SOC Analyst

Information Security Analyst – Philippines | Remote Seniority level: Not Applicable Employment type: Full-time Job function: Information Technology Industries: Technology, Information and Internet Responsibilities Perform triage, assess severity of incidents Investigate and contain security incidents Execute predefined response procedures 24/7 alerts monitoring Continuously monitor security alerts, logs, and network traffic Identify potential threats or anomalies Suspicious email analysis and other security validations Respond to reported suspicious emails Analyze suspicious emails, trigger email threat remediation actions Perform validations for reported suspicious activities and other cybersecurity concerns Provide recommendations on analyzed concerns Documentation of incident reports, weekly/monthly reporting, maintenance of trackers and other relevant documents Assist in developing and executing recovery plan Participate in investigations or forensics activities Participate in change management processes Assist in troubleshooting hardware and software issues of collectors and MXDR agents Detection rules review and configuration Threat intelligence duties Threat Intelligence Team Responsibilities I.O.C.s: Collect, analyze, disseminate, and initiate blacklisting Compromised accounts: Monitor and validate client password leaks Brand protection initiatives: Hunting of trademark infringements and other violations, impersonations, and sales scams; perform validations, request takedown, and monitoring Threat intel publications and release of advisories and other reports Monitor releases of new vulnerability advisories, disseminate, and track Monitor potential leaks relating to client (e.g., code repository, database, etc.) Implement and enforce security policies, procedures, and best practices Track and validate security controls, addressing deviations and risks Qualifications Bachelor graduate of Computer Science, IT or other related course Have at least 3-5 years of experience as a SOC analyst or security engineer Hands‑on experience in L2 incident response such as containment, isolation, root cause analysis and deep probing analysis Proficient in documentation, strong incident, attack response and containment skills Experience in cyber threat intelligence is an advantage #J-18808-Ljbffr