9 Threat Intelligence jobs in the Philippines

**_What User Access Management contributes to Cardinal Health_**
The User Access Management team is responsible for managing identity and attributes for employees, contractors, customers, vendors, etc.
Ensures compliance with Cardinal Health security requirements for applications in the organization in relation to identity and access.
Analysts within the team ensure the right access to the right applications at the appropriate time through provisioning efforts, IdentityIQ management, SAP, and approval enforcement.
**_Functional Competencies_**
+ Maintain efforts to streamline the user provisioning processes.
+ Improve the transparency of access for our entitlement owners and managers.
+ Serve as the point of escalation from the business and IT; execute the provisioning steps needed to ensure an efficient and compliant process.
+ Partner with application teams to provide security, governance, and provisioning services enterprise-wide.
+ Minimum cross knowledge to provide process improvement of how the ENTIRE team works together to streamline job functions.
**_Activities/accountabilities include the following:_**
+ Partners with application teams to create/streamline provisioning processes.
+ Serve as liaison between business and IT to determine appropriate access for users, including user consultations, SoD checks, and access determination.
+ Able to take a group of users, review the access and identify changes that can be made to ensure consistency and repeatability in provisioning that group.
+ Ensures the consistency and cleanliness of the environments we manage.
+ Ensures all documentation on tasks performed has been updated and published in a shared location.
+ Act as an advocate for access controls and identity access management (IAM) services, ensuring correct/appropriate standards and processes are being adhered to
+ Achieve quality review standards of no repeat errors.
+ Initiate regular reviews of user to role mappings to ensure access meets the security design and security/access related problem resolution.
+ Focus on automation opportunities/improvements.
**_Qualifications_**
+ Application access support/administration
+ Functional experience with security principles, specifically access management.
+ Process improvement and lean principles.
_Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._
_Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._
_To read and review this privacy notice click_ here (

Position Overview:
As a Security Architect, you will engage across various domains within information security, focusing on: br>Evaluating and auditing existing security controls and solutions.
Designing and implementing new security measures.
Providing expert counsel within the department and beyond.
Assisting in the design and optimization of our SIEM/MDR solutions.
Conducting risk assessments for infrastructure, applications, and vendors.

Qualifications:
Bachelor's degree in any field; degrees in Information Security, Computer Science, or Software Engineering preferred but not mandatory.
Certifications such as Azure Architect, Azure Security, OSCP, OSEP, CISSP, Security+, ISO 27001, CISM, or CRISC are advantageous but not required.
Excellent English communication skills.
Knowledge in areas such as:
Risk Management
Third-Party Risk Management
Control Management
Security Frameworks (ISO 27001/27002/27005, NIST 800-53, NIST CSF)
Policy and Procedure Development
Infrastructure and Cloud Security (Azure)
MDR/SIEM/Log Analytics
Incident Response
Vulnerability and Penetration Testing
Identity and Access Management (IAM)
Technical Security and Risk Assessments
Disaster Recovery Planning
Willingness to engage with the CISO on professional matters.

Job Scope:
To manage all RX security assessments and play a key part in ensuring RX's security compliance optimization. Monitor assessments while ensuring that Reed Exhibitions internal systems are compliant with RELX and industry standards. Proactively manage the third-party risk assessments, compliance evidence gathering of their IT services, infrastructure, applications and relevant services against their Security policies and related frameworks. Training and development will be provided in all areas of the role as required.
Key Responsibilities:
Security Assessment Management
+ Serve as an advanced technical advisor for third-party assessments, providing detailed security insights and solutions.
+ Perform in-depth security reviews and risk assessments for new and existing third-party vendors, ensuring compliance with organizational and regulatory requirements.
+ Demonstrate advanced knowledge in RELX security compliance policies and procedures.
+ Stay current with updates and developments in security standards such as OWASP Top 10, ISO27001, and SOC 2, and ensure their proper implementation across the organization.
+ Develop and deliver training and awareness on security policies and standards to business units.
+ Gain in-depth knowledge of the organization's major infrastructure security controls, ensuring they align with RELX Policies and Standards, industry best practices, and regulatory requirements.
+ Coordinate with technology/service owners and business owners to conduct annual security audits, vulnerability assessments, and penetration tests where applicable.
+ Work collaboratively within all business areas and key stakeholders to ensure the review and approach of all security governance, risk, and compliance scope is appropriate and proactive.
+ Ensure continuous monitoring and reporting of compliance and risk status against NIST2.0, RELX Framework, ISO27001, SOC2, PCI DSS, regional and global regulations, and all other relevant standards.
+ Support internal and external audits by providing detailed documentation and evidence of security controls and practices.
+ Perform RX Business Unit and Third-Party security audits according to the CISO office strategic plan and produce detailed documentation and evidence against security controls and practices tested.
+ Act as a point of escalation for security-related incidents, providing advanced security support and guidance to Level I Analysts and other team members.
+ Provide regular updates and at least monthly metric reports to senior management on security compliance and risk posture.
+ Escalation of high impact security issues to Security Compliance Manager.
Ideal candidate profile:
Technical Skills:
+ Bachelor's Degree holder.
+ Background in IT, compliance, and/or information security.
+ Ability to work across all levels of seniority within business teams to drive a working partnership.
+ Strong analytical and critical thinking skills.
+ Understanding of industry standards for IT security (e.g., ISO27001/2, SOC 2, PCI DSS).
+ Basic understanding of IT security applications (e.g., firewalls, intrusion detection, virus protection).
+ Understanding of IT security testing and vulnerability management, and Threat Modeling.
+ Understanding in Cloud Environment (e.g., AWS, Azure or GCP)
+ Understanding of Service Level Management.
+ Desired understanding of OneTrust portal or Similar.
+ With CompTIA Security+ or Similar or Higher.
Personal Skills:
+ Ability to work across all levels of seniority within the organization and suppliers to drive a working partnership.
+ Good communication skills at all levels, both oral and written.
+ Good interpersonal skills.
+ Ability to produce effective influence and persuasive arguments in support of security assessment process goals.
+ Highly driven and self-motivated individuals.
+ Skilled in project management and able to work independently in a fast-paced environment.
We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our Applicant Request Support Form or please contact 1- .
Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams here .
Please read our Candidate Privacy Policy .
We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law.
USA Job Seekers:
EEO Know Your Rights .
RELX is a global provider of information-based analytics and decision tools for professional and business customers, enabling them to make better decisions, get better results and be more productive.
Our purpose is to benefit society by developing products that help researchers advance scientific knowledge; doctors and nurses improve the lives of patients; lawyers promote the rule of law and achieve justice and fair results for their clients; businesses and governments prevent fraud; consumers access financial services and get fair prices on insurance; and customers learn about markets and complete transactions.
Our purpose guides our actions beyond the products that we develop. It defines us as a company. Every day across RELX our employees are inspired to undertake initiatives that make unique contributions to society and the communities in which we operate.

The Information Security Engineer will have a passion for managing corporate security along with a desire to relentlessly champion best practices. This role is responsible for performing all functions required to support day-to-day data security operations, supporting and maintaining a broad suite of information security infrastructure, accountable for security and networking infrastructure component availability and integrity, monitoring compliance with IT security policy. Participate in the planning, design, installation, and maintenance of security systems in support of security policies. Work with Information Technology staff and business units to assess risk and address security issues.

JOB DESCRIPTIONS

1. Works in support of the Senior Information Security Engineer enhancing the security direction for the organization including
systems, networks, user services, and vendor development efforts
2. Assists with complex projects and assumes ongoing support of security operations
3. Conducts network and system tests via simulation or other means to highlight and find any weaknesses that may be exploited
4. Provides test result reports and recommend security gap enhancements
5. Designs, implements, supports, and evaluates security-focused tools and services including project leadership roles
6. Designs, implements, supports, and evaluates vulnerably management tools and services
7. Provides security tool integration and automation support
8. Works with System Engineers to evaluate and recommend new and emerging security products and technologies
9. Assists

in defining security requirements and review of systems to determine if they have been designed to comply with
established security standards. Develop new standards as necessary.
10. Participates in security compliance efforts (e.g., PCI DSS, SOX)
11. Participates in incident handling
12. Other related duties to support the information security function

JOB REQUIREMENTS and QUALIFICATIONS

Bachelor's degree in Computer Science, or Cyber-security or equivalent experience
Experience completing large, complex projects
Hands on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication
systems, log management, content filtering, etc
Strong time management and organisational skills
Knowledge of windows, Linux and Mac operating systems
Exceptional problem solving, communication, and customer service skills
Highly self-motivated and directed
Requirements: Language(s): English
Availability to travel: Yes
Availability to change residence: Yes
Work Day: Casual
Type of Job: Temporary contract
Minimum required education: Bachelor´s Degree

JOB TYPE

Work Day:Full Time

Employment type:Permanent Job

Salary:Negotiable

JOB REQUIREMENTS

Minimal experience:Unspecified

Job Overview: The Chief Information Security Officer works with other executives across different departments to design security systems and assets. The CISO’s main responsibility is creating and implementing an information security program that is designed to protect enterprise communications, systems, and assets from any potential threats. He/She will ensure compliance to legal security practices.Job Description: ● Define and own a multi-year cybersecurity roadmap and key performance indicators focused on reducing cyber risk ● Build and inspire a highly skilled and diverse Cybersecurity team. Foster a culture of trusted cross-functional partnership, service, and continuous improvement ● Create quarterly, annual, and long-term cyber security and cyber risk management goals, articulate strategies, define metrics and provide necessary updates to executive leadership ● Partner with leadership for the development, planning, and execution of major security initiatives. Support Secure Software Development Lifecycle ● Collaborate with the SOC team and ISO 27001 Core team to establish appropriate security standards and provide an effective governance structure to ensure cyber compliance and accountability ● Lead Security Incident Response, Third Party Information Security Assessment, Data Protection and Encryption, ● Identity & Access Management and Privileged User Access to protect customer and employee data ● Define cyber security governance and control strategies for emerging technologies such as cloud & containerization, blockchain, etc. ● Keep well informed of developing security threats, and proactively create strategies to understand and mitigate potential security problems that might arise from acquisitions or other big business moves ● Other job-related activities may be assigned from time to time.RequirementsRequirements: ● Education – At least graduate with a Bachelor’s Degree in IT, Computer Science, Engineering, or any related course. ● Related Work Experience - Key Industry certifications in Information Security, such as CISSP, CISM and CISA ● Knowledge – Knowledgeable in security and operations processes. ● 15+ years of experience in Information/Cybersecurity in a public or large private technology company with a global customer base ● 7+ years people management experience with hands-on experience building diverse teams while promoting an inclusive organization ● A demonstrated knowledge of information security standards (e.g., NIST, ISO-27001), rules and regulations related to information security and data confidentiality (e.g., PCI, NIST, NSA) and other various security standards and policies ● A strong understanding of Cloud Security Mode and key principles, such as CSPs Shared Responsibility Models, Security and Infrastructure as Code, Preventive/Reactive Guardrails, Containerization, Server-less Computing, Continuous monitoring/drift detection, and the importance of end-to-end automation ● Strong interpersonal and communication skills with the ability to influence at all levels of the organization, while being able to simplify complex topics for understanding and critical decision making by Executive Management and the Board ● Ability to understand not only emerging industry trends as far as cyber security is concerned but also the landscape of emerging threats, making appropriate adjustments within the cybersecurity program

We are looking for an experienced professional to help lead the operations of an Information & Cyber Security Center of Expertise. This role focuses on managing team performance, driving operational improvements, and supporting strategic security initiatives across global teams.

Key Responsibilities

Operations & Strategy

• Lead operational initiatives to drive continuous improvement and efficiency.
• Manage stakeholder relationships and oversee transitions of new work.
• Monitor team performance and service delivery metrics.
• Support development and execution of long-term strategies for the security team.

People Management

• Support recruitment, onboarding, and training of team members.
• Coach and mentor managers and act as an escalation point for operational issues.
• Conduct performance reviews and help implement talent development strategies.

Process & Compliance

• Ensure governance and compliance with security frameworks and standards.
• Lead process improvement initiatives using gap analysis and best practices.
• Support capacity planning and resource allocation.

Qualifications

• Bachelors degree in Business, IT, or a related field.
• Minimum of 7 years of experience, including 5 years in operations or service delivery management.
• Proven experience in leading large teams and managing diverse operational functions.
• Strong problem-solving, communication, and relationship-building skills.
• Comfortable working in a fast-paced, evolving environment.

Preferred Experience

• Knowledge of Information & Cyber Security concepts, standards, and frameworks.
• Experience in regulated industries.
• Background in transition or knowledge transfer projects.

Close

We're Hiring: Cyber Threat Analyst
MOA, Pasay | Hybrid (2-4x a month RTO) | Dayshift br>
Qualifications:
• B.S. equivalent in computer science, information systems, or cyber intelligence < r>• 1 year professional experience < r>• Technical proficiency in Cyber Threat Intelligence and Threat Intelligence Platforms < r>• Experience working with open-source intelligence (OSINT) and/or large data sets < r>• Experience working with sandboxes, virtual machines, or other malware analysis tools < r>• Familiarity with the MITRE ATT&CK Framework, including the ability map reported activity to ATT&CK tactics and techniques < r>• Familiarity with interpreting and mapping cyberattacks to the Diamond Model of Intrusion Analysis < r>
Preferred Qualifications:
• Proficiency in scripting or programming languages (PHP, C, C#, C++, Python, PowerShell, Go, JavaScript, Rust) < r>• Experience creating malware detections (e.g. YARA, Sigma, Snort) < r>• Experience creating vulnerability detections (e.g. Nuclei) < r>
Interested applicants may send their application. Please indicate your CV and contact number. Thank you!

COMPANY PROFILE: A well-established BPO company that is well-committed in providing business outsourcing needs to its clients
br>Position: Cyber Threat Analyst
Company Industry: IT Company
Work Location: Pasay City
Work Schedule: Monday-Friday
Salary: Php 45,000-60,000
Work Set Up: Hybrid Setup

JOB REQUIREMENTS:
Bachelor's degree in Computer Science, Information Technology, or Cyber Intelligence.
6 months to 1 year of experience in Technical Writing, Threat Analysis, and Threat Landscape.
Strong understanding of cyber threats and the evolving threat landscape.
Familiarity with cybersecurity terminology and industry trends.
Knowledge of the MITRE ATT&CK framework.

JOB RESPONSIBILITIES:
Prepare daily intelligence reports.
Analyze client-specific data to assess potential infrastructure threats.
Collect and evaluate cyber threat incident information to enhance client security.
Monitor and stay up to date on emerging cyber threats and industry trends.
Identify and report on significant cyber threat events for the Weekly Threat Landscape while tracking ongoing research areas that require further exploration.

RECRUITMENT PROCESS: (ONLINE)