Technical Skills and Experience:
- Practical experience with email system security, including phishing prevention, spam filtering, and email security protocols.
- At least 2 years of experience with security incident monitoring, with the ability to identify and assess significant security events.
- Familiarity with security information and event management (SIEM) tools for log analysis and threat detection.
- At least 2 years of experience with Endpoint Security, including administration and investigation within centralized antivirus platforms and Endpoint Detection and Response (EDR) solution.
- Experience in handling account compromise incidents, including investigation and recovery procedures.
- Minimum of 2 years of experience in network security, including solid understanding of network fundamentals, firewall systems (policy/rule management, web filtering, forward traffic analysis), VPN configurations.
- Proficiency in Kusto Query Language (KQL) for crafting queries, analysing logs, and investigating security incidents within platforms like Microsoft Sentinel.
- Amenable to work in the office in a Hybrid set up, In compliant with our guidelines and policy of our HR Team and SGL SSC Manila Management.
- Responsible for 24/7 shift schedule and on-call rotation.
Communication and Analytical Skills:
- Strong analytical skills and experience in data analysis for incident investigation and reporting.
- Ability to effectively communicate and present security incidents, findings, and recommendations to both technical and non-technical audiences.
- Proficiency in writing detailed technical incident reports, ensuring clarity and accuracy.
- Experience leading or participating in discussion related to security incidents within a team setting.
Soft Skills and Additional Requirement:
- Fluent in English, both spoken and written, with strong communication skills.
- Proactive and self-motivated, demonstrating the ability to take initiative in security investigations and response activities.
- Strong problem-solving skills and adaptability in handling evolving security threats.
- Service-oriented mindset, with a commitment to ensuring the security and integrity of IT systems.
- Familiarity with cybersecurity frameworks and compliance standards, such as NIST, ISO27001, or CIS benchmarks (optional but beneficial).
- Experience or familiarity with the following tools (optional but beneficial)
- Microsoft Sentinel
- Microsoft Defender (including Defender for Cloud Apps, Endpoint and Office 365)
- Google SecOps SOAR
- JIRA
- Confluence
- Certificates (optional but beneficial)
- CompTIA Security+
- ComTIA CySA +
- Microsoft Certificates (SC-900 or SC-200)
Report job
