Cyber Security Specialist

Cyber Security Specialist

Join our team as a Cyber Security Specialist

In this role, you will be responsible for safeguarding systems through incident response, vulnerability management, threat hunting, and ensuring robust data protection and network security.

Lenet offers a wide range of technology services including network support, cybersecurity, user support and cloud management. We are a fast growing IT company and are looking for a Cyber Security Specialist to support our SOC team.

Job Responsibilities

• Assisting in the incident response process alongside a leader who would provide step by step directions.
• Continually patching known vulnerabilities that are detected by an automated tool. This would include monitoring OS and applications on workstations and servers, as well as firmware and hardware versions for network devices.
• Maintain consistent backups of all critical data and troubleshoot and issues that disrupt these backups in a timely manner to ensure we're able to recover data within the RPO / RTO established by the organization.
• Triage EDR / XDR / Antivirus alerts to identify true / false positives based on indicators of compromise, and involve a team leader when it is unclear.
• Triage SIEM detections to identify true / false positives by tracking when actions are taken that deviate from the established baseline, and involve a team leader when it is unclear
• Review and address network misconfigurations that would allow for unnecessary ports to be open for external access. This would apply for hardware network devices as well as cloud configurations such as in Azure and AWS.
• Review emails that are detected as spam / phishing / spear phishing / malware and differentiate between true and false positive detections. SOC Team members should also be able to review SPF, DKIM, and DMARC records to identify misconfigurations, and differentiate between spoofed and legitimate emails (as well as being able to identify when an email address belonging to a 3rd party has been compromised and is now being used as a pivot point to compromise additional email addresses).
• Review Windows event logs, network traffic logs, and generic syslog from various sources while threat hunting for indicators of compromise.

Profile

Years of experience: 2+ years of proven work experience as a cybersecurity support or a similar role

Location: Remote

Qualifications:

Technical Skills:

• Experience with Security Tools: EDR, XDR, SIEM, IDS/IPS, Antivirus, and Vulnerability Management platforms.
• Knowledge of Network Protocols: TCP/IP, DNS, HTTP/S, SMTP, and others.
• Familiarity with Cloud Security: AWS, Azure, GCP configurations, and security practices.
• Operating Systems Proficiency: Windows, Linux, and macOS administration and security.
• Log Analysis: Ability to analyze Windows event logs, syslogs, and network traffic for anomalies.
• Email Security: Understanding SPF, DKIM, and DMARC; identifying phishing and spoofing attempts.

Soft Skills:

• Problem-Solving Skills: Analytical mindset for incident triage and threat detection.
• Communication Skills: Clear written and verbal reporting of security findings and incidents.
• Collaboration: Ability to work closely with team members and escalate issues when necessary.

Certifications (Preferred):

• CompTIA Security+
• Certified Information Systems Security Professional (CISSP)
• Certified Ethical Hacker (CEH)
• GIAC Security Essentials (GSEC)
• Cisco Certified CyberOps Associate

Experience:

• Prior experience in a Security Operations Center (SOC) or similar role.
• Incident response and threat hunting experience.
• Managing backups and disaster recovery processes.
• Outstanding oral and written communication skills
• Detail oriented and an attentive listener
• Excellent organizational and multitasking skills
• Ability to meet deadlines
• A team player with high level of dedication
• Strong attention to detail
• Familiar with ConnectWise Manage or ConnectWise Sell is a plus
• Discretion and confidentiality when exposed to sensitive/ confidential information
• Must be willing to work night shifts

Benefits:

• Quarterly Bonus on performance
• PTO - Vacation Leaves (increase per year)
• Paid Time Off for Volunteering
• The company provides hardware equipment/laptop.

Job Type: Full-time

Pay: Php30, Php50,000.00 per month

Work Location: Remote