
Vulnerability Analyst
3 weeks ago
Join to apply for the Vulnerability Analyst role at HR TechX Corp.
Vulnerability Analysts aid in the identification, assessment, and communication of new and emergent threats in the cybersecurity landscape, specifically vulnerability intelligence and detections. As a Vulnerability Analyst, you will be expected to familiarize yourself with high-impact and critical vulnerabilities, proofs-of-concept, and reports of in-the-wild exploitation, producing and reviewing intelligence summaries accessible to Client's customers.
Responsibilities- Vulnerability Lead Identification and Analysis: You will be tasked with the prompt identification, analysis, and comprehensive assessment of emerging cybersecurity threats, specifically recently disclosed or exploited vulnerabilities.
- Subject Matter: Your technical prowess will be crucial in ensuring our preparedness for potential risks and understanding the implications of prompt and thorough analysis of high-impact vulnerabilities.
- Key Detail Identification: During research, identify and take note of infection chains, host and network IoCs, malware samples, threat actors, exposed vulnerable instances, publicly available proofs-of-concept, and MITRE ATT&CK tactics and techniques
- Author Insikt Notes: Write TTP Instances detailing identified vulnerability leads. TTP Instances include a combination of information from open-source reporting and your own analysis (i.e. code review). Each TTP Instance should comprehensively address the nature of the threat, its potential impact, suggested mitigation strategies, and a succinct summary for quick referencing. Cadence: Write at least 2 TTP Instance notes daily. Quality: Authored TTP Instances should include minimal grammatical or syntax errors. Plagiarism is not acceptable.
- Detection Engineering: Design and develop Nuclei templates for vulnerability scanning, ensuring these templates are tailored to detect new and emerging vulnerabilities efficiently. Cadence: Create at least 1 Nuclei template per month with assistance from our Senior Vulnerability Analyst. Delivery: Nuclei templates will be delivered alongside a TTP Instance.
- Information Security: Adhere to and implement quality and information security policies and carry out its processes and procedures accordingly.
- Protect client-supplied and generated-for-client information from unauthorized access, disclosure, modification, destruction, or interference.
- Carry out tasks as assigned and aligned with particular processes or activities related to information security.
- Report any potential or committed non-conformity, observation and/or security event or risks to your immediate superior.
- Strong written communication in English
- Demonstrable experience writing reports on technical subject matter (e.g. vulnerability exploits, malware infection chains, offensive security tools) in a clear, concise, and logical format
- Disciplined time management
- Self-starting, self-motivated, and thrive in a collaborative environment
- Ability to receive and apply constructive feedback from peers and leadership
- B.S. equivalent in computer science, information systems, or cyber intelligence
- 1 - 2 years of minimum professional experience in cybersecurity, with a focus on threat detection, penetration testing, or vulnerability assessment.
- A solid grasp of fundamental cybersecurity principles, attack trajectories, and techniques for vulnerability analysis.
- Demonstrable experience researching and analyzing new cyber threats.
- Practical experience using common threat intelligence analysis models such as MITRE ATT&CK, D3FEND, the Diamond Model, and the Cyber Kill Chain.
- Familiarity with and use of common cyber threat intelligence tools such as DomainTools, VirusTotal, Shodan, etc.
- Demonstrable experience in technical writing, showcasing an ability to translate complex technical concepts into engaging, reader-friendly content.
- Demonstrably strong writing ability, to be assessed via a writing sample
- A meticulous attention to detail, underscoring a commitment to accuracy and thoroughness in all aspects of work.
- Capable of functioning effectively within a team as well as independently.
- Experience creating Nuclei templates.
- Practical experience with network and web application penetration testing tools, such as Burp Suite, Nmap, Fiddler, ZAP, Metasploit, and Wireshark.
- Familiarity with scripting and programming languages such as YAML, Python, Golang, JavaScript, C, etc.
- Prior experience within a quick reaction or incident response team environment.
- Familiarity with malware detections, including YARA, Sigma, and Snort.
- Not Applicable
- Full-time
- Business Development and Sales
- Technology, Information and Internet
#J-18808-Ljbffr
-
Vulnerability Analyst
1 week ago
Pasay, National Capital Region, Philippines NYGC Services, Inc. Full time ₱300,000 - ₱600,000 per yearRole : Vulnerability AnalystLocation : Moa PasayWork Type : Hybrid Setup (1x -2x a month RTO)Work Shift : Mid Shift (4PM or 5PM Login time)Job Description:● B.S. equivalent in computer science, information systems, or cyber intelligence● 1 - 2 years of minimum professional experience in cybersecurity, with a focus on threat detection, penetration...
-
Pasay, National Capital Region, Philippines ACCPRO INTERNATIONAL Full time ₱500,000 - ₱600,000 per yearWe're Hiring: Vulnerability AnalystMOA, Pasay | Hybrid (1 - 2x a month RTO) | MidshiftRequirements:B.S. equivalent in Computer Science, Information Systems, or Cyber Intelligence.1-2 years of minimum professional experience in cybersecurity, with a focus on threat detection, penetration testing, or vulnerability assessment.possess a solid grasp of...
-
Cyber Security Analyst II
3 weeks ago
Pasay, National Capital Region, Philippines Vestas Full timeOverviewCyber Security Analyst II (Pasay, 00, PH). The role is primarily responsible for providing SOC Tier 2 security incident analysis to ensure that Vestas' network, assets, and applications/platforms are monitored and secured.ResponsibilitiesTrain, coach, mentor, and groom Tier 1 analysts in the SOCUpdate and improve the Security Operations playbooks...
-
Cyber Threat Analyst
3 weeks ago
Pasay, National Capital Region, Philippines HR TechX Corp. Full timeJoin to apply for the Cyber Threat Analyst role at HR TechX Corp.Get AI-powered advice on this job and more exclusive features.ResponsibilitiesThreat Lead Identification: Research new adversary tactics, techniques, and procedures (TTPs) using open sources (public information such as security vendor reporting, social media, code repositories); closed sources...
-
Cybersecurity Threat
7 days ago
Pasay, National Capital Region, Philippines ACCPRO INTERNATIONAL Full time ₱1,200,000 - ₱2,400,000 per yearVulnerability Analyst (Hybrid Setup – Pasay, MOA)Location: MOA, Pasay (Hybrid – 1–2x a month onsite)Schedule: Mid Shift (Login between 4–5 PM)Work Setup: Hybrid (90% WFH, occasional onsite)About the RoleWe are seeking a Cybersecurity Threat & Vulnerability Analyst to join our growing team. In this role, you will monitor, analyze, and assess emerging...
-
IT Security Analyst
7 days ago
Pasay, National Capital Region, Philippines SM Advantage Full time ₱900,000 - ₱1,200,000 per yearResponsibilities:Conduct regular security assessments and audits to identify vulnerabilities and perform risk assessments to identify potential fraud risks and vulnerabilitiesDevelop, implement, and maintain fraud detection and prevention strategies and investigate fraud alerts and escalated cases, and coordinate with relevant departments to resolve...
-
Cyber Security Analyst II
3 weeks ago
Pasay, National Capital Region, Philippines Vestas Full timeCyber Security Analyst IIThe role is primarily responsible for providing SOC Tier 2 Security Incident analysis to ensure that Vestas' network, assets, and applications/platforms are monitored and secured.Organization: Enterprise Cyber Security > Global Security Operations Center > Security Operations Center - APACResponsibilitiesTrain, coach, mentor, and...
-
Cybersecurity Specialist
2 weeks ago
Pasay, National Capital Region, Philippines beBeeSecurity Full time $90,000 - $120,000Senior Security AnalystAt a leading IT organization, we provide managed solutions with a strategic consulting and global leadership management approach. Our solutions free clients from the demands of internal IT and allow them to rapidly advance their mission.Job DescriptionAs a Senior Security Analyst, you will be responsible for monitoring and managing...
-
Cybersecurity GRC Analyst
2 weeks ago
Pasay, National Capital Region, Philippines MicroSourcing Full timeOverviewThe Cybersecurity GRC Analyst supports the development and execution of governance, risk, and compliance (GRC) activities to protect sensitive health, payment, and personal data. This role ensures adherence to industry security standards (PCI DSS, NIST CSF, ISO 27001) with a practical, risk-based approach suitable for the childcare sector's...
-
Security Expert Wanted
2 weeks ago
Pasay, National Capital Region, Philippines beBeeCybersecurity Full time ₱2,304,000 - ₱2,592,000Cyber Security Specialist OpportunityThis is a unique chance to take on a critical role in safeguarding digital assets and information against cyber threats and attacks. As a Cyber Security Analyst, you will be pivotal in assessing security risks, developing effective security measures, and maintaining a vigilant stance against potential breaches.Key...