Incident Response Manager

About Penbrothers

Penbrothers is an HR & remote talent management partner and one of the fastest growing companies in the Philippines. We provide talented Filipinos with global opportunities in high-growth startups and dynamic companies, from the comfort of their own homes.

About the Client

Our client is Asia's premier cyber emergency response team, specializing in digital forensics and incident response services. We help organizations prepare for, respond to, and recover from cyber incidents, providing swift, discreet, and highly specialized expertise. With a team of cybersecurity specialists, we operate with a mission to make cyber resilience accessible, reliable, and actionable for all businesses across the region.

About the Role

You will manage high-profile cybersecurity investigations, coordinate with executives, clients, and stakeholders, and guide organizations through their most urgent moments of digital crisis. This role demands exceptional hands-on technical ability, strategic leadership, and the calm, decisive mindset required in fast-moving, high-stakes environments.

• Lead and execute high-stakes cyber incident response investigations, ensuring rapid containment, eradication, and recovery in mission-critical environments.

• Analyze forensic artifacts, attacker TTPs, and malware across complex hybrid infrastructures: including Windows, Linux, macOS, and cloud platforms.

• Perform full-spectrum DFIR operations, including disk imaging, memory acquisition, log analysis, threat hunting, and lateral movement investigations.

• Utilize scripting languages (Python, Bash, PowerShell) to automate response workflows, simulate adversarial techniques, and enhance investigative efficiency.

• Communicate strategic insights and technical findings to clients, executives, regulators, and law enforcement with clarity, confidence, and precision.

• Collaborate with engineering and R&D teams to refine internal tools, enhance proprietary tech, and accelerate operational readiness.

• Coordinate directly with external stakeholders: including legal teams, insurers, vendors, and government agencies, throughout incident lifecycles.

• Partner with sales consultants to scope potential engagements, provide technical insight during pre-sales, and contribute to internal upskilling, ensuring our commercial team is equipped to position our CIF capabilities with precision.

• Train, mentor, and uplift junior analysts, instilling elite tradecraft, professional discipline, and the company's standard of operational excellence.

What You Bring

• 3+ Years of Hands-On Experience in cybersecurity incident response, security operations as an analyst, digital forensics, or threat intelligence (consulting or in-house).

• Strong Technical Foundations across enterprise networks, security architecture, and cloud environments.

• Proficiency with Key DFIR Tools including EDR platforms, SIEMs, firewalls, and forensic toolkits (e.g., Splunk, ELK, SentinelOne, Checkpoint, Velociraptor, X-Ways).

• Operating System Mastery – Comfortable navigating and investigating across Windows, Linux, and macOS environments.

• Scripting and Automation Skills – Proficient in at least one scripting language (Python, Bash, or PowerShell), with a mindset for automating workflows and simulating adversary behavior.

• Calm Under Fire – Proven ability to lead or contribute to high-pressure, customer-facing IR engagements with poise and precision.

• Communication – Able to translate complex technical findings into strategic guidance for senior stakeholders, boards, and regulators.

Preferred Qualifications – What Sets You Apart

• Certifications – GCFA, GNFA, GREM, OSCP, or equivalent.

• Real-World Adversary Experience – Deep exposure to ransomware/extortion cases, dark web intelligence, and threat actor tracking.

• OT/ICS Proficiency – Experience working in air-gapped or critical infrastructure environments.

• Builder Mindset – Demonstrated experience in building cybersecurity tools, writing custom scripts, or contributing to open-source security projects.

• Backgrounds of Honor – Prior experience in military, law enforcement, or intelligence agencies is a strong plus.

Hiring Process

We utilize AI tools to enhance our hiring efficiency and ensure a fair evaluation of all candidates. As a result, candidates who passed our initial evaluations should expect an AI Interviewer as a component of our recruitment process. This is supervised by Human Talent Acquisition Experts who will also engage with you throughout your application journey.

What You'll Get

At Penbrothers, we are obsessed with creating positive employee experiences. Here you'll find an environment that nurtures learning and provides opportunities for growth. You'll have the opportunity to make an impact on fast-growing startups and dynamic companies.

• Meaningful work & Growth: We take every opportunity to stretch ourselves and deliver an excellent client experience.

• Employee as our biggest asset: We are genuinely invested in our people's career and welfare.

• Global reach & local impact: Get to work with high-growth startups and dynamic companies from the comfort of your own home.

• Powering global startups: We've created 1,400 Filipino jobs that empower global start-ups to focus on growth.