Job Title: Cybersecurity Specialist
Work Setup and Location: On-Site, Arayat st., Mandaluyong, Metro Manila
Work Schedule: Morning or Mid-Shift, Monday-Friday (8-hour shift)
Experience Level: 3-5 years
About the RoleWe are looking for a proactive and detail-oriented Cybersecurity Specialist to join our team. In this role, you will be responsible for safeguarding the organization's IT infrastructure, networks, and data from cyber threats and attacks. You will implement security measures, monitor for vulnerabilities, conduct risk assessments, and ensure compliance with industry standards. The ideal candidate will have strong technical expertise, excellent problem-solving abilities, and a deep understanding of cybersecurity best practices and emerging threats.
Key Responsibilities Risk Assessment and Management: Conduct regular security assessments, including vulnerability scanning and penetration testing, to identify and mitigate risks. Implement strategies to address potential security gaps and enhance overall system security. Security Monitoring and Incident Response: Monitor networks, systems, and applications for security breaches or suspicious activity. Respond to security incidents, manage investigations, and ensure timely resolution of security-related issues. Threat Intelligence: Stay informed about emerging cybersecurity threats, vulnerabilities, and trends. Leverage threat intelligence tools and platforms to proactively address potential security challenges. Security Policy and Procedure Development: Develop, implement, and maintain security policies, procedures, and best practices to ensure the protection of sensitive data and compliance with security standards and regulations. Compliance and Audits: Ensure compliance with relevant cybersecurity regulations and industry standards (e.g., GDPR, HIPAA, NIST, ISO 27001). Prepare for and support audits to verify adherence to security frameworks. Training and Awareness: Educate employees and stakeholders about cybersecurity best practices, data protection, and safe online behavior. Conduct security awareness training sessions to foster a security-conscious culture. Security Tools Management: Configure, manage, and maintain security tools such as firewalls, antivirus software, intrusion detection/prevention systems (IDS/IPS), and encryption technologies. Collaboration and Reporting: Work closely with IT teams, project managers, and business units to ensure security is integrated into all aspects of the organization's technology and operations. Report on security posture, risks, and incidents to leadership. Requirements Qualifications Experience: 3-5 years of experience in cybersecurity, information security, or a related field. Technical Skills: Proficiency with security tools (e.g., firewalls, IDS/IPS, SIEM systems, encryption tools, endpoint protection). Experience in vulnerability management, incident response, and penetration testing. Familiarity with network security protocols, secure coding practices, and security frameworks (e.g., NIST, CIS, ISO 27001). Education: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. Certifications (preferred): CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), CompTIA Security+, CEH (Certified Ethical Hacker), or other relevant certifications. Key Competencies Strong analytical skills with the ability to identify, assess, and mitigate security threats. Excellent communication skills, with the ability to articulate security risks and technical concepts to non-technical stakeholders. In-depth knowledge of cybersecurity best practices and an ability to stay up to date with the latest security trends and tools. Strong attention to detail, with the ability to implement and monitor security measures to protect critical systems and data. Ability to work under pressure and respond to security incidents swiftly and efficiently. Join us to help protect and strengthen our organization's cybersecurity posture. This role offers the opportunity to make a significant impact by ensuring the security of critical IT infrastructure, mitigating risks, and safeguarding against evolving cyber threats.