Engineer, Security Operations Center

Engineer, Security Operations Center Firm SummaryWhite & Case is an elite global law firm serving leading companies, financial institutions and governments worldwide. Our long history as an international firm means we are perfectly placed to help our clients resolve their most complex legal challenges wherever they may be.

With lawyers and staff operating from more than 47 locations, working in virtually every country of the world, we have invested heavily in building a high-quality full-service practice competing at the top of the market. We are distinguished by our on-the-ground presence in the world’s key financial markets and our strengths in handling complex cross-border work.

It’s not just about our global network of offices and shared services centers; it’s the global interconnectedness of the Firm that our people, and our clients, value most. We work well together across geographic and practice boundaries. It’s one of the reasons we attract and retain cross-border work.

Our lawyers are globally minded, enterprising, collaborative and committed to excellence. Our people represent 90 nationalities and speak 80 languages. Position Summary

You will be part of our Security Operations Center (SOC) Team whose main responsibility is to mitigate and prevent security threats through monitoring and reporting, while also implementing strong cyber security practice to protect the Firm. You will work in a team operating 24/7 and work closely with the different Technology teams such as the Service Desk, NOC, and our engineers specialized in security and infrastructure.

Although primarily focused on day-to-day operational matters, you will also participate in varying security projects. The attention to detail and a strong focus on processes will build the base of your success and will improve your overall understanding of supporting the Firm.

You have a full understanding of the security technologies and solutions that equip you to implement security best practice within the Security Operations Center. Your inputs and contributions relating to analyzing security threats, understanding risks and business impact will be as equally important to your role. This will help you to support our risk-based approach and the integration of security into all IT systems and operational practices.

 Our Functional AreaTechnology at White & Case plays a key role in enabling our lawyers is practicing law around the world. Our team comprises of three functions: Business Services – who maintain, develop and support our enterprise systems, Operations – who design, build and support our communications and data centre operations, and Support Services – who provide desktop, meeting and training support in the Firm’s offices. Together we support our lawyers with leading edge technology and systems to deliver elite legal and best-in-class client service. Our globally-minded team covers a range of technical disciplines and business skill sets. This encompasses from business analysts, data architects, application developers and engineering staff covering range of technologies that include virtualisation, cloud, networking, storage, collaboration services and security. We deploy the latest technology and hardware within our state of the art offices. Our technical support staff support and train our people on the latest hardware and operating systems, remote working capability and mobile devices. Our Shared Services centres provide Service Desk and Operation Centres that providing support and monitoring of Firm systems 24 x 7.  Working closely with our business services colleagues in support of the Firm’s Finance, HR, Marketing and KM Information Technology systems Drawing, Global Technology Services is at the heart of the Firm’s global operations.    Duties and Accountabilities1

• Develop, document, and implement process within the SOC and relevant reports
• Participate in Firm-wide planning activities
• Actively monitor new and emerging Security infrastructure-related technologies, trends, issues and solutions
• Adhere to and champion the Technology core values and principles
• Engage directly with Security Infrasctructure team and Technology groups related to projects and initiatives that would strengthen the overall security posture of the SOC team and the firm.
• Engage across different teams and functions to address security events and creation of process flow
• Ability to prioritise, work well under pressure and thrive under the operational demands inherent within the role.
• Proactively remediate security gaps in the infrastructure and remediate risks that affect information integrity.

  

Qualifications

• 3+ years IT experience for a medium to large geographically dispersed enterprise

• Experience in managing and operating of SIEM and IPS.

• Experience in security solutions like: Antivirus/Antimalware, Network/Host based IPS, Web-Proxy, NAC, Next Gen Firewall, Encryption, 2FA, Anti-Spam and DLP.

• Strong in Forensics: Log Correlation, Parsing and Auditing. Packet analyzation and System data gathering.

• Knowledge on endpoints, server platform, network devices, threats, vulnerabilities and practical use case for common attacks and best practices.

• Knowledge in foundational networking basics and understanding common Protocols from Data-link to Application Layer.

• Knowledge in Vulnerability Management.

• Experience with Cloud Security is an advantage

• Experience with DLP tools is an advantage

• Experience with SOAR is an advantage

• Strong background on security incident response, root cause analysis, triage and remediation. (from knowledge to strong background)

• Knowledgeable in network scanning and penetration testing.

• Knowledgeable in malware analysis, CnC and IOC.

• Basic knowledge of authentication and cryptography technology.

• Investigative mindset, able to filter and select interesting data.

• Self-initiative and motivated on learning and catching up with the latest in security such as: vulnerability, exploit and adversary.

• Ability to analyze and resolve complex issues

• Strong presentation and interpersonal skills

• Must be able to multitask and work in a fast-paced environment

Location & Reporting

• Work Location: Makati
• Hybrid 3x per week onsite
• Must be ameanble to rotating scheduule

   

  1The above is only a general description of the essential duties associated with this position and does not represent an exhaustive or comprehensive list of all duties. 
  

Primary Location

: Philippines-Manila 

Expected Workplace: Onsite 

Job Posting

: Jul 30, 2025, 4:24:16 PM