Associate, Security Engineering

About PDAX
At PDAX, we believe that the future of money is digital, and our mission is to empower all Filipinos to grow their wealth through blockchain technology.

As one of the first crypto firms in the Philippine market, we feel a sense of duty to our users and to the ecosystem to set the standard for safety, ease of access, and reliability. We expect our team to share in this responsibility and cherish our vision of a more open and equitable financial system.

We are looking for new team members that are passionate about cryptocurrency, want to work in a disruptive, fast-growing industry, and thrive in a start-up environment.

If this sounds like you, then we'd love to talk.

General Responsibilities

The Associate Security Engineer supports the organization's cyber defense and incident response operations by monitoring security alerts, assisting in investigations, and helping maintain security readiness. This role is ideal for fresh graduates who want hands-on exposure to real-world cyber attacks, security monitoring, and defensive operations while being mentored by senior security engineers.

Key Responsibilities

Security Monitoring & Alert Triage

• Monitor security alerts from SIEM, EDR/XDR, and cloud security tools
• Perform initial alert triage and escalate suspicious activity to senior team members
• Validate alerts from the Managed Security Operations (MSOC) provider

Incident Response Support

• Assist senior engineers during security incidents (phishing, malware, account compromise)
• Collect logs, indicators of compromise (IOCs), and basic forensic data
• Follow incident response playbooks and document actions taken

MSOC Coordination

• Support coordination with the Managed Security Operations (MSOC) provider
• Ensure alerts, tickets, and escalations follow defined communication channels
• Help track incident timelines, handoffs, and follow-ups between MSOC and internal teams

Defensive Operations & Posture Support

• Assist in maintaining security monitoring coverage and log onboarding
• Support tuning of alerts to reduce false positives
• Help verify that critical systems are properly monitored

VAPT & Attack Simulation Support

• Assist in internal vulnerability assessments and basic attack simulations
• Help track findings from internal and external VAPT exercises
• Support remediation tracking and retesting validation

Documentation & Readiness

• Help maintain incident response playbooks and runbooks
• Document incident learnings, alerts, and recurring issues
• Participate in tabletop exercises and security drills

Qualifications

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field (Fresh graduates are welcome to apply)

Basic understanding of:

• Networking concepts (TCP/IP, DNS, HTTP/S)
• Operating systems (Windows, Linux fundamentals)
• Common cyber threats (phishing, malware, brute force, account takeover)
• Familiarity with logs and security alerts is a plus
• Strong analytical and investigative skills.
• Prior fraud, risk, or payments experience is preferred but not required.
• Willing to work the night shift and on weekends.

Soft Skills

• Strong curiosity and willingness to learn cybersecurity operations
• Good documentation and communication skills
• Ability to follow procedures during incidents
• Comfortable working in a team and asking for guidance

Our Culture

Communication

• We prioritize clear and transparent communication, ensuring that there is clarity among everyone we work with.
• We aim to have a collaborative environment, where innovative ideas in investment strategies are shared openly and constructively, driving the industry forward.

Customer-focus

• We think about how our decisions impact our customers and ensure we provide the best experience that we can.
• We believe in building lasting relationships with our clients, constantly learning from and listening to them, and always striving to look out for what's best for both sides.

Commitment

• We always aim to do the right thing and to do the right thing, excellently. We take accountability seriously and uphold ourselves to high standards, ensuring that we execute with attention to detail.
• We are dedicated to the long-term success of our clients in the dynamic world of financial technology, maintaining integrity and professionalism in every aspect of our work.