Job Summary
HMO on Day 1
Receive promising perks and rewards
Experience travel opportunities
Get recognized for what you do
Achieve work-life balance
Improve exponentially with enhanced learning
Responsibilities
Continuously monitor security tools and systems (e.g., Antivirus and firewalls) for potential threats and incidents.
Review and analyze security event logs to identify signs of malicious activity or breaches.
Assist in identifying, investigating, and triaging cybersecurity incidents (e.g., malware infections, unauthorized access, data breaches).
Follow predefined incident response protocols and escalate issues to IT Manager or security incident response team as needed.
Conduct initial analysis on suspicious activity, including researching known threat actors, attack vectors, and tactics.
Assist in identifying indicators of compromise (IOCs) and applying them to current environments.
Assist in configuring and maintaining security tools like firewalls, antivirus software, and endpoint protection.
Ensure security tools are updated and functioning correctly, reporting any issues promptly.
Document security incidents, responses, and investigations in ticketing systems and incident management platforms.
Generate regular reports on security activities, incidents, and system health for senior staff and management.
Contribute to threat intelligence efforts by sharing relevant findings and security trends within the organization.
Stay informed about the latest cybersecurity threats and vulnerabilities to aid in proactive defense.
Work closely with network and systems administrators, as well as other security teams, to support overall security objectives.
Assist in coordinating with the IT Team to ensure timely patching and vulnerability remediation.
Support the organization's security awareness efforts by providing insight into common attack techniques and best practices.
Assist in training end-users on how to identify phishing attempts, malware, and other cybersecurity risks.
Adhere to SOC policies and procedures for incident management, alert handling, and security best practices.
Follow a structured approach to troubleshooting and investigating security events.
Participate in cybersecurity training and certifications to enhance technical knowledge and grow within the security operations field.
Keep up with evolving cybersecurity trends, new tools, and emerging threats.
Requirements
Proven experience in a Incident Response role.
Knowledge of network security monitoring tools and practices.
Experience with vulnerability management tools and techniques.
Expertise in incident response, including detection, containment, and mitigation.
Familiarity with cybersecurity frameworks and incident response best practices (e.g., NIST, SANS).
Ability to analyze and interpret complex security data to identify threats and vulnerabilities.
Average communication skills to work effectively with internal teams and stakeholders.
Strong problem-solving skills and the ability to remain calm under pressure.
Preferred Qualifications:
Relevant cybersecurity certifications (e.g., CISSP, CEH, GCIH, CISM, or similar).
Experience with SIEM (Security Information and Event Management) platforms and incident response tools.
Familiarity with common attack vectors, such as DDoS, phishing, ransomware, and insider threats.
Amenable to report onsite in either Ortigas, Pasig City / Cubao, Quezon City
Must be amenable to any shift schedule
Available to start ASAP