Current jobs related to Chief Cybersecurity Investigator - Morong - beBeeIncident

  • Cybersecurity Operations Specialist

    1 week ago

    Morong, Philippines beBeeCybersecurity Full time ₱3,200,000 - ₱4,500,000

    Job DescriptionWe are seeking a talented cybersecurity professional to join our team as a Security Operations Center (SOC) Analyst.The ideal candidate will have a passion for information security and experience with monitoring and responding to cybersecurity incidents.The SOC Analyst will be responsible for continuously monitoring and improving our...

  • Information Security Specialist

    6 days ago

    Morong, Philippines beBeeCybersecurity Full time ₱600,000 - ₱800,000

    About the RoleThrive is an innovative technology solutions provider that specializes in Cyber Security, Hybrid Cloud, Global Network Management, and Disaster Recovery. We focus on delivering NextGen services with a customer-centric approach, making us stand out among our peers.We are seeking a skilled SOC Analyst to join our security team. This role involves...

  • Security Threat Response Specialist

    7 days ago

    Morong, Philippines beBeeCybersecurity Full time $40,000 - $60,000

    Job SummaryAs a Security Operations Center (SOC) Analyst, you will play a vital role in monitoring and improving our clients' security posture by preventing, detecting, analyzing, and responding to cybersecurity incidents.Key ResponsibilitiesConduct continuous monitoring of security events from multiple sources using advanced SIEM systems.Investigate...

  • Incident Response Analyst

    3 weeks ago

    Morong, Philippines Storagepipe, a THRIVE Company Full time

    About ThriveThrive is a rapidly growing technology solutions provider focusing upon Cloud, Cyber Security, Networking, Disaster Recovery and Managed Services. Our corporate culture, engineering talent, customer-centric approach, and focus upon "next generation" services help us stand out amongst our peers. Thrive is on the look-out for individuals who don't...

  • Incident Response Analyst

    2 weeks ago

    Morong, Philippines Thrive Full time

    About UsThrive is a rapidly growing technology solutions provider focusing upon Cloud, Cyber Security, Networking, Disaster Recovery and Managed Services. Our corporate culture, engineering talent, customer-centric approach, and focus upon "next generation" services help us stand out amongst our peers. Thrive is on the look-out for individuals who don't view...

  • Incident Response Analyst

    2 days ago

    Morong, Philippines Thrive Full time

    About Us Thrive is a rapidly growing technology solutions provider focusing upon Cloud, Cyber Security, Networking, Disaster Recovery and Managed Services. Our corporate culture, engineering talent, customer-centric approach, and focus upon “next generation” services help us stand out amongst our peers. Thrive is on the look-out for individuals who...

  • SOC Analyst

    2 days ago

    Morong, Philippines Storagepipe, a THRIVE Company Full time

    About Thrive Thrive is an innovative technology solutions provider focused on Cyber Security, Hybrid Cloud, Global Network Management, Disaster Recovery and traditional Managed Services. Thrive seeks individuals who want to develop valuable skills and build a career in a fast‑paced, work hard, play hard environment. Position Overview With a growing client...

  • SOC Analyst

    2 days ago

    Morong, Philippines Thrive Full time

    About Us Thrive is an innovative technology solutions provider focused on Cyber Security, Hybrid Cloud, Global Network Management, Disaster Recovery and traditional Managed Services. Our corporate culture, engineering talent, customer-centric approach, and focus upon NextGen services help us stand out among our peers. Thrive is on the look-out for...

  • SOC Analyst

    2 days ago

    Morong, Philippines InfoHedge Technologies LLC Full time

    About Us Thrive is an innovative technology solutions provider focused on Cyber Security, Hybrid Cloud, Global Network Management, Disaster Recovery and traditional Managed Services. Our corporate culture, engineering talent, customer-centric approach, and focus upon NextGen services help us stand out among our peers. Thrive is on the look-out for...

  • Accounts Administrator

    3 weeks ago

    Morong, Philippines Bolder Group Full time

    Accounts Administrator (Accounting Assistant)This role is responsible for ensuring accurate financial record-keeping, processing of invoices and payments, client billing, receipting, and account reconciliation. It supports day-to-day financial operations and the timely delivery of accurate financial reporting.ResponsibilitiesGeneral AccountingRecord and...

Chief Cybersecurity Investigator

2 weeks ago

Morong, Philippines beBeeIncident Full time ₱900,000 - ₱1,200,000
Incident Response Security Specialist

Job Description: We are seeking a highly skilled Incident Response Security Specialist to join our team. As an Incident Response Security Specialist, you will be responsible for continuously monitoring and improving our customers' security posture, preventing, detecting, analyzing, and responding to cybersecurity incidents using technology and well-defined processes and procedures.

Responsibilities:

  • Process investigation requests from SOC Analysts who perform security event monitoring using Security Information and Event Management (SIEM) from multiple sources, including events from network and host-based intrusion detection/prevention systems, network infrastructure logs, systems logs, applications, and databases.
  • Investigate intrusion attempts, differentiate false positives from true intrusion attempts, and perform in-depth analysis of exploits.
  • Lead incident response and threat hunting efforts for confirmed High Priority security incidents and follow through until resolution.
  • Utilize threat intelligence to identify and investigate potential security threats.
  • Develop playbooks for incident response and incident management processes, including threat triage, incident investigation, and incident resolution.
  • Conduct regular reviews of playbooks to ensure they are current and effective.
  • Work with cross-functional teams to ensure that playbooks are aligned with the overall security strategy and goals.
  • Participate in tabletop exercises and drills to test and validate playbooks.
  • Monitor and evaluate security incidents to identify opportunities for improving playbooks.
  • Keep up to date with current security threats and trends to ensure that playbooks are relevant and effective.
  • Actively investigate the latest security vulnerabilities, advisories, incidents, and TTPs (tactics, techniques, and procedures) and work with the Security Engineering team to recommend use cases.
  • Proactive monitoring, threat hunting, and response of known and/or emerging threats.
  • Carry out information security strategy both internally and externally for 400+ clients.
  • Analyze data from our SOC, SIEM and EDR platforms and determine if further analysis is needed.
  • Work within security standards and best practices and recommend future enhancements.
  • Stay abreast of security events and techniques to keep our clients protected.

Qualifications:

  • Demonstrate comprehension of best security practices.
  • Have advanced knowledge of the following systems and technologies:
  • SIEM (Security Information and Event Management)
  • TCP/IP, computer networking, routing, and switching
  • IDS/IPS, penetration and vulnerability testing
  • Firewall and intrusion detection/prevention protocols
  • Windows, UNIX, and Linux operating systems
  • Network protocols and packet analysis tools
  • EDR, Anti-virus, and anti-malware
  • Content filtering
  • Email and web gateway
  • Malware, Network, or System Analysis
  • Professional experience in an Incident Response Role
  • Ability to collaborate and communicate security issues to clients, peers, and management
  • Strong analytical and problem-solving skills
  • Adaptability and resilience in rapidly evolving situations
  • Ability to be a part of an on-call rotation, occasionally working nights, and weekends to support High Priority Security Incidents

Requirements:

  • Technical proficiency in networking, operating systems, and security technologies
  • Familiarity with security tools like SIEM, IDS/IPS, EDR, and forensic analysis tools
  • Understanding of incident response procedures and methodologies
  • Understanding of frameworks such as MITRE ATT&CK and the Cyber Kill Chain
  • Familiarity with TCP/IP network protocols, application layer protocols (e.g., HTTP, SMTP, DNS, etc.)
  • Experience in responding to and investigating cloud, system, or network intrusions
  • Excellent Written and Verbal Communication Skills
  • Expertise in forensics, malware analysis, and network intrusion response

Preferred Requirements:

  • Knowledge of common Windows and Linux/Unix system calls and APIs
  • Knowledge of programming languages
  • Knowledge of internal file structures for file formats commonly associated with malware
  • Knowledge or experience in Detection Engineering