Senior Insider Risk Analyst
Tasks
- Analyze cloud security and CASB telemetry
- Build correlation rules across multiple log sources
- Conduct insider risk investigations
- Correlate telemetry across endpoint identity and network
- Create insider risk dashboards and reports
- Design build test and deploy detection rules
- Develop automated response playbooks
- Document detection logic runbooks and SOPs
- Identify and close detection gaps
- Investigate privileged access abuse
- Maintain detection coverage matrix
- Monitor Linux activity and file operations
- Onboard new log sources into SIEM
- Perform insider risk sweeps
- Prepare evidence packages for stakeholders
- Review privileged session recordings
- Triage and investigate insider risk alerts
- Tune detections to reduce false positives
Perks/Benefits
- N/A
Skills/Tech-stack
Access Management | Access Revocation | Audit Logging | Audit Logs | Bash | CASB | Cloud Security | Correlation rules | DLP | Data Classification | Detection and Response | Detection engineering | EDR | Endpoint Detection and Response | Endpoint detection | Insider Risk | Insider Risk Management | Insider Threat | Insider Threat Management | Linux | Linux Audit Logs | MITRE ATT&CK | MITRE Insider Threat | NIST CSF | PAM | POSIX | Powershell | Privileged Access | Privileged Access Management | Python | Query Language | Risk Management | SIEM | SQL | SSE | Session termination | Structured Query | Structured Query Language | Syslog | Threat Management | Threat hunting | VDI | Windows Security
Education
N/A
Related jobs
-
Entry-level Full TimeTaguig, National Capital, Philippines17h ago
-
Entry-level Full Time InternshipManila, Philippines1d ago
-
Analytical Skills | Artificial Intelligence | Artificial Intelligence Risk | Artificial Intelligence risk management | Cause analysisSenior-level Full Time34TH ST BONIFACIO GLOBAL CITY TAGUIG, …1d ago
-
Senior Platform Engineer PHP 4375K-4375KAccess Control | Acronis | Active Directory | Automation | Azure VirtualEducational assistance | Equipment provided | Paid vacation | Subsidies | Training providedSenior-level Full TimeCebu City, Cebu, Philippines5d ago
-
Platform Engineer PHP 540K-720KAccess Control | Acronis | Active Directory | Azure Virtual | Azure Virtual DesktopDental coverage | Educational assistance | Fixed Mon Fri Schedule | Insurance coverage | Optical coverageMid-level Full TimeCebu City, Cebu, Philippines5d ago
-
Infrastructure Security Engineer PHP 480K-540KAnsible | Bash | CI/CD | CIS Benchmarks | DockerBuddy program | Childcare support | Childcare vouchers | Flexible benefits | Life and accident insuranceMid-level Full TimeCadiz, ES5d ago
-
Application Security Engineer PHP 120K-160KApplication Security Testing | CI/CD | Cloud Security | Code review | Container SecurityCareer growth | Collaborative team | Flexible benefitsSenior-level Full TimeNCR - WGC, Philippines6d ago
-
Mid-level Full TimePhilippines - Ecoprime Building - Taguig …6d ago
-
AI Security Analyst PHP 150K-200KAI Security | Access Control | Adversarial AI | Application Security | Audit SupportSenior-level Full TimePhilippines7d ago
-
Artificial Intelligence | Artificial Intelligence Risk | Artificial Intelligence risk management | Control Assessment | CybersecuritySenior-level Full Time34TH ST BONIFACIO GLOBAL CITY TAGUIG, …7d ago
-
AI Risk | AI risk management | Cause analysis | Communication | ComplianceSenior-level Full Time34TH ST BONIFACIO GLOBAL CITY TAGUIG, …7d ago
-
Cybersecurity GRC Analyst PHP 240K-252K800-53 | Audit Support | Audit evidence | Awareness Training | CIS ControlsFlexible time off | Holiday leave | Hybrid work arrangement | Paid parental leave | Vacation leaveMid-level Full TimeQuezon City, Philippines7d ago
-
Cybersecurity Engineer Tier 1 PHP 660K-925KAccess Control | Antivirus | EDR | Firewall | IDSFlexible shifting schedule | Hybrid work schedule | Weekend and Holiday Shift CoverageEntry-level Full TimeMuntinlupa, NCR, Philippines8d ago
-
Associate Principal, Response Operations, Cyber Risk PHP 431K-574KDetection and Response | Endpoint Detection and Response | Endpoint Prevention | Endpoint Prevention and Response | Endpoint detectionMid-level Full TimePhilippines8d ago
-
Technical Support Engineer (Business to Business) PHP 480K-540KConfluence | Customer support | Google Workspace | Internet protocols | JiraCareer development resources | Company-sponsored events | Educational support programs | Employee resource groups | Mentorship programsMid-level Full TimePhilippines8d ago
-
Technical Support Engineer (Business to Business) PHP 480K-540KConfluence | Customer support | Google Workspace | Internet protocols | JiraEducational support | Employee resource groups | Mentorship programs | Paid time off | Professional growth opportunitiesMid-level Full TimePhilippines8d ago
-
Cloud Security | DLP | EDR | Firewalls | Information securityHealthcare benefits | Paid time off | Professional development | Tuition reimbursement | Wellness benefitsMid-level Full TimePH-National Capital-Pasay City, Metro Manila R9d ago
-
IT Analyst (Risk) PHP 250K-250KAudit Principles | COBIT | Coso | Digital Operational Resilience Act | Digital Operational Resilience Act DORASenior-level Full TimePasig, Metro Manila, Philippines9d ago
-
Identity and Access Management II Engineer III PHP 431K-510KAPI Integration | Access Management | Active Directory | Active Directory Certificate Services | Active Directory DomainMid-level Full TimeMandaluyong City, Philippines9d ago
-
IT Operations Engineer PHP 480K-549KAgile | Ansible | Automation | Azure | Azure DevOpsAgile environment | High pressure decision making | On-call supportMid-level Full TimeManila (One Ayala Tower 2), Philippines9d ago
-
Manager, Security Engineering PHP 650K-780KAWS | Access Management | Azure | Cloud Security | Cloud platformCareer growth | Collaborative team | Flexible benefitsMid-level Full TimeNCR - WGC, Philippines9d ago
-
Security Platform Engineer PHP 600K-660KAPI Development | AWS | Azure | Go | Google CloudCareer growth | Collaborative team | Flexible work benefits | Professional developmentMid-level Full TimeNCR - WGC, Philippines9d ago
-
Capacity Planning | Excel Macros | Forecasting | Microsoft Excel | Power BIHybrid work schedule | Inclusive culture | Professional development opportunities | Supportive leadersMid-level Full TimeManila - Six/NEO, Philippines R10d ago
-
ABAC | AI Search | Application Insights | Azure AI | Azure AI SearchSenior-level Full TimeManila, Metro Manila, Philippines12d ago
-
Software Quality Assurance Security Engineer (m/f/x) PHP 650K-925KAgile | Burp Suite | C# | CI/CD | DASTHMO health card | Leave days | Medicine reimbursement | Rice allowanceMid-level Full TimeQuezon City, Philippines; Quezon City14d ago