**Responsibilities**:
The role of **Breach Readiness - Principal** is to conduct full evaluation of the organization's current security posture and its ability to detect and respond to potential threats or security incidents.
Additional responsibilities include working with clients, vendors, and other support teams to ensure successful delivery of security services.
**Breach & Attack Readiness**
- Identify stakeholders for readiness assessment
- Coordinate with POC or Head of Security to agree on the assessment plan
- Review security operations processes against maturity assessment model
- Identify critical assets and prioritize mitigation plans
- Define tabletop exercise scenarios
- Conducts tabletop exercises to simulate real-life attacks
- Review gaps and provide opportunities for improvements
- Update security playbooks, policies, and procedures
**Incident Response**
- Review incident response plan, techniques, processes, and procedures to enable proactive detection and minimize impact on critical systems
- Align IR plan to industry best practice - preparation, identification, containment, eradication, recovery, lessen learned
- Prepare IR plan against cyber kill chain and adversaries TTP (Techniques, Tactics, and Procedures)
**Others**
- Provide technical expertise and directions to day-to-day security operations
- Stay current on security trends to mitigate potential security exposure
- Design, build, and run complex solutions and run the project
- Review policies, standards, and other process documents to ensure compliance on regulatory requirements as well as business requirements
- Provides regular security reports to various stakeholders
- Review contractual requirements
- Review and respond to RFP
- Stakeholder management
- Maintains internal procedural standards or runbooks related to the role
- Documenting process improvements and common problems
- Participate in knowledge sharing with other analysts and provide recommendations for improvements
**Qualifications**:
- Graduate of bachelor's Degree course, preferably IT related courses
- At least 1-2 years of experience in security doing threat investigation and incident response
- Strong foundation on Lockheed Martin Cyber Killchain, Mitre ATT&CK
- Strong foundation doing threat intelligence
- Working knowledge on Digital Forensics & Incident Response (DFIR)
- Familiarity on OODA Loop (Observe, Orient, Decide, Action)
- Strong foundation on computer fundamentals (hardware and software)
- Working knowledge on network fundamentals such as VPN, LAN, WAN, wireless network, network topologies, and access methods, switches, routers, protocols, and services such as OSI model, IPv4, IPv6, name resolutions, networking services, TCP/IP
- Solid foundation on security fundamentals such as types of threats, attack vectors, network vulnerabilities and attacks, user authentication, permissions, password policies, audit policies, cryptography, internet security, wireless security, and core security principles
- Solid foundation on various security tools such as Antivirus (AV), Antispam (AS), Endpoint Detection & Response (EDR), Firewalls (FW), Intrusion Detection / Prevention Systems (IDS/IPS), Data Loss Prevention (DLP), Security Information & Event Management (SIEM), Content Filtering, Vulnerability Management
- Other technologies such as cloud platforms
**Join our high-performing team and enjoy these benefits**:
- Healthcare Insurance (HMO) & Life Insurance coverage from day 1 of employment
- Expanded maternity leave up to 120 days*
- Expanded paternity leave up to 30 days*
- Employee Stock Purchase Pan
- Loyalty and Christmas Gift
- Inclusion and Diversity Benefits
- Night Differential
- Allowances
- Car and housing plan
- Company-sponsored trainings like upskilling and certification
- Flexible Working Arrangements
- Healthy and Encouraging Work Environment
**TERMS AND CONDITIONS**
**Additional Information**:
The following documents will be asked as part of the pre-hiring requirements prior onboarding.
We recommend to prepare the requirements early to ensure on time onboarding.
Detailed discussion will take place during onboarding process as well as changes on the requirements as needed.
- Transcript of Records (TOR)
- Diploma (for graduates only) and/or Certificate of Graduation
- Certificate of Employment (COE) and/or SSS Employment History
- Government Documents:
- SSS ID and/or SSS Verification Form
- SSS Statement of Account (SOA)
- SSS Certificate of Contribution
- Pag-IBIG Member's Data Record (MDR)
- Philhealth ID and/or Philhealth Member Data Record (MDR)
- TIN ID and/or Processed BIR Form 1905 or any BIR documents reflecting your TIN and with BIR Stamped
- NSO Birth Certificate
Edit jobStatus: OpenView public job page
**Salary**: Php28,000.00 - Php145,000.00 per month
Schedule:
- 8 hour shift
- Rotational shift