Engineer, Security Operations Center

Engineer, Security Operations Center  Firm Summary

White & Case is an elite global law firm serving leading companies, financial institutions and governments worldwide. Our long history as an international firm means we are perfectly placed to help our clients resolve their most complex legal challenges wherever they may be.

 

With lawyers operating from more than 40 locations, working in virtually every country of the world, we have invested heavily in building a high-quality full-service practice competing at the top of the market. We are distinguished by our on-the-ground presence in the world’s key financial markets and our strengths in handling complex cross-border work.

 

It’s not just about our global network of offices; it’s the global interconnectedness of the Firm that our people, and our clients, value most. We work well together across geographic and practice boundaries. It’s one of the reasons we attract and retain cross-border work. And why we attract a diverse group of people.

 

Our lawyers are globally minded, enterprising, collaborative and committed to excellence. Diversity is a core value of our Firm and it has been recognized with numerous awards and top rankings around the world. Our people represent 90 nationalities and speak 80 languages.     Position Summary

You will be part of our Security Operations Center (SOC) Team whose main responsibility is to mitigate and prevent security threats through monitoring and reporting, while also implementing strong cyber security practice to protect the Firm. You will work in a team operating 24/7 and work closely with the different Technology teams such as the Service Desk, NOC, and our Engineers specializing in Security and Infrastructure.

 

Although primarily focused on day to day operational matters, you will also work across a varying security projects and how the team supports our overall Cyber security stragtegy. The attention to detail and a strong focus on processes will build the base of your success and will improve your overall understanding of supporting the Firm.

 

You have a full understanding of the security technologies and solutions that equip you to implement security best practice within the Security Operations Center. Your inputs and contributions relating to analyzing security threats, understanding risks and business impact will be as equally important to your role. This will help you to support our risk-based approach and the integration of security into all IT systems and operational practices.      Our Technology Team

Technology at White & Case plays a key role in enabling our lawyers in practicing law around the world.

 

Our team is comprised of three functions: Business Services – who maintain, develop and support our enterprise systems, Operations – who design, build and support our communications and data center operations, and Support Services – who provide training, desktop and meeting support in the Firm’s offices. Together we support our lawyers with leading edge technology and systems to deliver elite legal and best-in-class client service.

 

Globally-minded and diverse, our team covers a range of technical disciplines and business skill sets. This encompasses business analysts, data architects, application developers and engineering staff covering a range of technologies that include virtualization, cloud, networking, storage, collaboration services and security. We deploy the latest technology and hardware within our state-of-the-art offices. Our technical support staff support and train our people on the latest hardware and operating systems, remote working capabilities and mobile devices. Our Shared Services centers deliver Service Desk and Operations functions that support our colleagues and monitor Firm systems 24 x 7.

 

Working closely with our business services colleagues in support of the Firm’s Finance, Human Resources, Marketing, and Knowledge Information Technology systems, Technology is at the heart of the Firm’s global operations.      Duties and Accountabilities1

• Reports to the Security Operations Team Lead
• Develop, document, and implement process within the SOC and relevant reports
• Participate in Firm-wide planning activities
• Actively monitor new and emerging Security infrastructure-related technologies, trends, issues and solutions
• Adhere to and champion the Technology core values and principlesEngage directly with Security Infrasctructure team and Technology groups related to projects and initiatives that would strengthen the overall security posture of the SOC team and the firm.
• Engage across different teams and functions to address security events and creation of process flow
• Ability to prioritise, work well under pressure and thrive under the operational demands inherent within the role.
• Proactively remediate security gaps in the infrastructure and remediate risks that affect information integrity.

  

Qualifications

• 4+ years IT experience for a medium to large geographically dispersed enterprise
• Experience in managing and operating of SIEM and IPS.
• Experience in security solutions like: Antivirus/Antimalware, Network/Host based IPS, Web-Proxy, NAC, Next Gen Firewall, Encryption, 2FA, Anti-Spam and DLP.
• Strong in Forensics: Log Correlation, Parsing and Auditing. Packet analyzation and System data gathering.
• Knowledge on endpoints, server platform, network devices, threats, vulnerabilities and practical use case for common attacks and best practices.
• Knowledge in foundational networking basics and understanding common Protocols from Data-link to Application Layer.
• Knowledge in Vulnerability Management.
• Strong background on security incident response, root cause analysis, triage and remediation. (from knowledge to strong background)
• Knowledgeable in network scanning and penetration testing.
• Knowledgeable in malware analysis, CnC and IOC.
• Basic knowledge of authentication and cryptography technology.
• Investigative mindset, able to filter and select interesting data.
• Self-initiative and motivated on learning and catching up with the latest in security such as: vulnerability, exploit and adversary.
• Ability to analyze and resolve complex issues
• Strong presentation and interpersonal skills
• Must be able to multitask and work in a fast-paced environment
• Capable of grasping new concepts without prior experience
• Ability to travel or work overtime, as needed
• Comfortably interact with all levels of the partnership and staff.

 

Location & Reporting

• This is a full-time role based in Manila, Philippines
• This role reports to Security Operations Center Lead

   1The above is only a general description of the essential duties associated with this position and does not represent an exhaustive or comprehensive list of all duties.
 

Primary Location

: Philippines-Manila 

Expected Workplace: Hybrid 

Job Posting

: Nov 29, 2024, 12:21:58 PM