DRAG

Cyber Security Analyst / Engineer

Location:
Clark and Subic Office

Position:
Full Time

Closing Date:
Friday, August 30, 2024

Can you identify security gaps, perform threat risk assessments in the current setup and propose mitigation measures? Do you have the ability to mitigate and contain threats upon detection efficiently and effectively?

If your answer is yes, then WE WANT YOU! 

We are in need of a Cyber Security Analyst / Engineer to review and develop security framework, information security policies, processes/procedures, and guidelines regularly. Candidates must also have an in-depth understanding of Risk Management, Disaster Recovery, Business Continuity, and IT Regulatory Compliance

As a Cyber Security Analyst / Engineer, your duties and responsibilities include:

  • Review and develop security framework, information security policies, processes/procedures, and guidelines regularly.
  • Work with vendors to conduct security assessments and penetration tests.
  • Identify security gaps, perform threat risk assessments in the current setup and propose mitigation measures.
  • Standardize and refine security incident response and escalation processes.
  • Mitigate and contain threats upon detection.
  • Escalate security incidents and non-compliances on a timely basis.
  • Work with the IT infrastructure team to evaluate, implement and enhance the network perimeter security, endpoint security, and SIEM.
  • Monitor information security alerts triage, mitigate, and escalate issues as needed.
  • Conduct information security awareness training.
  • Provide security advisory to end-users regularly.
  • Manage IT Security of various aspects, e.g., network security, server security, application security, endpoint security, email security, physical access security, logical access security, etc.
  • Stay updated with industrial IT security advancements and introduce appropriate enhancements to the infrastructure and systems.
  • Attend to other reasonable duties as assigned by the Senior IT Manager.

Qualifications:

  • Must have a bachelor’s degree in Computer Engineering, Computer Science, Information Technology, or equivalent.
  • With at least 2-5 years of related work experience in cybersecurity management and security governance.
  • Candidates with exceptional proven work experience may be considered for a Senior Cyber Security Analyst position.
  • Prior IT security consulting and/or IT Network experience is a plus.
  • Certifications such as CISSP, CISM, or any equivalent IT security certifications will be highly regarded.
  • Has good working knowledge of security risk management, security governance framework and compliance (IT Security – Audit/log review), technical vulnerability management (vulnerability assessment, penetration testing), application security, security technologies (system hardening, IDS/IPD, firewall), security incident response and security assessment.
  • Must have an in-depth understanding of ISO27001, PCI DSS, and HIPAA security standards.
  • With hands-on experience in at least 4 of the following IT Security Tools:
    • Next-Generation Firewall (FortiGate, Palo Alto, Cisco FirePower, etc.)
    • Tenable Security Center Continuous View
    • Endpoint Protection (Symantec, Trend Micro, Sophos Endpoint, etc.)
    • Email Security (FireEye ETP, Cisco Email Security, etc.)
    • Data Loss Prevention (Symantec, ForcePoint, Digital Guardian, etc.)
    • SIEM (Splunk, QRadar, etc.)
  • Understands Risk Management, Disaster Recovery, Business Continuity, and IT Regulatory Compliance.
  • Has good command of the English language – verbal and written.
  • Has excellent interpersonal and communication skills.
  • Must be proactive, independent, resourceful, and can work in a team environment or independently with minimal supervision.
  • Can work well with all functional levels in the organization.
  • Amenable to work on a shifting schedule.
  • Willing to be assigned to Clark, Pampanga or Subic Bay Freeport Zone, Olongapo City. 

The future of professional services.

Copyright © 2024 | DBA Global Shared Services Inc.