Manager, Digital Forensics and Incident Response Investigator

Do you want to take the first step in making Filipinos’ lives better everyday? Here in GCash we want to stay at the forefront of the FinTech industry by creating innovative, meaningful, and convenient financial solutions for the nation! G ka ba? Join the G Nation today!

Key Responsibilities

• Lead and manage end-to-end digital investigations, including internal incidents, cyberattacks, fraud, intellectual property theft, and insider threats.
   

• Oversee digital evidence collection, preservation, analysis, and reporting across endpoints, servers, mobile devices, and cloud environments.
   

• Coordinate forensic efforts during incident response and support legal, compliance, and HR functions as needed.
   

• Develop and maintain forensic investigation playbooks, standard operating procedures (SOPs), and chain-of-custody protocols.
   

• Serve as subject matter expert on digital forensics tools, techniques, and best practices.
   

• Produce detailed investigative reports with clear timelines, findings, and risk assessments for technical and non-technical audiences.
   

• Interface with legal counsel, law enforcement, and regulators as necessary.
   

• Evaluate and implement industry-leading forensic tools and technologies.
   

• Mentor and train junior investigators and analysts.
   

• Stay current with cybercrime trends, malware behavior, threat actor tactics, and legal precedents in digital investigations.
   

Qualifications

Required

• Bachelor’s degree in Computer Science, Digital Forensics, Cybersecurity, or a related field.
   

• 7+ years of experience in cybersecurity, digital forensics, or incident response roles.
   

• Strong working knowledge of forensic tools (e.g., EnCase, FTK, Cellebrite, X-Ways, Magnet AXIOM).
   

• Hands-on experience with evidence acquisition, log analysis, memory and disk forensics, malware triage, and timeline reconstruction.
   

• Familiarity with legal and compliance standards (e.g., GDPR, HIPAA, NIST 800-86, ISO/IEC 27037).
   

• Excellent communication skills with ability to present complex findings to both technical and executive stakeholders.
   

Preferred

• Certifications such as GCFA, CFE, CHFI, EnCE, or CISSP.
   

• Background in law enforcement, internal investigations, or legal tech is a plus.
   

• Understanding of cloud forensics (AWS, Azure, GCP).
   

Key Competencies

• Strong analytical and investigative mindset
   

• Attention to detail and evidence integrity
   

• Ethical judgment and discretion
   

• Team leadership and crisis management
   

Ability to operate under pressure and tight timelines

What We Offer

Opportunity for career growth and development in the #1 FinTech company in the country Working with a dynamic and highly collaborative team who want to change the game A company that values their people with highly competitive and flexible compensation and benefits package