SIRCC Incident Response Manager
PZZ04 - DXC Manila IPC McKinley Hill (PZZ04), Philippines
PHP 324K-420K (estimate) Mid-level Full Time
Tasks
- Analyze security incidents
- Close incidents with resolution details
- Conduct daily ticket reviews
- Create and review incident RCA documents
- Create remediation plans
- Develop containment strategy
- Develop incident playbooks
- Engage higher level support
- Escalate to security support teams
- Follow HPIM process for P1 incidents
- Identify indicators of compromise
- Lead major IT security incident investigations
- Manage analysts day to day
- Manage end to end incident ownership
- Mentor analysts and guide new hires
- Notify strategic incident manager
- Perform alert suppression analysis
- Perform alert tuning analysis
- Perform incident ticket follow up
- Prepare executive summaries
- Provide security team metrics
- React during security crises
- Record technical analysis in ServiceNow
- Review incident tickets for closure
- Risk assess security incidents
- Select and improve tools
- Support analysts with queries
- Update parent child tickets
- Use RtOP process for incidents
- Verify incident handoff in tickets
Perks/Benefits
- Company sponsored training
- Employee assistance program
- Health insurance
- Life insurance
- Maternity leave
- Non-taxable allowance
- On Call Shift Allowance
- Paid vacation
- Paternity leave
- Retirement program
- Sick leave
- Up to date working arrangements
Skills/Tech-stack
Alert Tuning | Anti-Malware | Cyber Kill Chain | Detection Systems | EDR | Endpoint protection | FTP | Firewalls | Forensics | HTTP | HTTPS | ISO27001 | ITIL | ITSM | Incident Response | Indicator of Compromise | Information security | Intrusion Detection | Intrusion Prevention | Intrusion Prevention Systems | Intrusion detection systems | Kill Chain | Log Analysis | MITRE | Malware analysis | NIST | Network Forensics | Network Security | OSINT | Operating System | Operating system security | POP3 | Prevention systems | RCA | SIEM | SIEM Alert Tuning | SMTP | Security Audits | ServiceNow | System security | TCP/IP | Threat Analysis | Windows Security
Education
Bachelor of Engineering | Bachelor of Science | High School Diploma
Related jobs
-
Lead Security Engineer (Web3 Wallet/ DeFi) PHP 90K-150KApplication Security | Blockchain | CIS Controls | Cryptography | Data handlingSenior-level Full TimeAsia20h ago
-
Cloud Computing | Cybersecurity | Endpoint Security | Firewalls | GDPRDental benefits | Educational assistance | Equipment provided | Fixed schedule | HMO coverageSenior-level Full TimeCebu City, Cebu, Philippines23h ago
-
Afterhours Engineer - NOC/SOC/Support PHP 396K-540KAcronis | Asterisk | BGP | Cisco | ConnectWise ManageFloating holidays | Paid time offMid-level Full TimeRemote, Philippines R1d ago
-
Mid-level Full TimePHL-RE Shared Services-Manila, Philippines1d ago
-
Security Operations Center (SOC) Manager PHP 240K-240KCompliance Management | Detection and Response | EDR | Endpoint Detection and Response | Endpoint detectionFitness subsidy | Retirement benefit planMid-level Full TimePasay, 00, PH, 13001d ago
-
GDS Assurance - Technology Risk (FS) - Manager PHP 480K-480KAICPA | Automated controls | CISA | CISM | CISSPMid-level Full TimeTaguig, PH, 16341d ago
-
Onboarding / Security Engineer (WFH) PHP 1200K-1440KAWS | Access Control | Active Directory | Antivirus | AzureCareer growth and professional development | Global exposure | Government-mandated benefits | HMO | Work from homeSenior-level Full TimeMetro Manila, Philippines - Remote R1d ago
-
Access Control | Application Security | Authentication | Authorization | Business ContinuitySenior-level Full TimeTaguig, Philippines2d ago
-
Agentic AI | Archer | Audit oversight | Business Continuity | Cause analysisFlexible environment | Hybrid work environment | Inclusion support | Well-being supportMid-level Full TimeManila, Manulife Business Processing Services, Philippines2d ago
-
GDS Consulting_Data Protection Senior PHP 90K-150KAlert management | CASB | Data Loss Prevention | Data Protection | Data lossFlexible work environment | Health and wellness packages | Learning opportunities | Travel opportunities | Weekend workSenior-level Full TimeTaguig, PH, 16342d ago
-
GDS Consulting_Cyber SRCR - Senior PHP 90K-150KApplication Security | Business Continuity | Cloud Security | Compliance | CryptographySenior-level Full TimeTaguig, PH, 16342d ago
-
Mid-level Full TimePhilippines6d ago
-
IT Senior Cybersecurity Engineer (SOC) PHP 150K-180KActive Directory | Application Firewall | Change Management | Change Management Review | Content FilteringEmployee referral program | Life insurance | Life insurance benefits | Medical plan | Night differentialSenior-level Full TimePH - Quezon City Office, Philippines6d ago
-
Access Management | Application Security | Cloud Security | Cryptography | Data ProtectionHybrid workingSenior-level Full TimeManila, Philippines6d ago
-
AWS | Azure | Cause analysis | DNS | Detection and preventionAttendance bonus | Fixed weekends off | Free parking shuttle | Game lounge access | HMO coverageMid-level Full TimeAngeles City, Pampanga, Philippines7d ago
-
IT Specialist - Security Operations Center (SOC) PHP 420K-584KAutomation and response | Building SIEM Use Cases | Cloud Security | EDR | Email SecurityCareer development | Inclusive environment | Training opportunitiesMid-level Full TimeParanaque, Metro Manila, PH, 17017d ago
-
Mid-level Full TimeTaguig, PH, 16347d ago
-
Especialista Incidentes de Seguridad PHP 396K-549KBug Bounty | DNS | Detection Systems | False positive analysis | FirewallsMid-level Full TimeNaucalpan De Juarez, México, 288184, 533907d ago
-
Access Management | Asset Security | Business Continuity | CEH | CISACareer progression opportunities | Coaching and mentoring | Flexible work arrangements | Professional developmentMid-level Full TimeTaguig, PH, 16348d ago
-
EDR tools | Event Correlation | Incident Response | Log Analysis | MITRE ATT&CKFlexible shifts | Team collaboration | Training and developmentSenior-level Full TimeBiñan, Calabarzon, Philippines9d ago
-
Manager, Cyber Threat Intel Information Security PHP 240K-240KCommunication skills | Cyber Threat | Cyber threat hunting | Incident Management | Incident ResponseMid-level Full TimePH-Makati, Philippines9d ago
-
Splunk Manager - Performance & Observability Engineering PHP 480K-516KAppDynamics | Automation | Cause analysis | Incident Management | Log AnalysisMid-level Full TimeABC Manila Office, Philippines13d ago
-
Communication | Cybersecurity | Information security | Problem Solving | Risk ManagementSenior-level Full TimeRemote Worker - Philippines R13d ago
-
Security Architect PHP 90K-150KAccess Management | Ansible | Chef | Cloud Forensics | Cloud SecurityFlexible payment options | Paid Holidays | Remote working policy | Team building events | Work from homeSenior-level Full TimeRemote - Asia R16d ago
-
Audit Coordination | Cloud Security | Data Lifecycle Management | Data Protection | Data lifecycleCareer development opportunities | Flexible working | Health coverage | Paid leaveMid-level Full TimeManila16d ago