Engineer, Security Operations Center

Job Description - Engineer, Security Operations Center SI)

Engineer, Security Operations Center

Firm Summary

White & Case is an elite global law firm serving leading companies, financial institutions, and governments worldwide. Our long history as an international firm positions us to help clients resolve complex legal challenges across the globe.

With lawyers and staff operating from more than 47 locations in nearly every country, we have invested heavily in building a high-quality, full-service practice that competes at the top of the market. Our strengths include a strong presence in key financial markets and expertise in handling complex cross-border work.

Our global network of offices and shared service centers, along with our interconnectedness, are highly valued by our people and clients. We foster collaboration across geographic and practice boundaries, which attracts and retains cross-border work.

Our lawyers are globally minded, enterprising, collaborative, and committed to excellence. Our team comprises 90 nationalities speaking 80 languages.

Position Summary

You will be part of our Security Operations Center (SOC) team, responsible for mitigating and preventing security threats through monitoring and reporting, while implementing robust cybersecurity practices to protect the firm. You will work in a 24/7 team closely collaborating with various technology teams, including Service Desk, NOC, and security and infrastructure engineers.

While primarily focused on daily operational tasks, you will also participate in security projects. Attention to detail and a process-oriented mindset will underpin your success and enhance your understanding of supporting the firm.

You should have a comprehensive understanding of security technologies and solutions to implement best practices within the SOC. Your insights into analyzing security threats, assessing risks, and understanding business impact will be vital in supporting our risk-based approach and integrating security into all IT systems and operations.

Our Functional Area

Technology at White & Case enables our lawyers to practice law globally. Our team includes Business Services, Operations, and Support Services, supporting enterprise systems, data centers, communications, and desktop support. We deploy cutting-edge technology and hardware in our state-of-the-art offices, with technical support and training for our staff. Our Shared Services centers monitor and support firm systems 24/7, working closely with other departments to ensure seamless operations.

Duties and Responsibilities

1. Develop, document, and implement processes within the SOC and relevant reports.
2. Participate in firm-wide planning activities.
3. Monitor emerging security infrastructure technologies, trends, issues, and solutions.
4. Adhere to and promote the firm’s core values and principles.
5. Collaborate with the Security Infrastructure team and other technology groups on projects to enhance security posture.
6. Coordinate across teams to address security events and develop process flows.
7. Prioritize tasks, work effectively under pressure, and handle operational demands.
8. Proactively identify and remediate security gaps and risks affecting information integrity.

Qualifications

• Minimum 3 years of IT experience in a medium to large, geographically dispersed enterprise.
• Experience managing and operating SIEM and IPS systems.
• Knowledge of security solutions such as Antivirus/Antimalware, Network/Host-based IPS, Web-Proxy, NAC, Next-Gen Firewall, Encryption, 2FA, Anti-Spam, and DLP.
• Strong skills in forensics, including log correlation, parsing, auditing, packet analysis, and system data gathering.
• Understanding of endpoints, servers, network devices, threats, vulnerabilities, and attack mitigation practices.
• Basic networking knowledge, including protocols from Data-link to Application Layer.
• Experience with Vulnerability Management.
• Cloud Security experience is an advantage.
• Experience with DLP tools and SOAR platforms is an advantage.
• Strong background in security incident response, root cause analysis, triage, and remediation.
• Knowledge of network scanning, penetration testing, malware analysis, CnC, and IOC.
• Basic understanding of authentication and cryptography technologies.
• Investigative mindset with the ability to filter and analyze data effectively.
• Self-motivated, eager to learn about vulnerabilities, exploits, and adversaries.
• Ability to analyze and resolve complex issues, with strong presentation and interpersonal skills.
• Capable of multitasking in a fast-paced environment.

Location & Reporting

Work Location: Makati

Must be amenable to rotating schedules.

This description outlines the essential duties and is not exhaustive of all responsibilities.

Philippines - Manila

Onsite

Jul 30, 2025, 4:24:16 PM

Tell us about someone who might be interested. All privacy rights will be protected.

• Attorney Advertising. Prior results do not guarantee similar outcomes.