Security Vulnerability and Penetration Testing Engineer
12 hours ago
Work Setup: Hybrid (8x onsite per month - BGC, Taguig)
Schedule: Morning shift (8:00 AM - 5:00 PM or 9:00 AM – 6:00 PM)
Must be amenable to render overtime, work on weekends and/or Philippine holidays if needed.
About the Role
The Security Vulnerability and Penetration Testing Engineer is responsible for assessing and improving the organization's security posture. This role will perform web application penetration tests, identify and assess vulnerabilities, and provide clear and actionable recommendations. You will ensure that security risks are properly identified, documented, and communicated to both technical and non-technical stakeholders.
Key Responsibilities
- Conduct penetration testing and vulnerability assessments for web applications and systems.
- Serve as a subject matter expert for Vulnerability Assessment and Penetration Testing (VAPT) activities.
- Manage and maintain VAPT tools, platforms, and processes.
- Produce detailed, easy-to-understand assessment reports with clear risk-based recommendations.
- Collaborate with cross-functional teams to address identified vulnerabilities and support remediation plans.
- Participate in security reviews and provide insights to strengthen overall cybersecurity defenses.
- Stay updated with emerging threats, vulnerabilities, and mitigation techniques.
Qualifications
- Education: Bachelor's degree in Computer Science, Information Security, or related field.
Certifications:
Required: CISSP and Offensive Security OSCP (or equivalent experience in penetration testing).
- Preferred: GIAC GPEN or GWAPT certifications.
Experience:
3–5 years of experience focused on Web Application Penetration Testing (Network Pen testers not applicable).
- Strong understanding of risk management principles and ability to communicate risk clearly.
- Experience creating reports and explaining findings to non-technical audiences.
- Proficient in using VAPT tools such as Nessus, AppScan, Burp Suite, Nipper, Trustwave, and frameworks such as Wireshark, Kali, Metasploit.
- Knowledge of OWASP Top 10, CVE, and common security exploits.
- Familiarity with cloud and mobile penetration testing is an advantage.
Soft Skills
- Strong analytical and problem-solving abilities.
- Excellent written and verbal communication skills.
- Ability to stay composed under pressure and work independently.
- Passionate about cybersecurity and continuous learning.
-
Bonifacio Global, Metro Manila, Philippines B & M Global Services Manila, Inc. Full time ₱6,480,000 - ₱7,920,000 per yearThe Security Vulnerability and Penetration Testing (VAPT) Engineer will oversee and serve as a technical resource for all assessment activity related to the security posture of existing and proposed firm systems, platforms, and processes to protect and continually improve the confidentiality, integrity, and availability of information systems per the...
-
Manila, Philippines Baker & McKenzie Rechtsanwaltsgesellschaft mbH Full timeSecurity Vulnerability and Penetration Testing Engineer Business Services | Manila CenterSecurity Vulnerability and Penetration Testing Engineer Description The Security Vulnerability and Penetration Testing Engineer will oversee and serve as a technical resource for all assessment activities related to the security posture of existing and proposed firm...
-
QA Engineer
5 days ago
Manila, Philippines Ridge Security Technology Inc. Full timeQA Engineer (Security Testing & Automation) Ridge Security develops an AI‑powered offensive security platform that detects and validates cyber risks with zero false positives, enabling enterprises to reduce risk through continuous threat exposure management. Our cutting‑edge solutions incorporate advanced artificial intelligence for comprehensive...
-
Manila, National Capital Region, Philippines DL Public Relations Full time ₱800,000 - ₱1,200,000 per yearPenetration Engineer (Senior/Advanced/Expert) – Mandarin Speaker Work Location: Remote Job Level: Senior to Expert Level Openings: 3 Positions Languages: Mandarin (Fluent), English (Professional)Are you a highly skilled penetration tester with a passion for offensive security? We are looking for Mandarin-speaking Penetration Engineers at Senior to Expert...
-
Senior Penetration Tester
4 days ago
Manila, National Capital Region, Philippines GSS-PH Consulting Solution Inc. Full time ₱800,000 - ₱1,200,000 per yearAt least 4+ years of experience in Penetration TestingExperienced in Vulnerability Assessment and Penetration Testing of the following areas:Web Application (Non-Negotiable)API (Non-Negotiable)MobileNetworkPhysical Penetration TestInfrastructureExperienced in exploitation of vulnerabilitiesUnderstanding of web-based application vulnerabilities (OWASP Top...
-
Penetration Tester
4 days ago
Manila, National Capital Region, Philippines Propelsys Technologies LLC Full time ₱900,000 - ₱1,200,000 per yearJob Title:Penetration Tester Location: RemoteManila, (Philippines) Shift Timing: 2:00 PM – 11:00 PM (Manila Time) Type: Long-Term Contract Experience Level: Minimum 2+ Years Interview Mode: Video Rounds (2–3 rounds, ~30 mins each) Working Hours: 9-hour shift (8 productive hours) Work Mode: 100% Remote Job Overview:We are looking for a passionate and...
-
T&T Consultant
2 weeks ago
Manila, Philippines Deloitte PLT Full timeAt Deloitte, our purpose is to make an impact that matters for our clients, our people, and the communities we serve. We believe we have a responsibility to be a force for good, and WorldImpact is our portfolio of initiatives focused on making a tangible impact on society’s biggest challenges and creating a better future. We strive to advise clients on how...
-
T&T Consultant
1 week ago
Manila, Philippines Deloitte PLT Full timeOverview Select how often (in days) to receive an alert: Date: 8 Sept 2025 Location: Jakarta, ID Are you ready to unleash your potential? At Deloitte, our purpose is to make an impact that matters for our clients, our people, and the communities we serve. We believe we have a responsibility to be a force for good, and WorldImpact is our portfolio of...
-
T&T Senior Consultant
1 week ago
Manila, Philippines Deloitte PLT Full timeSelect how often (in days) to receive an alert: Date: 14 Sept 2025 Location: Jakarta, ID Are you ready to unleash your potential? At Deloitte, our purpose is to make an impact that matters for our clients, our people, and the communities we serve. We believe we have a responsibility to be a force for good, and WorldImpact is our portfolio of initiatives...
-
QA Engineer
2 weeks ago
Manila, National Capital Region, Philippines Ridge Security Technology Inc. Full time ₱600,000 - ₱1,200,000 per yearJob Description: QA Engineer (Security Testing & Automation)About Us Ridge Security develops an AI-powered offensive security platform that detects and validates cyber risks with zero false positives, enabling enterprises to reduce risk through continuous threat exposure management. Our cutting-edge solutions incorporate advanced artificial intelligence for...
