Lead IT Security Engineer

Location: Mandaluyong,Metro Manila,Philippines

Who We Are

We are trusted, modern technology leaders in:

• Agile Software Development
• Quality Assurance
• Cloud Consulting and Managed Services
• Data Engineering and Analytics
• Artificial Intelligence and Machine Learning

We use technology to enrich experiences, empower businesses, and uplift communities.

Our C.A.R.E. values:

• nourish Creativity
• embody Agility
• manifest Reliability
• pursue Evolution

The Role

We are looking for an IT Security Engineer (Lead) who will take end-to-end ownership of Stratpoint’s internal security. This role will be responsible for securing our digital workplace, assets, internal networks, and endpoints.

You will design, implement, and manage security policies, tools, and procedures that protect Stratpoint’s people, data and asset. This is a hybrid strategic and hands-on role requiring both deep technical skills and sound judgment around security operations and risk.

The Benefits

At Stratpoint, we enjoy the autonomy, lack of bureaucracy, and the freedom to experiment but without the chaos. We’re like a startup but with adult supervision.

You will be supported by capable management of HR, Finance and IT that adheres to the highest standards of integrity and good governance.

Hybrid is our mode of work, but when we need to come together, we have inviting open floor office spaces designed to spark gatherings, collaboration, and camaraderie.

Stratpoint employees enjoy:

• SSS, Pag-ibig and Philhealth benefits + company contribution
• a monthly miscellaneous allowance
• 13th month pay based on your monthly rate.
• Vacation and Sick leave
• Wellness programs such as Wellness Wednesdays
• HMO coverage
• Team buildings and quarterly events (company outings and festive celebrations for Chinese New Year, Valentines, Halloween and Christmas)
• And, friendly intramural competitions

Your Team

You will work closely with the ITX team and Technology Governance to ensure secure access and systems company-wide.

Your Responsibilities

Security Ownership

• Design, implement, and maintain internal security policies and procedures
• Define access control standards across accounts, devices, and services

Identity & Access Management

• Administer Google Workspace and other SaaS platforms, enforcing MFA, SSO, and role-based access
• Secure onboarding/offboarding and account lifecycle processes

Device & Endpoint Security

• Manage company assets using ManageEngine UEM and Service Desk Plus
• Monitor and respond to threats using Sophos Endpoint Security
• Enforce encryption, patching, and endpoint compliance policies

Network & SaaS Security

• Maintain secure VPN and office network configurations
• Regularly audit SaaS configurations for misconfigurations or access risks

Awareness & Incident Response

• Conduct phishing simulations, employee security training, and security briefings
• Lead investigation and resolution of internal security incidents

Risk Management & Compliance

• Run internal audits, vulnerability scans, and risk assessments
• Support compliance documentation and readiness (ISO 27001, SOC 2, etc.)

About You
You are/have:

• 4–6 years of experience in information security, systems administration, or IT operations with a focus on internal enterprise security
• Solid experience in: Unified Endpoint Management (UEM); Endpoint Protection; Administration of workplace productivity platforms (e.g., Google Workspace, Microsoft 365/Outlook)
• Strong understanding of access control, device compliance, network security, and incident response
• Ability to work independently and take ownership of internal security operations
• Clear communicator with strong documentation and troubleshooting skills

Nice to Have:

• Experience administering Google Workspace, ManageEngine (UEM and ServiceDesk Plus), and Sophos Endpoint Security
• Scripting or automation experience (e.g., Python, Bash, PowerShell)
• Familiarity with security frameworks (ISO 27001, NIST, SOC 2)
• Experience supporting audits or compliance initiatives

The requirements listed in this job description are guidelines, not hard and fast rules. You don’t have to satisfy every requirement or meet every qualification listed. If your skills are transferable and you are in the ballpark of what we are looking for, we encourage you to submit an application. We look forward to getting to know you more!