Incident Response Analyst

Join to apply for the Incident Response Analyst role at B&M Global Services Manila

1 day ago Be among the first 25 applicants

Join to apply for the Incident Response Analyst role at B&M Global Services Manila

The Incident Response Analyst will provide detection, containment, and analysis of security events to protect the confidentiality, integrity, and availability of information systems in accordance with the firm's business objectives, regulatory requirements, and strategic goals.

Responsibilities

• Provide Tier 2 incident response services to the global organization on behalf of the Information Security Team
• Receive, process, and resolve tickets per defined SLA's
• Analyze information garnered from monitoring systems, operational incidents, and other sources to determine the scope and impact of potential security incidents, and process accordingly
• Critically assess current practices and provide feedback to management on improvement opportunities
• Assist with the design and implementation of threat detection and prevention solutions identified as necessary for the protection of Firm assets
• Effectively utilize common IR toolsets, platforms, and processes, such as SIEM, log management, packet capture, and breach detection systems
• Assist with forensic examinations and chain-of-custody procedures as directed by the Security Incident Response Engineers
• Provide input into standards and procedures
• Report compliance failures to management for immediate remediation
• Maintain assigned systems to ensure availability, reliability, and integrity, including the oversight of current and projected capacity, performance, and licensing
• Provide status reports and relevant metrics to the Security Operations Manager
• Contribute to the Firm's security-related information repositories and other marketing/awareness endeavors
• Participate in special projects as needed

Skills and Experience

Education

• Possess a Computer Science Bachelor’s Degree or substantial equivalent experience

Special Requirements, Licenses, and Certifications:

• GCFE, GCFA, GCTI, GREM, GPEN, GWAPT
• CISSP or SSCP desired

Experience

• Some professional experience in information security with a focus on incident response and forensics
• Foundational knowledge of IR concepts and best practices, including forensics and chain-of-custody
• Experience with common IR tools such as SIEM, log management, IDS, breach detection systems (APT/BDS/EDR), and packet capture.
• Broad understanding of TCP/IP, DNS, common network services, and other foundational topics
• Working knowledge of malware detection, analysis, and evasion techniques
• Able to conduct static and dynamic analysis of malware to extract indicators of compromise, profile malware behavior, and provide recommendations for mitigating and detecting malware;
• Able to analyze suspicious websites, script-based and malware code
• Experience with vulnerability management tools such as Qualys, Nessus, or other vulnerability scanning discovery tools
• Broad familiarity with the threat landscape and the ability to adapt practices to evolving circumstances
• Identify, analyze, and report threats within the enterprise by using information collected from a variety of sources (IDS/IPS, SIEM, AV), to protect data and networks. Implement techniques to hunt for known and unknown threats based on available threat intelligence reports and knowledge of the attacker's TTPs
• Able to gather and analyze facts, draw conclusions, define problems, and suggest solutions
• Maintain critical thinking and composure under pressure
• Strong written and oral communication skills. Ability to convey complex concepts to non-technical constituents. Proficiency in oral and written English
• Capable of assisting with the preparation of internal training materials and documentation
• Able to be productive and maintain focus without direct supervision
• Passionate in the practice and pursuit of IR excellence
• Can exhibit a disciplined and rigorous approach to incident handling
• Willing to accommodate shift-based work for a global organization
• Provide exemplary customer service by striving for first-call resolution and demonstrating empathy, respect, professionalism, and expertise
• Experience with digital forensics on host or network and identification of anomalous behavior on the network or endpoint devices. Familiar with host and network-based forensic tools such as EnCase, FTK, Sleuth Kit, X Ways, etc.

Seniority level

• Seniority level Not Applicable

Employment type

• Employment type Full-time

Job function

• Job function Legal and Information Technology
• Industries Law Practice

Referrals increase your chances of interviewing at B&M Global Services Manila by 2x

Get notified about new Incident Analyst jobs in Taguig, National Capital Region, Philippines .

Makati, National Capital Region, Philippines 2 weeks ago

Taguig, National Capital Region, Philippines 1 day ago

Taguig, National Capital Region, Philippines 2 weeks ago

Taguig, National Capital Region, Philippines 6 days ago

Taguig, National Capital Region, Philippines 5 months ago

Manila, National Capital Region, Philippines 1 month ago

Officer - Information Security Identity and Access Management (GIAM) – Analyst - Philippines (Hybrid)

Taguig, National Capital Region, Philippines 1 week ago

Officer – Identity and Access Management (IAM) Analyst - Philippines (Hybrid)

Taguig, National Capital Region, Philippines 1 week ago

Jr. Cybersecurity Operations Center Analyst

Pasay, National Capital Region, Philippines 1 week ago

Problem Analyst (ST Telemedia Global Data Centres Philippines)

Makati, National Capital Region, Philippines 2 weeks ago

Taguig, National Capital Region, Philippines 1 day ago

Taguig, National Capital Region, Philippines 2 weeks ago

Quezon City, National Capital Region, Philippines 1 day ago

Manila, National Capital Region, Philippines 2 months ago

Makati, National Capital Region, Philippines 1 month ago

Makati, National Capital Region, Philippines 3 hours ago

Manila, National Capital Region, Philippines 3 weeks ago

Cyber Security Incident Response - Principal Analyst

Taguig, National Capital Region, Philippines 2 weeks ago

Cyber Security Incident Response - Senior Analyst

Taguig, National Capital Region, Philippines 2 weeks ago

Officer – Identity and Access Management (IAM) Intermediate Analyst - Philippines (Hybrid)

Taguig, National Capital Region, Philippines 3 days ago

Information Security Analyst (Fresh Graduate)

Taguig, National Capital Region, Philippines 2 months ago

Pasig, National Capital Region, Philippines 2 weeks ago

Taguig, National Capital Region, Philippines 1 week ago

Taguig, National Capital Region, Philippines 1 week ago

Makati, National Capital Region, Philippines 3 weeks ago

Manila, National Capital Region, Philippines 2 weeks ago

Taguig, National Capital Region, Philippines 1 week ago

IT Cybersecurity Incident Response Senior Officer

Makati, National Capital Region, Philippines 3 weeks ago

Taguig, National Capital Region, Philippines 1 month ago

Manila, National Capital Region, Philippines 5 days ago

Manila, National Capital Region, Philippines 2 weeks ago

Manila, National Capital Region, Philippines 1 month ago

Senior Service Desk Analyst (AU Retail, Office-based)

Mandaluyong, National Capital Region, Philippines 2 weeks ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

---