Security Vulnerability and Penetration Testing Engineer

17 hours ago

Taguig, National Capital Region, Philippines HCM Nexus Consulting Inc. Full time ₱1,200,000 - ₱2,400,000 per year

Security Vulnerability and Penetration Testing Engineer

Work Setup: Hybrid (8x onsite per month - BGC, Taguig)

Schedule: Morning shift (8:00 AM - 5:00 PM or 9:00 AM – 6:00 PM)

Must be amenable to render overtime, work on weekends and/or Philippine holidays if needed.

About the Role

The Security Vulnerability and Penetration Testing Engineer is responsible for assessing and improving the organization's security posture. This role will perform web application penetration tests, identify and assess vulnerabilities, and provide clear and actionable recommendations. You will ensure that security risks are properly identified, documented, and communicated to both technical and non-technical stakeholders.

Key Responsibilities

  • Conduct penetration testing and vulnerability assessments for web applications and systems.
  • Serve as a subject matter expert for Vulnerability Assessment and Penetration Testing (VAPT) activities.
  • Manage and maintain VAPT tools, platforms, and processes.
  • Produce detailed, easy-to-understand assessment reports with clear risk-based recommendations.
  • Collaborate with cross-functional teams to address identified vulnerabilities and support remediation plans.
  • Participate in security reviews and provide insights to strengthen overall cybersecurity defenses.
  • Stay updated with emerging threats, vulnerabilities, and mitigation techniques.

Qualifications

  • Education: Bachelor's degree in Computer Science, Information Security, or related field.
  • Certifications:
  • Required: CISSP and Offensive Security OSCP (or equivalent experience in penetration testing).
  • Preferred: GIAC GPEN or GWAPT certifications.
  • Experience:
  • 3–5 years of experience focused on Web Application Penetration Testing (Network Pen testers not applicable).
  • Strong understanding of risk management principles and ability to communicate risk clearly.
  • Experience creating reports and explaining findings to non-technical audiences.
  • Proficient in using VAPT tools such as Nessus, AppScan, Burp Suite, Nipper, Trustwave, and frameworks such as Wireshark, Kali, Metasploit.
  • Knowledge of OWASP Top 10, CVE, and common security exploits.
  • Familiarity with cloud and mobile penetration testing is an advantage.

Soft Skills

  • Strong analytical and problem-solving abilities.
  • Excellent written and verbal communication skills.
  • Ability to stay composed under pressure and work independently.
  • Passionate about cybersecurity and continuous learning.

Job Types: Full-time, Permanent

Education:

  • Bachelor's (Preferred)

Experience:

  • Web Application Penetration Testing: 3 years (Preferred)

Work Location: In person

  • Security Vulnerability and Penetration Testing Engineer

    16 hours ago

    Taguig, National Capital Region, Philippines EPS CONSULTANT Full time ₱900,000 - ₱1,200,000 per year

    Role Purpose:To oversee and serve as a technical resource for all assessment activities related to the security posture of existing and proposed firm systems, platforms, and processes to protect and continually improve the confidentiality, integrity, and availability of information systems per the firm's business objectives, regulatory requirements, and...

  • Penetration Tester

    1 week ago

    Taguig, National Capital Region, Philippines Yondu, Inc. Full time ₱900,000 - ₱1,200,000 per year

    Penetration Tester (VAPT)*THIS IS FOR PHILIPPINE RESIDENTS / FILIPINO APPLICANTS ONLY*GENERAL RESPONSIBILITIES:The Penetration Tester conducts penetration testing and vulnerability assessments to identify potential security risks in applications, networks, and IT infrastructure. The role involves collaborating with teams to remediate identified...

  • Senior Penetration Tester

    6 days ago

    Taguig, National Capital Region, Philippines Yondu, Inc. Full time ₱900,000 - ₱1,200,000 per year

    General ResponsibilitiesThe Senior Penetration Tester is responsible for conducting thorough security assessments, managing IT infrastructure for ongoing vulnerability scans, and leading large-scale projects. The role involves identifying and addressing critical flaws in systems and applications, presenting comprehensive reports, and assisting clients in...

  • Penetration Tester 3

    1 week ago

    Taguig, National Capital Region, Philippines Asurion Full time ₱900,000 - ₱1,200,000 per year

    Application Penetration Tester 3Application Penetration Tester 3The Application Penetration Tester will assist Asurion in developing secure products by providing best-in-class application security penetration testing and security assessment services to the product development organization, while passionately pursuing personal and organizational excellence in...

  • Security Engineer

    2 weeks ago

    Taguig, National Capital Region, Philippines PeopleMatter PH Full time ₱900,000 - ₱1,200,000 per year

    Job description:About the RoleWe are looking for a skilled Web & API Security Engineer with strong offensive security expertise. In this hands-on role, you will test modern web applications and APIs to find vulnerabilities, simulate real-world attacks, and work with engineering teams to improve our platform's security.What You'll DoPerform manual security...

  • Security Operations Engineer

    3 days ago

    Taguig, National Capital Region, Philippines WTW Full time ₱900,000 - ₱1,200,000 per year

    DescriptionThe RoleAs a Security Operations Engineer, you will analyze software designs and implementations from a security perspective and identify and propose resolutions to security issues.You will include the appropriate security analysis, tooling and techniques to uncover InfoSec vulnerabilities, both static and dynamically, in our software...

  • Senior Security Engineer

    2 weeks ago

    Taguig, National Capital Region, Philippines OwnBank Full time ₱70,000 - ₱120,000 per year

    The Security Engineering function implements and maintains technical security controls across platforms and infrastructure. It supports secure architecture, threat detection, vulnerability management, and incident response in alignment with BSP Circular 982. The function also manages user access, reviews tools, tests controls, promotes security awareness,...

  • offensive security officer

    4 days ago

    Taguig, National Capital Region, Philippines Metrobank Full time ₱1,200,000 - ₱2,400,000 per year

    Be #InGoodHands with MetrobankHere at Metrobank, we don't simply hire employees—we hone future leaders. We provide opportunities that enhance your skills and unlock your talents, helping you evolve into a well-rounded individual. We supply you with all the pieces you need to do your best work, unleashing your full potential to help you secure your future...

  • Information Security Engineer

    1 week ago

    Taguig, National Capital Region, Philippines Ayala Land Hospitality Full time ₱1,200,000 - ₱2,400,000 per year

    Job Summary:The Information Security Engineer is responsible for protecting the organization's enterprise information systems, business applications, data assets and people by identifying and mitigating security risks. This role involves conducting comprehensive risk assessments, coordinates with SBU POC leads regarding incident response and remediation...

  • Vulnerability Remediation Engineer

    2 weeks ago

    Taguig, National Capital Region, Philippines ECI Full time

    ECI is the leading global provider of managed services, cybersecurity, and business transformation for mid-market financial services organizations across the globe. From its unmatched range of services, ECI provides stability, security and improved business performance, freeing clients from technology concerns and enabling them to focus on running their...