SIRCC Incident Response Manager
PZZ04 - DXC Manila IPC McKinley Hill (PZZ04), Philippines
PHP 324K-420K (estimate) Mid-level Full Time
Tasks
- Analyze security incidents
- Close incidents with resolution details
- Conduct daily ticket reviews
- Create and review incident RCA documents
- Create remediation plans
- Develop containment strategy
- Develop incident playbooks
- Engage higher level support
- Escalate to security support teams
- Follow HPIM process for P1 incidents
- Identify indicators of compromise
- Lead major IT security incident investigations
- Manage analysts day to day
- Manage end to end incident ownership
- Mentor analysts and guide new hires
- Notify strategic incident manager
- Perform alert suppression analysis
- Perform alert tuning analysis
- Perform incident ticket follow up
- Prepare executive summaries
- Provide security team metrics
- React during security crises
- Record technical analysis in ServiceNow
- Review incident tickets for closure
- Risk assess security incidents
- Select and improve tools
- Support analysts with queries
- Update parent child tickets
- Use RtOP process for incidents
- Verify incident handoff in tickets
Perks/Benefits
- Company sponsored training
- Employee assistance program
- Health insurance
- Life insurance
- Maternity leave
- Non-taxable allowance
- On Call Shift Allowance
- Paid vacation
- Paternity leave
- Retirement program
- Sick leave
- Up to date working arrangements
Skills/Tech-stack
Alert Tuning | Anti-Malware | Cyber Kill Chain | Detection Systems | EDR | Endpoint protection | FTP | Firewalls | Forensics | HTTP | HTTPS | ISO27001 | ITIL | ITSM | Incident Response | Indicator of Compromise | Information security | Intrusion Detection | Intrusion Prevention | Intrusion Prevention Systems | Intrusion detection systems | Kill Chain | Log Analysis | MITRE | Malware analysis | NIST | Network Forensics | Network Security | OSINT | Operating System | Operating system security | POP3 | Prevention systems | RCA | SIEM | SIEM Alert Tuning | SMTP | Security Audits | ServiceNow | System security | TCP/IP | Threat Analysis | Windows Security
Education
Bachelor of Engineering | Bachelor of Science | High School Diploma
Related jobs
-
AWS | Application Security | Azure | CIS Controls | Data ProtectionMentorship | Reusable templates development | Stakeholder engagementSenior-level Full TimeMakati, Metro Manila, Philippines1d ago
-
Amazon Web Services | Application Controls | Azure | Cloud controls | Cloud platformSenior-level Full TimeMakati, Metro Manila, Philippines1d ago
-
Application Controls | Audit tools | Cloud Security | Cybersecurity | Cybersecurity frameworksMid-level Full TimeMakati, Metro Manila, Philippines1d ago
-
Cyber Security PHP 1200K-1440KApplication Security | Authentication and Authorization | CI/CD | Cloud Security | DevSecOpsMid-level Full TimeNaucalpan de Juárez, México, México4d ago
-
Application Security Engineering Manager PHP 384K-480KApplication Security | Code review | Cryptography | DAST | FATFCareer advancement opportunities | Cross-functional collaboration | Scalable growthMid-level Full TimeTaguig City, Metro Manila, Philippines5d ago
-
Chief Security Officer PHP 408K-456KAccess Control | Anti Theft Mechanisms | Anti-Money Laundering | Application Security | Blockchain SecurityExecutive-level Full TimeTaguig City, Metro Manila, Philippines5d ago
-
Information Security Manager ( Global ) PHP 120K-160KAccess Management | AppSec | Audit management | Cloud Security | DLPSenior-level Full TimeSouth Goa, Goa6d ago
-
Security Analyst PHP 360K-576KAntivirus | Firewalls | IDSIPS | Incident Response | Malware analysisEmployee referral program | Hybrid work | Paid certifications | Quality Hardware Provided | Social eventsMid-level Full TimeManila, Metro Manila, Philippines - Remote R6d ago
-
Department of Professional Practice - Nitso Manager PHP 120K-160KDocumentation | ISO 27001 | IT Audit | Information security | Microsoft ExcelSenior-level Full TimeMakati City, Metro Manila, Philippines6d ago
-
SOC Analyst PHP 720K-720KAWS | Amazon Web Services | Atlassian | CrowdStrike | CybersecurityFully onsiteEntry-level Full TimeOrtigas Center, Metro Manila, Philippines6d ago
-
Active Directory | Azure Active Directory | Azure Networking | EDR | Endpoint ManagementCareer growth | Collaborative work environment | Supportive team environment | Work-life balanceMid-level Full TimeMuntinlupa, NCR, Philippines8d ago
-
API | Access Control | BYOD | CCPA | Data PrivacyIn-office scheduleSenior-level Full TimeDumaguete9d ago
-
End User Compute Operations Engineer PHP 396K-576KActive Directory | Configuration Compliance | Data Loss Prevention | Data loss | Defender for EndpointMid-level Full TimeTaguig, Metro Manila, Philippines11d ago
-
SOC Supervisor PHP 480K-540KAttack identification | FTP | Forensic analysis | HTTP | Incident ResponseMid-level Full TimeManila, 00, PH14d ago
-
Junior SOC Analyst (L1 and L2) PHP 150K-175KEndpoint protection | Firewalls | IDS/IPS | Incident Response | Log AnalysisGrowth opportunities | Health insurance | Remote workSenior-level Full TimePhilippines - Remote R15d ago
-
Senior SOC Analyst (L3) PHP 125K-175KBash | Endpoint protection | Forensics | IBM QRadar | ISO 27001Growth opportunities | Health insurance | Remote workSenior-level Full TimePhilippines - Remote R15d ago
-
Senior SOC Analyst (L3) PHP 150K-175KBash | Detection Systems | Endpoint protection | Forensic Investigation | IBM QRadarHealth Insurance HMO | Morning shift schedule | Opportunities for growth and advancement | Remote workSenior-level Full TimePhilippines - Remote R15d ago
-
Cybersecurity Operations Head PHP 420K-540KCASB | Compliance Management | Cybersecurity frameworks | EDR | Incident ResponseExecutive-level Full TimeTaguig, Metro Manila, Philippines18d ago
-
Security Officer PHP 584K-720KAccess Control | Access Management | Android security | Application Security | Change ManagementMid-level Full TimeTaguig, NCR, Philippines18d ago
-
Lead, Governance, Risk & Compliance (GRC) PHP 90K-160KAudit management | Awareness Training | Compliance | Data Privacy | Governance RiskCareer development and training opportunities | Defined career progression paths | Mentorship | Performance-Based Incentives | Recognition programsSenior-level Full TimeMakati, Metro Manila, Philippines18d ago
-
Application Security | Computer Networking | Forensic Investigation | Forensics | Incident ResponseSenior-level Full TimeMakati, NCR, Philippines18d ago
-
Data Loss Prevention | Data Visualization | Data loss | Forensic Investigation | Incident ResponseMid-level Full TimeMakati, NCR, Philippines18d ago
-
Digital forensics | Evidence Preservation | Incident Response | Linux operating system | Network SecurityMid-level Full TimeMandaluyong, NCR, Philippines18d ago
-
CCSP | CISA | CISM | CISSP | COBITHybrid workSenior-level Full TimeTaguig, Metro Manila, Philippines18d ago
-
Cloud infrastructure | Cloudflare | Endpoint Security | Firewall Management | Incident ResponseProfessional development | Remote work | Supportive, inclusive work environmentMid-level Full TimeMakati, NCR, Philippines18d ago