Incident Response Analyst

2 weeks ago


Manila, National Capital Region, Philippines Baker & McKenzie Rechtsanwaltsgesellschaft mbH Full time

The Incident Response Analyst will provide detection, containment, and analysis of security events to protect the confidentiality, integrity, and availability of information systems in accordance with the firm's business objectives, regulatory requirements, and strategic goals.

Responsibilities
  • Provide Tier 2 incident response services to the global organization on behalf of the Information Security Team
  • Receive, process, and resolve tickets per defined SLA's
  • Analyze information garnered from monitoring systems, operational incidents, and other sources to determine the scope and impact of potential security incidents, and process accordingly
  • Critically assess current practices and provide feedback to management on improvement opportunities
  • Assist with the design and implementation of threat detection and prevention solutions identified as necessary for the protection of Firm assets
  • Effectively utilize common IR toolsets, platforms, and processes, such as SIEM, log management, packet capture, and breach detection systems
  • Assist with forensic examinations and chain-of-custody procedures as directed by the Security Incident Response Engineers
  • Provide input into standards and procedures
  • Report compliance failures to management for immediate remediation
  • Maintain assigned systems to ensure availability, reliability, and integrity, including the oversight of current and projected capacity, performance, and licensing
  • Provide status reports and relevant metrics to the Security Operations Manager
  • Contribute to the Firm's security-related information repositories and other marketing/awareness endeavors
  • Participate in special projects as needed

Skills and Experience

Education

  • Possess a Computer Science Bachelor's Degree or substantial equivalent experience

Special Requirements, Licenses, and Certifications:

  • GCFE, GCFA, GCTI, GREM, GPEN, GWAPT
  • CISSP or SSCP desired

Experience

  • Some professional experience in information security with a focus on incident response and forensics
  • Foundational knowledge of IR concepts and best practices, including forensics and chain-of-custody
  • Experience with common IR tools such as SIEM, log management, IDS, breach detection systems (APT/BDS/EDR), and packet capture.
  • Broad understanding of TCP/IP, DNS, common network services, and other foundational topics
  • Working knowledge of malware detection, analysis, and evasion techniques
  • Able to conduct static and dynamic analysis of malware to extract indicators of compromise, profile malware behavior, and provide recommendations for mitigating and detecting malware
  • Able to analyze suspicious websites, script-based and malware code
  • Experience with vulnerability management tools such as Qualys, Nessus, or other vulnerability scanning discovery tools
  • Broad familiarity with the threat landscape and the ability to adapt practices to evolving circumstances
  • Identify, analyze, and report threats within the enterprise by using information collected from a variety of sources (IDS/IPS, SIEM, AV), to protect data and networks. Implement techniques to hunt for known and unknown threats based on available threat intelligence reports and knowledge of the attacker's TTPs
  • Able to gather and analyze facts, draw conclusions, define problems, and suggest solutions
  • Maintain critical thinking and composure under pressure
  • Strong written and oral communication skills. Ability to convey complex concepts to non-technical constituents. Proficiency in oral and written English
  • Capable of assisting with the preparation of internal training materials and documentation
  • Able to be productive and maintain focus without direct supervision
  • Passionate in the practice and pursuit of IR excellence
  • Can exhibit a disciplined and rigorous approach to incident handling
  • Willing to accommodate shift-based work for a global organization
  • Provide exemplary customer service by striving for first-call resolution and demonstrating empathy, respect, professionalism, and expertise
  • Experience with digital forensics on host or network and identification of anomalous behavior on the network or endpoint devices. Familiar with host and network-based forensic tools such as EnCase, FTK, Sleuth Kit, X Ways, etc.
#J-18808-Ljbffr

  • Manila, National Capital Region, Philippines Check Point Software Full time

    11 hours ago Be among the first 25 applicantsAs the world's leading vendor of Cyber Security, facing the most sophisticated threats and attacks, we've assembled a global team of the most driven, creative and innovative people. At Check Point, our employees are redefining the security landscape by meeting our customers' real-time needs and providing our...


  • Manila, National Capital Region, Philippines beBeeMajor Full time

    Major Incident Management AnalystThis role is responsible for managing all IT major incidents to restore normal service swiftly, minimizing impact on business operations and preventing revenue loss.The ideal candidate will have a minimum of 3+ years of experience in a Service Desk role as an analyst or lead, with knowledge of GNOC and Major Incident...


  • Manila, National Capital Region, Philippines Monroe Consulting Group Full time

    Role PurposeThe Incident Response Analyst is responsible for providing Tier 2 detection, containment, and analysis of security events. This role helps protect the confidentiality, integrity, and availability of information systems in alignment with the organization's business objectives, regulatory requirements, and strategic goals.Key...


  • Manila, National Capital Region, Philippines beBeeIncident Full time

    Job SummaryThis role requires an Incident Response Analyst to provide detection, containment, and analysis of security events. The ideal candidate will have a solid background in information security, incident response, and forensics.About the RoleThe Incident Response Analyst is responsible for providing Tier 2 detection, containment, and analysis of...


  • Manila, National Capital Region, Philippines beBeeIncident Full time

    We are seeking a talented and highly skilled Cyber Security Incident Response Team Analyst to join our team.This role will be responsible for all daily incident management of customer incidents, managing complicated incidents which span the globe, utilizing Check Point products in incident investigations, building incident playbooks for events and providing...


  • Manila, National Capital Region, Philippines Cybots Full time

    Senior Incident Response Lead – Cybersecurity & SOC Operations (Philippines)Get AI-powered advice on this job and more exclusive features.Direct message the job poster from Cybots.Helped raise 54.778M PHP (~ $944.44K) in equity-free government funding since March 2023 for 15 Philippine startups in my role as Director & TBI.We're expanding our regional...

  • Incident Responder

    3 weeks ago


    Manila, National Capital Region, Philippines Trends Group, Inc. Full time

    Join to apply for the Incident Responder role at Trends Group Inc.I. PURPOSEParticipate and support activities that will help improve existing operations and operationalize new service portfolio to achieve service excellence, operational efficiency, and retention of customers. Investigate, analyze, and respond to incidents or crises within the pertinent...


  • Manila, National Capital Region, Philippines JPMorganChase Full time

    Privacy Incident Management - Process AnalystJoin to apply for the Privacy Incident Management - Process Analyst role at JPMorganChasePrivacy Incident Management - Process Analyst3 days ago Be among the first 25 applicantsJoin to apply for the Privacy Incident Management - Process Analyst role at JPMorganChaseGet AI-powered advice on this job and more...


  • Manila, National Capital Region, Philippines beBeeSupport Full time

    Are you ready to shape and build something new? At our company, we're looking for a Support Analyst to join our brand-new support team, dedicated to running our B2C game development platform. This is your chance to make an impact by fixing processes, tackling incidents, and ensuring seamless operations for our cutting-edge products.Key Responsibilities:Take...


  • Manila, National Capital Region, Philippines beBeeIncident Full time

    Job Title: Incident Management Process AnalystJob Summary:This role involves supporting the Privacy Incident Program across multiple lines of business, requiring regulatory decision-making, understanding privacy breach laws, and managing projects to enhance the PIM program.Documents privacy events within system of record (GLASS)Ensures accurate and...