Cyber Security Analyst

his is a full-time hybrid role for L3 Linux Cyber Security Analyst, located in Muntinlupa City. The L3 Linux Cyber Security Analyst will be responsible for day-to-day tasks associated with monitoring and responding to security events, as well as investigating and conducting forensic analysis of security incidents. The candidate will also be responsible for testing, developing, and implementing security controls.
TECHNICAL REQIUREMENTS:
? Strong capabilities to analyze complex security attacks and perform efficient incident triage.
? Solid knowledge on Windows/Linux systems and security hardening
? Solid knowledge on network security.
? IT Security / Cybersecurity certifications a plus.
? Capabilities to run and operate solutions like Palo Alto firewalls, cortex XDR, XSOAR, Splunk, AD audit+, Microsoft Defender, Microsoft 365.
? Knowledge of the MITRE ATT&CK framework and its related tactics, techniques and procedures (TTPs).
? Good knowledge of other major security solutions on the market is also a plus
PRIMARY RESPONSIBILITIES:
? Detect, Analyze and classify cyber security incidents & threats via different logs sources across multiple security solutions
? Identify source, target of attack and block access to existing target, applications and infrastructure assets etc.
? Provide security hardening advice to different local IT Teams across the globe, for workstation, servers and Network to secure their environment
? Commit oneself to the teams’ target in terms of managing the backlogs/joining the shift rotations as well as conducting internal sharing’s whenever needed and appropriate
? Ensure a close coordination with various IT Sec internal teams as well as InfoSec teams for projects/initiatives that will improve the security posture for the whole group
? Participate in Cybersecurity Attack Crisis War Room and support our L3 analyst for follow up remediation’s needed
? Assist with the implementation of security systems including review of logs and reports from various tools such as firewall, IDS/IPS, NGAV, SIEM, EDR and event log monitoring.
? Manage and run cyber security solutions & tools
? Have a permanent cyber security watch, for malware, web-based attacks, injections attacks, phishing…
? Follow what is mentioned in the internal SOPs closely and provide insights to optimize the SOP accordingly whenever possible
Apply now and contribute to shaping the future of our company’s Security Analysts while working in a dynamic and collaborative environment.