security trends and technologies to enhance security posture.

Note: Interested candidate can directly reach out

Job Description:

You will:

• You will be responsible for conducting various security activities, including feasibility studies, automation initiatives, vulnerability assessments (VA), threat monitoring, risk assessments, policy compliance scanning, and reporting.
• Your role will be crucial in identifying and mitigating security risks, ensuring policy compliance, and maintaining a secure environment for our organization.
• Conduct daily feasibility studies to assess the viability and effectiveness of potential security measures or initiatives.
• Collaborate with cross-functional teams to gather information and analyze the feasibility of implementing new security solutions.
• Prepare reports summarizing the findings and recommendations from feasibility studies.
• Identify opportunities for process automation within the security operations function.
• Perform daily application onboarding and assessment for vulnerability scanning.
• Respond to risk assessment requests related to architecture design and new applications.
• Evaluate security risks associated with exemption requests for WAF rules, Snyk findings, IP/URL whitelisting, and ad-hoc assessments.

Key Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field.
• Solid understanding of information security principles, concepts, and best practices.
• Experience in conducting feasibility studies and performing risk assessments.
• Knowledge of vulnerability assessment tools and techniques.
• Familiarity with threat monitoring tools and practices.
• Relevant certifications (e.g., CISSP, CISM, CEH) are a plus.

QUALIFICATIONS:

• At least 3-5 years as a VAPT Specialist/Offensive Security or other related roles.
• Hands-on experience in web and mobile application VAPT, following the OWASP Top 10 testing framework
• Proficient in using open-source and commercial security testing tools such as Kali Linux, Metasploit, Qualys, Nessus, Burp Suite, OWASP ZAP, etc.
• Working knowledge of web and mobile application development
• Ability to write assessment reports that are clear and understandable for both technical and non-technical audiences
• Cybersecurity certifications such as CEH, CISSP, or equivalent are preferred
• Should be amendable to work Hybrid (3x a week onsite - temporary) and 100% onsite in Ortigas in the future.

RESPONSIBILITIES:

• Conduct vulnerability assessment and penetration testing on web and mobile applications
• Provide detailed assessment report and recommendations following the preferred report format of the client, if available
• Provide assistance and consultation services to teams responsible for remediations
• Organize and conduct meetings or consultation sessions, when needed, to facilitate completion VAPT sub activities
• Independently manage and complete schedule of activities or assigned tickets
• Regularly submit progress report to immediate supervisors
• Ensure confidentiality of client information at all times

Why N-able:

IT doesn't get better than this N-able isn't just another software company – we're going places, and we'd love for you to be a part of that journey. With N-ablites in more than 15 countries around the world, you're adding your unique voice to a diverse team of people who are supporting our customers, and one another. The Way We Work, our hybrid working model based on trust and flexibility, allows you to maximize your contributions while growing your career. Join a team where you can make a difference

N-able is seeking to hire their next Technical Support Manager, to come join us on our exciting journey of growth The successful candidate is a proven leader and will have experience managing a team of Technical Support Engineers. The Manager is responsible for ensuring timely resolution of client issues as well as high client satisfaction and will act as the primary escalation point for clients. They will be able to understand and lead their direct reports through responding to technical issues, working across departments to drive issue resolution and escalating issues when necessary.

What You'll Do:

• Manage the day-to-day operations including recruiting, training, mentoring, motivating, conducting performance reviews, and managing a staff of Support Engineers. In addition, ensure coverage for off hours issues as defined by the SLA.
• Monitor case load and KPIs to ensure adherence to the SLA and to measure team performance as well as drive process improvement.
• Compile efficiency metrics, present recommendations, establish effective processes and practices for knowledge sharing and to drive change.
• Handle client issue escalation and resolution through all levels of an organization by working with Technical Support, Business, Development, and Quality Assurance teams.
• Assign and manage projects based on new product releases, call related issues and/or training needs within the organization. In addition, develop individual and team objectives to contribute positively to organizational goals and direction.
• Review Satisfaction Survey data, departmental communication, and processes to be able to coach direct reports, recommend improvements, and drive efficiency and satisfaction.

What You'll Bring:

• 2 years' experience in managing a technical support team with previous 3 years' minimum experience as technical support.
• Cybersecurity software support is preferred.
• Hands-on software support experience combined with strong management and communication skills.
• Proven ability to execute in a customer-focused environment and advocate for partners across a cross-functional organization.
• Skilled at problem-solving, decision making, and negotiations.
• Strong interpersonal skills with ability to communicate at all levels of an organization.
• Demonstrate the ability to manage changing and multiple priorities including multiple projects simultaneously.

Purple Perks:

• Medical and dental insurance
• Generous PTO and observed holidays
• 2 Paid VoluNteer Days per year
• Employee Stock Purchase Program
• Pension with company-contribution
• Weekly lunch allowance, Monthly grab & go onsite pantry allowance
• Monthly internet allowance
• De Minimis - monthly allowance
• FuN-raising opportunities as part of our giving program
• N-ablite Learning – custom learning experience as part of our investment in you
• The Way We Work – our hybrid working model of 2-3 days a week in-hub collaboration

About N-able:

At N-able, Inc. (NYSE: NABL), we are a global software company that turns IT possibilities into capabilities. That means we partner with technology leaders who support companies around the world by offering secure infrastructure and tools to navigate their evolving IT needs. We build strong relationships with our customers to help them thrive at every stage of growth, and at the heart of this effort is our network of N-ablites—a global team of extraordinary, diverse creators who are dedicated to making a difference in how our partners do IT.

#LI-RB1 #LI-Hybrid

Why N-able
IT doesn't get better than this N-able isn't just another software company - we're going places, and we'd love for you to be a part of that journey. With N-ablites in more than 15 countries around the world, you're adding your unique voice to a diverse team of people who are supporting our customers, and one another. The Way We Work, our hybrid working model based on trust and flexibility, allows you to maximize your contributions while growing your career. Join a team where you can make a difference

N-able is seeking to hire their next Technical Support Manager, to come join us on our exciting journey of growth The successful candidate is a proven leader and will have experience managing a team of Technical Support Engineers. The Manager is responsible for ensuring timely resolution of client issues as well as high client satisfaction and will act as the primary escalation point for clients. They will be able to understand and lead their direct reports through responding to technical issues, working across departments to drive issue resolution and escalating issues when necessary.

What You'll Do

• Manage the day-to-day operations including recruiting, training, mentoring, motivating, conducting performance reviews, and managing a staff of Support Engineers. In addition, ensure coverage for off hours issues as defined by the SLA.
• Monitor case load and KPIs to ensure adherence to the SLA and to measure team performance as well as drive process improvement.
• Compile efficiency metrics, present recommendations, establish effective processes and practices for knowledge sharing and to drive change.
• Handle client issue escalation and resolution through all levels of an organization by working with Technical Support, Business, Development, and Quality Assurance teams.
• Assign and manage projects based on new product releases, call related issues and/or training needs within the organization. In addition, develop individual and team objectives to contribute positively to organizational goals and direction.
• Review Satisfaction Survey data, departmental communication, and processes to be able to coach direct reports, recommend improvements, and drive efficiency and satisfaction.

What You'll Bring

• 2 years' experience in managing a technical support team with previous 3 years' minimum experience as technical support.
• Cybersecurity software support is preferred.
• Hands-on software support experience combined with strong management and communication skills.
• Proven ability to execute in a customer-focused environment and advocate for partners across a cross-functional organization.
• Skilled at problem-solving, decision making, and negotiations.
• Strong interpersonal skills with ability to communicate at all levels of an organization.
• Demonstrate the ability to manage changing and multiple priorities including multiple projects simultaneously.

Purple Perks

• Medical and dental insurance
• Generous PTO and observed holidays
• 2 Paid VoluNteer Days per year
• Employee Stock Purchase Program
• Pension with company-contribution
• Weekly lunch allowance, Monthly grab & go onsite pantry allowance
• Monthly internet allowance
• De Minimis - monthly allowance
• FuN-raising opportunities as part of our giving program
• N-ablite Learning - custom learning experience as part of our investment in you
• The Way We Work - our hybrid working model of 2-3 days a week in-hub collaboration

About N-able
At N-able, Inc. (NYSE: NABL), we are a global software company that turns IT possibilities into capabilities. That means we partner with technology leaders who support companies around the world by offering secure infrastructure and tools to navigate their evolving IT needs. We build strong relationships with our customers to help them thrive at every stage of growth, and at the heart of this effort is our network of N-ablites—a global team of extraordinary, diverse creators who are dedicated to making a difference in how our partners do IT.

The Application Security Engineer is a cybersecurity professional responsible for embedding security throughout the entire software development lifecycle (SDLC). This role is a vital link between development and security teams, ensuring that applications are designed, built, and deployed with robust security controls to protect against modern cyber threats. The ideal candidate is a proactive problem-solver with a strong background in software development and a deep understanding of application vulnerabilities and attack vectors.

• Minimum Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field.
• 5 years of experience in application security, software development, or a related cybersecurity field.
• Strong proficiency in one or more programming languages (e.g., Java, Python, JavaScript, C++).
• Deep understanding of web application vulnerabilities.
• Hands-on experience with security tools (SAST, DAST, SCA, IAST).
• Familiarity with cloud platforms (e.g., AWS, Azure, GCP) and container technologies (e.g., Docker, Kubernetes).
• Knowledge of common security protocols and frameworks (e.g., TLS, OAuth, SAML).

Multisys Technologies Corporation is considered one of the leading software solutions company in the Philippines that provides a wide range of cost-effective, full-scale software services, system platforms, and integrations being used by thousands of companies and organizations. Empowering Your Business A leading software company in the Philippines, Multisys has been steadfast in seeking greater digital transformation for the country, through systems design, development (programming), and deployment (implementation). Who We Are We are a software solutions company backed by a team of full-stack developers and elite programmers. What We Do Multisys empowers businesses and is a partner to everyone. The wide breadth of copyrighted platforms and solutions that we openly offer underscores our relentless commitment to helping private companies operate more efficiently and grow, as well as to assist government agencies for faster and more effective delivery of services to the public. How We Help We put our heart and core on system automation and integration services that expedite various processes and transactions—ultimately helping reinforce the ease of doing business across the Philippines archipelago. Corporate Principle We pursue and bring solutions beyond software development to create impactful advancement to empower businesses. Our Mission Our mission is to build a sustainable and future-ready society by providing smart solutions to empower businesses and partners to expedite and streamline their processes. Our Vision Our vision is to revolutionize ways of life towards greater digital transformation through innovative software solutions. Our Culture We Work to Play and Play to Win We maintain a casual work environment to inspire our people and help them achieve more.

Imagine a world where banking is not just a transaction but a transformative experience. Welcome to Axos Business Center We're on a mission to redefine the financial landscape with innovation, creativity, and customer-centric solutions at the core of everything we do. #Banking Evolved.

Ready to dive into a new chapter in your career journey and make your mark this year? We need visionary minds like yours Join our team and become part of a dynamic force that's reshaping how people interact with their finances.

Your next big opportunity is just a click away

**We are seeking a Security Engineer with deep expertise in application security platforms to own, operate, and optimize our WAF, bot defense, API security, and application testing tools. This role will focus on ensuring these platforms are well-configured, continuously tuned, and delivering maximum security value with minimal business friction.

The Security Engineer will also serve as the incident response lead for application-layer attacks, participate in the on-call rotation, and work primarily during Pacific Time (PT) business hours to align with our operations.**

Key Responsibilities

• AppSec Tool Management & Optimization

• Administer and tune Cloudflare WAF, maintaining rules, policies, and custom configurations.

• Manage and optimize bot defense platforms (e.g., F5/Shape, Arkose) to mitigate automated fraud, scraping, and credential stuffing.
• Oversee and tune API security solutions (e.g., Traceable) for visibility, anomaly detection, and protection.
• Operate DAST and SAST platforms, ensuring they are integrated into CI/CD and providing actionable insights.

• Security Operations & Incident Response

• Lead response to AppSec-related incidents, including botnet activity, API abuse, and web exploitation attempts.

• Participate in the on-call rotation, ensuring timely detection, escalation, and remediation of critical application security events.
• Build playbooks for WAF/bot/API incident handling and drive continuous improvement of detection/response.
• Collaborate with SOC, DevOps, and development teams to remediate issues and strengthen defenses.

• Continuous Improvement

• Tune tools to reduce false positives and improve detection accuracy.

• Track tool coverage and effectiveness, providing metrics and reports to leadership.
• Engage with vendors to leverage updates, intelligence feeds, and advanced features.

• Collaboration & Governance

• Partner with application teams to align security policies with business requirements.

• Support compliance initiatives by ensuring tooling configurations meet regulatory/security standards.

Key Responsibilities

• AppSec Tool Management & Optimization

• Administer and tune Cloudflare WAF, maintaining rules, policies, and custom configurations.

• Manage and optimize bot defense platforms (e.g., F5/Shape, Arkose) to mitigate automated fraud, scraping, and credential stuffing.
• Oversee and tune API security solutions (e.g., Traceable) for visibility, anomaly detection, and protection.
• Operate DAST and SAST platforms, ensuring they are integrated into CI/CD and providing actionable insights.

• Security Operations & Incident Response

• Lead response to AppSec-related incidents, including botnet activity, API abuse, and web exploitation attempts.

• Participate in the on-call rotation, ensuring timely detection, escalation, and remediation of critical application security events.
• Build playbooks for WAF/bot/API incident handling and drive continuous improvement of detection/response.
• Collaborate with SOC, DevOps, and development teams to remediate issues and strengthen defenses.

• Continuous Improvement

• Tune tools to reduce false positives and improve detection accuracy.

• Track tool coverage and effectiveness, providing metrics and reports to leadership.
• Engage with vendors to leverage updates, intelligence feeds, and advanced features.

• Collaboration & Governance

• Partner with application teams to align security policies with business requirements.

• Support compliance initiatives by ensuring tooling configurations meet regulatory/security standards.

Required Qualifications

• 4–6+ years of experience in information security or application security operations.
• Hands-on experience with Cloudflare WAF (or equivalent enterprise WAF).
• Experience managing bot defense tools (F5/Shape, Arkose, or similar).
• Familiarity with API security solutions (Traceable, Salt, or similar).
• Experience with DAST and/or SAST platforms in an enterprise environment.
• Strong understanding of OWASP Top 10 and API Security Top 10 threats.
• Background in incident response, particularly application and API security events.
• Willingness to participate in an on-call rotation for AppSec-related incidents.
• Ability to work Pacific Time (PT) business hours to support operational coverage.

Preferred Qualifications

• Experience integrating AppSec tools into CI/CD pipelines.
• Familiarity with SIEM/SOAR platforms for AppSec event enrichment and automation.
• Knowledge of cloud security (AWS, Azure, GCP) in relation to web and API workloads.
• Industry certifications (e.g., GWAPT, GWEB, CCSK, AWS Security Specialty) are a plus.