Trabaho
>
Manila

    Cybersecurity Analyst – Linux wise - Manila, Pilipinas - Xurpas, Inc.

    Xurpas, Inc.
    Xurpas, Inc. Manila, Pilipinas

    Natagpuan sa: Foundit PH A2 - 5 araw ang nakalipas

    Default job background
    Paglalarawan
    Xurpas Inc. is a trusted, publicly listed technology company with twenty years of experience. We focus on helping our customers by offering digital transformation services including website and mobile app development, software solutions for enterprise resource planning and HRIS, IT staff augmentation, digital marketing services, and more.

    The Role

    You Will Be Responsible For

    • Cyber Security Analyst is responsible for the management of security incidents as well as their remediations via many different pieces of network and security-related hardware and software. These include EDR, SIEM, PAM, etc. The Cyber Security Analyst will act as the first line of defense across the organization against any possible attempts for cyber-attacks in a 24*7 rotation style.
    • Detect, Analyze, and classify cyber security incidents & threats via different log sources across multiple security solutions
    • Identify the source, and the target of attack and block access to existing targets, applications, infrastructure assets, etc.
    • Provide security hardening advice to different local IT Teams across the globe, for workstations, servers, and Networks to secure their environment
    • Commit oneself to the teams' target in terms of managing the backlogs/joining the shift rotations as well as conducting internal sharings whenever needed and appropriate
    • Ensure close coordination with various IT Sec internal teams as well as InfoSec teams for projects/initiatives that will improve the security posture for the whole group
    • Participate in CyberSecurity Attack Crisis War Room and support our L3 analyst for follow-up remediations needed
    • Assist with implementing security systems including review of logs and reports from various tools such as firewall, IDS/IPS, NGAV, SIEM, EDR, and event log monitoring.
    • Manage and run cyber security solutions & tools
    • Have a permanent cyber security watch, for malware, web-based attacks, injection attacks, and phishing...
    • Follow what is mentioned in the internal SOPs closely and provide insights to optimize the SOP accordingly whenever possible
    • Vulnerability assessment
    • Prepare Reports
    • Produce Documentation (SOP)
    • Create Network Security Policies
    • Build and maintain Dashboard and KPI

    Ideal Profile

    • Experienced in analyzing complex security attacks and performing efficient incident triage.
    • Solid knowledge of Windows and security hardening
    • Solid knowledge of Linux systems including but not limited to system configuration, maintenance, and administration; capable of various command lines for troubleshooting when needed
    • Solid knowledge of network security.
    • IT Security / Cybersecurity certifications are a plus.
    • Capabilities to run and operate solutions like Palo Alto firewalls, cortex XDR, XSOAR, Splunk, AD audit+, Microsoft Defender, and Microsoft 365.
    • Knowledge of the MITRE ATT&CK framework and its related tactics, techniques, and procedures (TTPs).
    • Working knowledge of other major security solutions on the market

    What's on Offer

    • Work alongside & learn from best in class talent
    • Attractive salary & benefits
    • Excellent career development opportunities