Mid-Senior SOC Analyst

Responsibilities:

24/7 Incident Response (as shift-assigned)

• Perform triage, assess severity of incidents
• Investigate and contain security incidents
• Execute predefined response procedures

24/7 Alerts Monitoring (as shift-assigned)

• Continuously monitor security alerts, logs, and network traffic
• Identify potential threats or anomalies

Suspicious Email Analysis and other Security Validations

• Respond to reported suspicious emails
• Analyze suspicious emails, trigger email threat remediation actions
• Perform validations for reported suspicious activities and other cybersecurity concerns
• Provide recommendations on analyzed concerns

Documentations and other tasks

• Assist in developing and executive Recovery Plan
• Participate in investigations or forensics activities
• Participate in change management processes
• Assist in troubleshooting hardware and software issues of Collectors and MXDR agents
• Documentation of Incident Reports, weekly/monthly reporting, maintenance of trackers and other relevant documents
• Detection Rules review and configuration

Threat Intelligence duties

• Performance relevant Threat Intelligence team responsibilities such as, but not limited to:
• Indicators of compromise (IOCs): Collect, analyze, disseminate, and initiate blacklisting
• Compromised accounts: Monitor and validate Client password leaks
• Brand protection initiatives: hunting of trademark infringements and other violations, impersonations, and sales scams. Perform validations, request for takedown, and monitoring
• Others
• Threat Intel publications and release of advisories, and other reports
• Monitor releases of new vulnerability advisories, disseminate and track
• Monitor of other potential leaks relating to Client (e.g. code repository, database, etc.)
• For Mid-Level, candidates should be experience in L2 incident response such as containment, isolation, root cause analysis and deep probing analysis.
• For Senior level,
  should have experience both L2 & L3 threat hunting, team management (preferred but not req.), use case development and use of cyber threat intelligence. Good-to-have competency related to governance and enforcement: Implement and enforce security policies, procedures, and best practices; Track and validate security controls, addressing deviations and risks; proficiency in process and documentation.

Qualifications:

• Bachelor Graduate of Computer Science, IT or other related course
• Have at least
  years - Mid level and 6-7 years for Senior as a SOC Analyst or Security Engineer
• Amendable to work
  100% onsite in Ortigas
  and
  shifting
• Proficient in
  documentation, strong incident, attack response and containment skills.
• Threat hunting, Cyber Security Threat Intelligence or use case development
  is a plus/ideal.

What do we have in store for you?

• A professional career adapted to your personal goals, with growth and development opportunities for all professionals
• Challenging projects with impact for leading clients in a wide range of industries
• Competitive renumeration and flexible benefits package which you may customize based on your individual needs and lifestyle
• Continuous learning and development through our Open University's virtual campus, with access to the Udemy for Business platform with more than 3,000 specialized courses
• Meaningful engagement with other employees while leading a balanced and healthy lifestyle through our clubs and various sports activities

Join Indra and have a professional career adapted to your personal goals, with continuous training in a flexible environment, and where people are the core.

Diversity is a key element of our culture. Our policies reflect our commitment to equal opportunities and recognizing the value of people and their work, and the social and natural environment wherein we operation. As such, equal opportunities, diversity, respect for people and non-discrimination (race, gender, language, religion, disability, sexual orientation, opinion, origin, economic position, birth, union membership or any other personal/social condition or circumstance) are basic principles of action for all the company's Professionals, as well as our Partners.