Consulting_Cyber Detection & Response IRR Senior
Tasks
- Adapt response strategies for regional and regulatory requirements
- Analyze incident data to identify patterns
- Assign containment eradication and recovery tasks
- Conduct peer reviews of analyst work
- Conduct tier 3 security incident response
- Coordinate incident response communications
- Create post-incident reports
- Develop and enhance incident response playbooks
- Escalate and report issues
- Integrate threat intelligence into investigations
- Isolate suspected compromised hosts
- Maintain incident documentation and lessons learned
- Manage security incidents using documented procedures
- Mentor junior analysts
- Participate in cyber defense calls
- Perform response actions on managed hosts
- Perform threat analysis and root cause investigations
- Provide feedback to improve incident response quality
- Provide status updates to stakeholders
- Recommend containment eradication and recovery actions
- Standardize incident response procedures
- Stay updated on cybersecurity threats and technologies
Perks/Benefits
- N/A
Skills/Tech-stack
AWS | Azure | Cause analysis | Cloud Security | Cloud platform | CrowdStrike | Defender for Endpoint | Digital forensics | EDR | Google Cloud | Google Cloud Platform | Hybrid Infrastructure | Incident Response | Log Analysis | MITRE ATT&CK | Malware triage | Microsoft Defender | Microsoft Defender for Endpoint | Microsoft Sentinel | Network Protocols | Operating Systems | Packet Inspection | Playbook automation | Root Cause Analysis | Root cause | SIEM | SOAR | Security controls | Splunk | Threat Analysis | Threat Intelligence | Threat hunting | XSOAR
Education
N/A
Related jobs
-
Mid-level Full TimePhilippines, Central Visayas (Region VII), Cebu1d ago
-
Security Operations Center (SOC) Analyst, Level 2 PHP 480K-540KAI assisted security operations | AI-assisted Security | AWS | Access Management | Audit LogsAccess to advanced cybersecurity tools and technologies | Collaborative and inclusive work environment | Professional development opportunitiesMid-level Full TimePhilippines, Central Visayas (Region VII), Cebu, …1d ago
-
Account monitoring | Cause analysis | Compromised Account Monitoring | Detection rules | Email SecuritySenior-level Full TimeOrtigas4d ago
-
Tier 3 Network Security Analyst PHP 480K-480KApplication Firewall | DDoS Protection | Data Lake | Detection Systems | Disaster RecoveryHybrid work | Nights and weekends schedule | Overtime opportunitiesSenior-level Full TimePhilippines - Pasig City, Ortigas Center …7d ago
-
Incident Response Associate (6am to 3pm Shift) PHP 384K-549KCloud Security | Digital forensics | EDR | EDiscovery | IDSFlexible hybrid work model | Health insurance | Life insurance | Onsite/remote hybrid | Paid time offMid-level Full TimeManila, Philippines R8d ago
-
SOC Analyst PHP 720K-720KAWS | Atlassian | CrowdStrike | Cybersecurity compliance | Digital forensicsFully onsite workEntry-level Full TimeOrtigas Center, Metro Manila, Philippines10d ago
-
Security Analyst PHP 360K-576KAntivirus | Firewalls | IDSIPS | Incident Response | Malware analysisEmployee referral program | Hybrid work | Paid certifications | Quality Hardware Provided | Social eventsMid-level Full TimeManila, Metro Manila, Philippines - Remote R14d ago
-
SOC Analyst PHP 720K-720KAWS | Amazon Web Services | Atlassian | CrowdStrike | CybersecurityFully onsiteEntry-level Full TimeOrtigas Center, Metro Manila, Philippines15d ago
-
Antivirus | Cybersecurity | Detection Systems | Event management | FirewallCompetitive benefits | Ongoing learning opportunities | StabilityMid-level Full TimeMakati City, Metro Manila, Philippines18d ago
-
Junior SOC Analyst (L1 and L2) PHP 150K-175KEndpoint protection | Firewalls | IDS/IPS | Incident Response | Log AnalysisGrowth opportunities | Health insurance | Remote workSenior-level Full TimePhilippines - Remote R23d ago
-
Senior SOC Analyst (L3) PHP 125K-175KBash | Endpoint protection | Forensics | IBM QRadar | ISO 27001Growth opportunities | Health insurance | Remote workSenior-level Full TimePhilippines - Remote R23d ago
-
Senior SOC Analyst (L3) PHP 150K-175KBash | Detection Systems | Endpoint protection | Forensic Investigation | IBM QRadarHealth Insurance HMO | Morning shift schedule | Opportunities for growth and advancement | Remote workSenior-level Full TimePhilippines - Remote R23d ago
-
Information Security Analyst PHP 240K-240KCompliance documentation | GRC | Gap Analysis | ISO 27001 | Information Security AuditingMid-level Full TimeMandaluyong City, Philippines24d ago
-
Senior Cyber Threat Intelligence (CTI) Analyst PHP 250K-250KAdvanced persistent threat | C2 tracking | Command and control | Cyber Threat | Cyber Threat Intelligence13th month pay | Accidental death and disability cover | Company share plan | Day 1 HMO healthcare coverage | Employee assistance programSenior-level Full TimePHL Manila27d ago
-
Threat Intelligence Consultant PHP 480K-480KCyber Threat | Cyber Threat Intelligence | Data Analysis | Report Writing | Research13th month pay | Accidental death and disability cover | Company share plan | Employee assistance program | Group life insuranceEntry-level Full TimePHL Manila27d ago
-
Data Loss Prevention | Data Visualization | Data loss | Forensic Investigation | Incident ResponseMid-level Full TimeMakati, NCR, Philippines27d ago
-
Digital forensics | Evidence Preservation | Incident Response | Linux operating system | Network SecurityMid-level Full TimeMandaluyong, NCR, Philippines27d ago
-
AWS | Amazon CloudTrail | Amazon GuardDuty | Automation | Chain of CustodyContinuous learning | Flexible working model | Health and well-being benefits | Skill growth | Team collaborationSenior-level Full TimePasig City, PH, 160527d ago
-
Esp en Seguridad Servidores y Endpoints PHP 540K-720KAntimalware | BitLocker | CASB | CIS Controls | CrowdStrikeMid-level Full TimeNaucalpan De Juarez, México, 288344, 5339029d ago
-
GDS Consulting_Cyber Detection & Response Senior PHP 150K-150KAWS | Cloud Security | Cloud platform | CrowdStrike | Defender for EndpointSenior-level Full TimeTaguig, PH, 163430d ago
-
GDS Consulting_Data Protection Senior PHP 90K-150KAlert management | CASB | Data Loss Prevention | Data Protection | Data lossFlexible work environment | Health and wellness packages | Learning opportunities | Travel opportunities | Weekend workSenior-level Full TimeTaguig, PH, 16341mo ago
-
Active Directory | Asset Management | Azure Active Directory | Bash | Cause analysisFollow the sun support handoff | Knowledge base contributions | Remote work flexibilitySenior-level Full TimePhilippines1mo ago
-
AI Governance | AI/ML | AI/ML Security | Alert triage | Amazon Web ServicesEmployee assistance program | Flexible leave policies | Life insurance | Medical insurance | Paid time offEntry-level Full TimeManila, Philippines1mo ago
-
Azure AD | Cause analysis | Data Loss Prevention | Data loss | DatadogBelonging | Career growth | Community impact | Employee well-being | Flexible work environmentSenior-level Full TimeRemote-Philippines R1mo ago
-
Cyber Security Analyst (InfoSec) PHP 480K-549KBash | Cloud Platforms | Incident Response | Investigation | Linux SecurityFlexible work shifts | Opportunities for growthMid-level Full TimeManila, Philippines1mo ago