Lead Security Engineer – Penetration Testing

Lead Security Engineer – Penetration Testing

Posted today

Job Description

Summary:

As a Security Engineer, you will apply your security expertise to design, build, and protect enterprise systems, applications, data, assets, and people. Your typical day will involve collaborating with various teams to ensure the security of information and infrastructures while providing solutions to safeguard against cyber threats. You will engage in proactive measures to identify vulnerabilities and implement strategies to mitigate risks, ensuring the integrity and confidentiality of critical business processes.

• Expected to be an SME.
• Collaborate and manage the team to perform.
• Responsible for team decisions.
• Engage with multiple teams and contribute on key decisions.
• Provide solutions to problems for their immediate team and across multiple teams.
• Develop and implement security testing strategies to identify vulnerabilities in systems and applications.
• Conduct thorough assessments and penetration tests to evaluate the security posture of enterprise environments.
• Provide guidance and support to team members in addressing security issues and implementing best practices.

Job Qualifications

Required Skills:

• Required Skill: Expert proficiency in Security Penetration Testing.
• Strong understanding of network security protocols and methodologies.
• Experience with vulnerability assessment tools and techniques.
• Knowledge of security frameworks and compliance standards.
• Familiarity with incident response and threat intelligence processes.

Additional Information:

• The candidate should have minimum 3 years of experience in Security Penetration Testing.
• The candidate must be willing to work on a shifting schedule at our Cubao office (hybrid set-up)

This advertiser has chosen not to accept applicants from your region.

Information Security and Data Privacy Legal Controls Officer

Pasig City, National Capital Region ₱ - ₱ Y UnionBank of the Philippines

Posted 1 day ago

Job Description

JOB DESCRIPTION

• Responsible for the creation, preparation, review, and edit of all contracts of the OCISO.
• Responsible in ensuring that the internal contract documents are accurate and well-maintained.
• Accountable for the maintenance of records for correspondence and documentation in relation to established OCISO contracts and those in progress.
• Responsible in assisting the ISDP Legal Controls Head with legal compliance on contracts and terms and conditions and agree on any changes or amendments that may arise during its implementation or execution.
• Responsible as the primary point of contact on all Information Security and Data Privacy-related contract issues.
• Accountable for the inventory management and organization of contracts and their related documents, tracking of changes and status, and providing timely updates on these changes.
• Responsible for managing and docketing the contracts for review.
• Responsible for performing other duties that are required of and related to their functions.

QUALIFICATIONS

• Demonstrate a solid understanding of information security, data privacy, and legal terminology.
• Experience working with contract regulations and the related laws is strongly preferred.
• Lawyer or law student with at least two (2) years experience in contract review.
• Knowledge of information security and privacy laws, banking regulations, industry standards and best practices.
• Exemplify a strong attention to detail.
• Possesses superior organizational skills and the ability to manage multiple projects with shifting deadlines.
• Must possess excellent written and oral communication skills.
• Capable of professionally managing confidential information.
• Critical thinking, analytical and problem-solving skills.
• First-rate written and oral communication and presentation skills.
• Ability to work independently and successfully manage multiple concurrent projects simultaneously and by level of prioritization

Posted 1 day ago

Cybersecurity Compliance Analyst

Posted 1 day ago

Job Description

About Us:

At , our mission is to solve cybersecurity for SMBs at scale. This is a remote role located in the Philippines.

Role Overview:

The Compliance Analyst is part of the security client-facing delivery team. Responsibilities include tailoring cybersecurity protocols to support client security journeys, assisting vCISOs with security assessments and implementation projects, providing security education, and conducting phishing tests for clients. As a certified Vanta partner, the Analyst will utilize the Vanta platform to expedite client compliance.

Responsibilities:

• Assist vCISOs in risk assessments within a security program
• Work with clients to tailor security policies and procedures
• Serve as subject matter expert of the security education platform
• Design and deploy phishing tests
• Provide compliance audit readiness support
• Provision, implement, and manage Vanta or similar GRC platform
• Build tools to automate tasks
• Document best practice procedures
• Identify system misconfigurations and provide recommendations
• Collaborate with team on improvements and use-cases
• Capture metrics on activities and blockers
• Support service offerings with feedback
• Respond to customers via ticket system, chat, email, or phone

Qualifications:

• 1-2 years of experience in Security Technologies, Information Security, Business Resilience, Technology Risk or related fields
• Ability to work independently and with teams
• Effective communication with clients and internal audiences
• Understanding of cybersecurity domains (SOC, Security Engineering, Information Risk Management, etc.)
• Ability to articulate secure best practices in risk management
• Strong writing and summarization skills
• Ability to learn and adapt security practices across technologies

Nice to have:

• Intermediate coding/scripting skills
• Familiarity with access controls and benefits of controls
• On-the-job training and knowledge sharing
• Integrity, proactive mindset, attention to detail
• Competitive salary and benefits
• Inclusive company culture

Network Security Engineer

Posted 1 day ago

Job Description

Job Position:

• Technical Support Engineer II / Linux System Administrator / Network System Engineer

Location:

Work Setup & Shift:

• Onsite

Salary Package:

• 60,000 to 100,000 or more

Technical Support Engineer II

• Monitor and triage incoming support cases via a shared queue.
• Prioritize and resolve quick-win issues to meet response and resolution SLAs.
• Identify and escalate Severity 1 cases
• Maintain and update backlog cases with documentation.
• Participate in weekend/on-call support
• Troubleshoot Linux systems, basic networking, virtualization, and cloud environments
• Reproduce customer issues in lab environments and provide detailed findings
• Prior Enterprise Customer experience
• Prior vendor support experience (e.g., Cisco, Palo Alto, Checkpoint, Sophos)
• Hands-on with networking devices, security devices, and Linux
• Minimum 4-5 years of Linux experience

Operating System is required.

• Global support experience with internal/external stakeholders

Skills:

• Basic scripting languages like Bash, PowerShell, Python (nice to have)

Job Types: Full-time, Permanent

• Company events
• Health insurance
• Life insurance
• Opportunities for promotion
• Paid training
• Promotion to permanent employee
• Work from home

Experience:

• Enterprise Level Global Support: 4 years (Preferred)
• Vendor Management: 4 years (Preferred)
• Networking System: 4 years (Preferred)
• Router and switches: 4 years (Preferred)
• Linux Operating System: 4 years (Preferred)
• Networking: 4 years (Preferred)

IT Security and Compliance Officer

Posted 1 day ago

Job Description

JOB SUMMARY:

The IT security and Compliance officer plays a pivotal role in reviewing and enhancing business processes and workflows to drive efficiency and maintain competitiveness. This position updates process documentation and policies, ensuring alignment with business requirements while addressing potential risks. Strong writing and documentation abilities are required.

• Support execution and continuous improvement including control implementation, documentation, and internal audit readiness.
• Contribute to audit-ready policies and procedures aligned with CIS Controls and regulatory requirements.
• Conduct risk assessments, control validations, and compliance reviews
• Coordinate and document security-related audits
• Collaborate with IT, Engineering, and Product teams to ensure security and compliance during system changes.

CHECKING/MONITORING:

3.1 Ensure all workflows reflect current practices. 3.2 Maintain policies and procedures for applicability.

IV. OTHERS

Perform related functions as required.

COMPETENCY REQUIREMENTS:

I. KNOWLEDGE:

1.1 Business Processes. 1.3 Internal Controls.

II. SKILLS:

2.1 Analytical and problem-solving; 2.2 Interpersonal; 2.3 Verbal and written communication; 2.4 Organizational; 2.5 Tech literacy.

Qualifications:

• Bachelor's degree in Accountancy with at least 3 years in IT Auditing
• Or Bachelor's degree in IT with at least four years in IT Compliance and Security

Certified Public Accountant (CPA) or Certified Internal Auditor (CIA) is an advantage but not required.

Knowledgeable in SAP

This role offers an exciting opportunity for individuals with a strong audit background and a keen interest in IT audit.

Cyber Security Testing Specialist

Makati City, National Capital Region ₱ - ₱ Y PJ Lhuillier Group of Companies

Posted 1 day ago

Job Description

This position conducts security testing, vulnerability assessment, and penetration testing to identify weaknesses in networks, systems, and applications.

Responsibilities:

• Vulnerability assessments across networks, systems, and applications
• Controlled penetration tests to simulate attacks
• Test and exploit security flaws to assess risk
• Document vulnerabilities and recommendations
• Stay updated on threats and technologies

Job Qualifications:

• Bachelor's in CS, IT, Cybersecurity, or related field
• At least 3 years in network and cybersecurity operations
• Knowledge of firewalls, IDS/IPS, VPNs, ethical hacking, networking, OS, VAPT tools
• Amenable to work in Makati City

Information Security Auditor

Taguig, National Capital Region ₱60000 - ₱80000 Y AECOM Global Business Services - Philippines ROHQ

Posted 1 day ago

Job Description

Job Brief

The primary function is to perform advisory and assurance projects focused on IT, information security and data privacy risks.

Duties and Responsibilities

• Plan, scope, and execute IT, information security, and data privacy assurance projects
• Test design and operating effectiveness of controls
• Communicate audit results to management
• Develop action plans with stakeholders
• Assess impact of technologies on risk profile
• Maintain knowledge in information security and privacy
• Maintain relationships with stakeholders while maintaining independence
• Contribute to process improvements
• Bachelor\'s degree in MIS, CS, accounting, finance or IT-related fields required
• 2-4 years IT auditing or related experience required
• English fluency required; travel up to 30%; professional certifications preferred

Senior IT Internal Auditor

Posted 1 day ago

Job Description

Role is to lead IT internal audits end-to-end, including risk assessment and controls testing.

Responsibilities:

• Lead audits, coordinate deliverables
• Ensure compliance with audit standards
• Gather information and develop work programs
• Test controls and communicate findings
• Draft issues per GIA methodology
• Mentor junior staff; support GIA strategy
• Perform complex audits

Experience:

• Moderate IT/insurance/audit risk management experience
• Preferred: IT process knowledge, COBIT, ITIL, ISO27001, NIST, data analytics
• Qualifications include IT or IT assurance certifications (CISA, CISSP, CRISC)

#J-18808-Ljbffr

---