Incident Responder (IT Cybersecurity) in PHILIPPINES

We will reach out to you via the email address provided in your resume should you qualify for the next steps of your application.

Work arrangement : WFH

Shift Schedule : 10 PM - 6AM - PHT (Mon-Fri)

We are seeking an experienced and highly skilled Incident Responder to join our Security and Compliance team. The Incident Responder will play a critical role in protecting our organization by detecting, responding to, and mitigating cybersecurity threats.

This role requires a keen understanding of security incident response protocols and experience in handling a wide range of cybersecurity incidents, from phishing attacks to advanced persistent threats (APTs).

About the Job:

• Incident Detection and Response
• Gather, analyze, and disseminate threat intelligence to improve the organization’s security posture and prepare for potential attacks.
• Perform digital forensics on compromised systems to identify the root cause of security incidents, document findings, and provide recommendations.
• Work closely with the vulnerability management team to identify, prioritize, and remediate security vulnerabilities that may be exploited by attackers.
• Assist in developing automation scripts and playbooks for common incidents to streamline response efforts and reduce incident resolution time.
• Conduct incident response tabletop exercises and training for staff to improve readiness and ensure all stakeholders are familiar with incident response protocols.
• Document all phases of incident response activities, ensuring detailed records of actions taken and evidence gathered, and provide reports to senior management.

Your Qualification:

• 3+ years of experience in incident response, security operations, or digital forensics.
• Strong knowledge of cybersecurity frameworks, incident response methodologies, and forensic investigation techniques.
• Hands-on experience with SIEM, IDS/IPS, and EDR platforms.
• Understanding of network protocols, operating systems (Windows, Linux), and cloud environments (Azure, AWS).
• Excellent problem-solving skills and the ability to remain calm under pressure.
• Strong documentation and communication skills for clear reporting to technical and non-technical stakeholders.
• Attention to Detail: High level of accuracy in gathering and analyzing incident-related data.
• Communication: Effective verbal and written communication skills, especially during high-pressure situations.
• Proactivity: Takes initiative in threat hunting and improving the incident response process.
• Collaboration: Works well with cross-functional teams to address security threats holistically.

NICE TO HAVE:

• Certifications such as GIAC Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP), or equivalent are a plus.

Job Offer:

• Permanent REMOTE role
• 21 Days Paid Time Off (PTO) Annually + 1 Additional PTO per successful year of tenure (up to five (5) years)
• HMO coverage for employee +1 FREE dependent on the first day of employment
• +1 additional FREE dependent per successful year of tenure (up to five (5) years)
• Tenure Incentive Program*
• FREE daily meal
• Referral Bonus of up to Php20,000.00*
• ALL government mandated benefits

*Terms and conditions apply