Cybersecurity Analyst

Location: Makati National Capital Region (Manila) Philippines

SUMMARY

The Cybersecurity Analyst is a frontlineoperational role responsible for monitoring, investigating, and responding tosecurity alerts and incidents across the organization’s security tool stack,with a primary focus on Cisco Secure Workload, Cisco Secure Endpoint, and CiscoUmbrella.

This position is centered on alert triage,investigation, and execution of incident response activities, leveragingestablished detections, playbooks, and procedures to identify threats, assessimpact, and drive timely remediation. Analysts work closely with CybersecurityEngineers, who maintain and evolve the underlying platforms, to ensure alertsare accurately interpreted and appropriately handled.

The Cybersecurity Analyst plays a critical rolein day-to-day security operations by correlating events across multiple tools,escalating complex issues when required, and providing feedback to engineeringteams to continuously improve detection quality and response effectiveness.

JOB RESPONSIBILITIES

• Monitor, analyze, and respond to securityevents and incidents utilizing Cisco Secure Workload, Cisco Secure Endpoint,and Cisco Umbrella.
  
• Conduct thorough investigations of securityalerts to identify root causes, assess impact, and coordinate effectiveremediation
  
• Leverage Cisco Secure Workload (CSW), CiscoSecure Endpoint (CSE), and Cisco Umbrella to enforce network, endpoint, andDNS-layer security controls and mitigate threats
  
• Perform detailed investigation of securityalerts, correlate events across multiple sources, and drive timely incidentresponse.
  
• Collaborate with cross-functional teams(IT, Network, and Application owners) to identify and remediate security risksand vulnerabilities.
  
• Develop and maintain incident responsedocumentation, procedures, and runbooks.
  
• Contribute to the continuous improvement ofsecurity monitoring, detection, and response capabilities.
  
• Stay abreast of evolving cyber threats,tactics, techniques, and procedures (TTPs), and emerging industry trends

QUALIFICATIONS

• Bachelor’s degree inComputer sScience, Information Technology, Cybersecurity, or a related field(or equivalent experience).
  
• Minimum of 5+ years ofhands-on experience in cybersecurity operations, preferably within a SecurityOperations Center (SOC).
  
• Demonstrated expertisewith Cisco security technologies, specifically:
  
• Cisco Secure Workload(CSW)
  
• Cisco Secure Endpoint(CSE)
  
• Cisco Umbrella
  
• Strong knowledge ofendpoint security, workload security, network security, and threat detectionmethodologies.
  
• Solid understanding ofnetworking protocols, DNS, and security architecture principles.

PreferredQualifications

• Experience withCrowdStrike Falcon platform for endpoint detection and response.
  
• Proficiency inServiceNow (SNOW) for incident, problem, and change management.
  
• Relevant industrycertifications such as CyberOps, Security+, CySA+, GCIH, CCNA or equivalent.
  
• Experience integratingsecurity tools with SIEM platforms and ticketing systems.

JOB REQUIREMENTS

• Should be willing toaccept a long-term work-from-home arrangement.
  
• Should be amenable toa permanent night shift schedule.
  

Details

Originally posted on Himalayas