SIRCC Incident Response Manager
PZZ04 - DXC Manila IPC McKinley Hill (PZZ04), Philippines
PHP 324K-420K (estimate) Mid-level Full Time
Tasks
- Analyze security incidents
- Close incidents with resolution details
- Conduct daily ticket reviews
- Create and review incident RCA documents
- Create remediation plans
- Develop containment strategy
- Develop incident playbooks
- Engage higher level support
- Escalate to security support teams
- Follow HPIM process for P1 incidents
- Identify indicators of compromise
- Lead major IT security incident investigations
- Manage analysts day to day
- Manage end to end incident ownership
- Mentor analysts and guide new hires
- Notify strategic incident manager
- Perform alert suppression analysis
- Perform alert tuning analysis
- Perform incident ticket follow up
- Prepare executive summaries
- Provide security team metrics
- React during security crises
- Record technical analysis in ServiceNow
- Review incident tickets for closure
- Risk assess security incidents
- Select and improve tools
- Support analysts with queries
- Update parent child tickets
- Use RtOP process for incidents
- Verify incident handoff in tickets
Perks/Benefits
- Company sponsored training
- Employee assistance program
- Health insurance
- Life insurance
- Maternity leave
- Non-taxable allowance
- On Call Shift Allowance
- Paid vacation
- Paternity leave
- Retirement program
- Sick leave
- Up to date working arrangements
Skills/Tech-stack
Alert Tuning | Anti-Malware | Cyber Kill Chain | Detection Systems | EDR | Endpoint protection | FTP | Firewalls | Forensics | HTTP | HTTPS | ISO27001 | ITIL | ITSM | Incident Response | Indicator of Compromise | Information security | Intrusion Detection | Intrusion Prevention | Intrusion Prevention Systems | Intrusion detection systems | Kill Chain | Log Analysis | MITRE | Malware analysis | NIST | Network Forensics | Network Security | OSINT | Operating System | Operating system security | POP3 | Prevention systems | RCA | SIEM | SIEM Alert Tuning | SMTP | Security Audits | ServiceNow | System security | TCP/IP | Threat Analysis | Windows Security
Education
Bachelor of Engineering | Bachelor of Science | High School Diploma
Related jobs
-
Compliance Standards | Documentation | Incident Response | Information security | Network SecuritySenior-level Full TimeManila, Philippines5d ago
-
Consulting_Cyber Detection & Response SOAR Senior PHP 90K-150KAWS | Azure | Cloud Security | Cortex XSOAR | Defender SuiteFlexible work environment | Health and wellness packages | Inclusive culture | Learning opportunities | MentorshipSenior-level Full TimeTaguig, PH, 16345d ago
-
IT Security Officer/Manager PHP 135K-175KCloud Security | Endpoint Security | Incident Response | Log Monitoring | Network SecurityMid-level Full TimeTaguig, Metro Manila, Philippines5d ago
-
Senior-level Full TimePhilippines6d ago
-
GSOC L3 - Manila PHP 540K-584KAlert triage | Automation | Axiom | Deep Packet Inspection | Detection tuning24 7 SOC shift work | Global team collaboration | On-call rotation | Team mentoring coaching | Training opportunitiesMid-level Full TimeTaguig, National Capital, Philippines6d ago
-
Access Control | Access Management | Amazon Web Services | CASB | Cloud DLP24 7 support readiness | Rotational on call availabilityMid-level Full TimeMandaluyong City, Philippines7d ago
-
Access Management | CIS Controls | CNAPP | Cloud Security | Customer discoverySenior-level Full TimeMakati City, NCR, PH7d ago
-
Mid-level Full TimePhilippines, Central Visayas (Region VII), Cebu12d ago
-
Security Operations Center (SOC) Analyst, Level 2 PHP 480K-540KAI assisted security operations | AI-assisted Security | AWS | Access Management | Audit LogsAccess to advanced cybersecurity tools and technologies | Collaborative and inclusive work environment | Professional development opportunitiesMid-level Full TimePhilippines, Central Visayas (Region VII), Cebu, …12d ago
-
ArcSight | Event management | IBM QRadar | SIEM | Security InformationExecutive-level Full TimeTaguig, Metro Manila, Philippines12d ago
-
Senior IT Consultant Security Operations Center - CTBC PHP 600K-780KAutomation | CrowdStrike | Detection and Response | EDR | Endpoint Detection and ResponseSenior-level Full TimeTaguig City, Metro Manila, Philippines12d ago
-
Alert Tuning | Cause analysis | EDR | Incident Response | Incident Triage24 7 SOC shift work | Continuous improvement culture | Mentorship training supportMid-level Full TimeTaguig, National Capital, Philippines14d ago
-
Senior-level Full TimePasay, 00, PH, 130014d ago
-
Security Operations Project Manager PHP 420K-480KAccess Management | Business Continuity | Business Continuity Management | Continuity management | CryptographyHybrid work environment | Night shift scheduleMid-level Full TimeManila, Manulife Business Processing Services, Philippines14d ago
-
Agentic AI | Application recovery | Archer | Audit Reviews | Automation toolsFlexible work environment | Inclusion-focused culture | Well-being supportMid-level Full TimeManila, Manulife Business Processing Services, Philippines15d ago
-
Antimalware | Buffer overflow | Cross-Site Scripting | EDR | FTPCompany sponsored training | Covid Support | Employee assistance program | Employee recognition | Flexible working arrangementsMid-level Full TimePZZ04 - DXC Manila IPC McKinley …18d ago
-
Tier 3 Network Security Analyst PHP 480K-480KApplication Firewall | DDoS Protection | Data Lake | Detection Systems | Disaster RecoveryHybrid work | Nights and weekends schedule | Overtime opportunitiesSenior-level Full TimePhilippines - Pasig City, Ortigas Center …19d ago
-
Incident Response Associate (6am to 3pm Shift) PHP 384K-549KCloud Security | Digital forensics | EDR | EDiscovery | IDSFlexible hybrid work model | Health insurance | Life insurance | Onsite/remote hybrid | Paid time offMid-level Full TimeManila, Philippines R19d ago
-
Regional Information Security Manager – APAC PHP 240K-240KAWS | Azure | BI Dashboards | Business Continuity | COBIT 2019Training and development opportunitiesMid-level Full TimeMakati City, Ayala Avenue, Philippines20d ago
-
Access Management | Agile | Client Communication | Compliance | CybersecurityEmployee assistance program | Flexible time off | Flexible working arrangements | Group life insurance | Health insuranceMid-level Full TimePHL Manila20d ago
-
AWS | Application Security | Azure | CIS Controls | Data ProtectionMentorship | Reusable templates development | Stakeholder engagementSenior-level Full TimeMakati, Metro Manila, Philippines21d ago
-
Amazon Web Services | Application Controls | Azure | Cloud controls | Cloud platformSenior-level Full TimeMakati, Metro Manila, Philippines21d ago
-
Application Controls | Audit tools | Cloud Security | Cybersecurity | Cybersecurity frameworksMid-level Full TimeMakati, Metro Manila, Philippines21d ago
-
Cyber Security PHP 1200K-1440KApplication Security | Authentication and Authorization | CI/CD | Cloud Security | DevSecOpsMid-level Full TimeNaucalpan de Juárez, México, México24d ago
-
Chief Security Officer PHP 408K-456KAccess Control | Anti Theft Mechanisms | Anti-Money Laundering | Application Security | Blockchain SecurityExecutive-level Full TimeTaguig City, Metro Manila, Philippines26d ago