# Identity & Security Engineer

> VBP · Cebu City, Philippines · Full-time · Posted 2026-07-10

**Workplace:** on_site

**Department:** Managed Services

## Description

Overview of the Role

The **Identity & Security Engineer** is responsible for the operational management, security, governance, and continuous improvement of identity, endpoint security, backup, patch management, and security administration across managed customer environments. This role ensures the confidentiality, integrity, and availability of customer systems by administering identity and access management, endpoint protection platforms, backup and recovery solutions, vulnerability remediation, and security monitoring while maintaining compliance with security policies, regulatory requirements, and service level agreements (SLAs). 

The role serves as the technical owner for identity governance and security operations, proactively identifying risks, implementing security best practices, standardizing security processes, and providing operational reporting to improve customers' overall security posture and operational resilience. 

Responsibilities:

-   Administer and maintain Microsoft Entra ID, Microsoft 365 identity services, and authentication platforms. 

-   Manage user lifecycle processes including provisioning, modification, and deprovisioning of user accounts. 
-   Review and manage service accounts, shared accounts, application identities, and privileged credentials to ensure appropriate ownership, least privilege, and compliance. 
-   Administer endpoint security platforms including Microsoft Defender for Endpoint and other endpoint protection solutions. 
-   Deploy, configure, and maintain endpoint security policies across desktops, laptops, and servers
-   Monitor endpoint security posture and investigate malware detections, suspicious activities, and security incidents. 
-   Manage enterprise patch deployment processes across operating systems, applications, and supported platforms. 
-   Validate successful deployment of security updates and remediation activities. 
-   Administer backup platforms across customer environments. 
-   Validate backup integrity through regular restoration testing and recovery verification. 
-   Monitor security alerts, platform health, and operational status across identity, endpoint security, backup, and cloud services. 
-   Review Microsoft 365 Service Health, Azure Service Health, and other vendor advisories to assess customer impact.
-   Ensure security monitoring platforms remain operational and accurately configured. 
-   Identify excessive permissions, orphaned accounts, stale identities, inactive accounts, and security risks. 
-   Support security audits, compliance reviews, and customer security assessments. 
-   Prepare regular service health reports covering platform availability, backup status, patch compliance, endpoint security posture, and identity governance. 
-   Develop dashboards and metrics to measure security compliance and operational performance. 
-   Maintain technical documentation, operational procedures, knowledge articles, and security standards. 
-   Provide technical guidance and knowledge sharing to Service Desk and Technical Support teams.

## Requirements

-   Bachelor's degree in computer science, Information Technology, Cybersecurity, or related field preferred. 

-   Minimum of 3–5 years of experience in Identity Management, Systems Administration, Security Operations, or Infrastructure Engineering. 

-   Strong experience administering Microsoft Entra ID, Microsoft 365, Microsoft Intune, Exchange Online, Teams, SharePoint Online, and Microsoft Defender. 

-   Experience managing enterprise backup and recovery solutions. 

-   Experience administering endpoint management platforms including Microsoft Intune and Datto RMM. 

-   Strong knowledge of Microsoft security technologies including Conditional Access, MFA, Identity Protection, Privileged Identity Management (PIM), and Microsoft Defender. 

-   Experience with vulnerability management, endpoint compliance, and patch management processes. 

-   Understanding of identity governance, role-based access control (RBAC), least privilege principles, and privileged access management. 

-   Working knowledge of networking fundamentals, authentication protocols, and cloud security concepts. 

-   Experience producing operational reports, security metrics, and service health dashboards. 
-   Excellent written and verbal communication skills with the ability to communicate technical concepts to both technical and non-technical stakeholders. 
-   Relevant certifications such as Microsoft Certified: Identity and Access Administrator Associate, Microsoft Certified: Security Administrator Associate, CompTIA Security+, AZ-500, SC-300, SC-200, or equivalent are highly desirable.

## Benefits

-   500K per incident HMO coverage + Dental & Optical benefits ​
-   2-week paid Christmas vacation​
-   Electricity & Data subsidies​
-   25K Educational Assistance ​
-   Training and equipment will be provided​
-   Fixed Schedule of Mon-Fri from 7 AM to 4 PM​

## Apply

[Apply at VBP](https://apply.workable.com/vbp/j/0F4C5FA1D1/apply)

---
Powered by [Workable](https://www.workable.com)
