Apply
SOC Analyst- Philippines
Fully Remote Manila, PHL
Apply
Description

CyberMaxx is looking to add a Security Operations Center (SOC) Analyst to its top-tier team. The SOC Analyst works as part of a 24/7 operational team to perform first-level analysis and triage on incoming network, EDR, and SIEM alerts. The position works closely with the SOC Manager and shift leaders to prevent, detect, and respond to cyberattacks. THIS POSITION IS REMOTE BUT MUST BE LOCATED IN THE PHILLIPPINES.

PRIMARY DUTIES | RESPONSIBILITIES
SOC Analyst - level 2

  • Coordinate and manage incident investigations, including basic forensics activities if needed.
  • Conduct after-action reviews on high-impact and noteworthy incidents, identifying process and human capital improvements.
  • Act as a primary subject matter expert for one or more security products.
  • Act as an escalation point for complicated or sensitive work, ensuring quality and documenting for knowledge sharing.
  • Act as a primary technical point of contact with customers.
  • Collaborate with Tier 1 analysts to train and develop response and investigation where possible.
  • Participate in periodic client facing incident response drills and simulations to ensure the SOC team's preparedness for complex incidents.

QUALIFICATIONS | SKILLS

  • Analytical mindset and aptitude to learn quickly
  • Customer Service Focus
  • A solid foundational understanding of core cybersecurity and infrastructure technologies; TCP/IP networking, systems administration (Windows and/or Linux), E-mail, DNS, firewalls, etc.
  • Must be reliable, punctual, and willing to work in a 24/7 operations center (shift work required)
  • BS degree in Engineering, Mathematics, Computer Science, Information Security, or Information Systems preferred
  • Experience with deploying, maintaining, or using one or more of the following Security Solutions: SIEM, SOAR, Network IDS/IPS, Host IDS/IPS, Network Firewall, Host Firewall, Web Application Firewall, EDR, AV, DLP, Identity & Access Management, Web Proxy, Email Security
  • One or more security-related certifications from any of the following organizations: GIAC, ISC(2), CompTIA, EC-Council, Offensive Security, PMI, Cisco, Microsoft, Apple, Amazon.
  • Bachelor of Information Technology, Computer Science, Computer Engineering, Cybersecurity, Communications, Business or other related fields of study.
  • Demonstrates a personal interest in cybersecurity outside work hours.
  • Programming/Scripting experience.
  • Experience in an MSSP environment or performing similar duties.
  • Experienced in reviewing event logs.
  • Experience writing security product signatures, alerts, etc.
Apply
View All Jobs