Security Threat Analyst
City Of Muntinlupa, Ncr-Fourth District
PRIMARY RESPONSIBILITIES:
● Detect ,Analyze and qualify cyber security incidents & threat
● Identify source , target of attack and block access to existing target, applications and infrastructure assets
● Guide ISS Team, for workstation, servers and Network to implement secure solutions
● Follow and manage Cyber Security incident Dashboard
● Insure a close coordination with CISO team for user awareness campaign, define high level security policy and build KPI Dashboard
● Participate in CyberSecurity Attack Crisis, war room and remediation
● Assist with the implementation of security systems including review of logs and reports from various tools such as firewall, IDS/IPS, NGAV, SIEM, EDR and event log monitoring.
● Manage and run cyber security solutions & tools
● Have a permanent cyber security watch, for malware, web based attacks, injections attacks, phishing...
● Manage documentation
● Work in a Global Cyber Security Team, not only for one region but for all
● Build and maintain Dashboard and KPI
SECONDARY RESPONSIBILITIES:
● Testing for Network Vulnerabilities
● Prepare Reports
● Produce Documentation
● Create Network Security Policies
Qualifications
Cyber Security Analyst
SERVICE DESK AND INFRASTRUCTURE RESOURCE REQUIREMENT
Technical skills :
● High Capacity to analyze complex situations
● IT Security / Cybersecurity certifications a plus.
● Capacity to run and operate solutions like Palo Alto firewalls, cortex XDR, XSOA, Splunk, AD audit+, AV
● Language : English (mandatory), French is a plus
● Good knowledge of the solutions on the market is also a plus
Soft skills :
● Capacity to communicate and manage interaction in a global Team (interpersonal savvy)
● Results and customer oriented
● High capacity to work in a sometimes stressful environment and under pressure
● Confidentiality and loyalty
● Ability to work flexible work schedule; ie. weekends and evenings where requested
● Has interest for innovation and self learning in his/her security domain
BEHAVIOR ABILITIES:
● At least 2 years in handling SOC cases using SIEM platforms & log management systems
● Knowledge in the current tactics, techniques and procedures (TTPs) being used to breach an enterprise
● Must be available to work on-call or off hours as needed to sustain operations