Incident Responder (IT Cybersecurity)

We will reach out to you via the email address provided in your resume should you qualify for the next steps of your application.

Work arrangement : WFH

Shift Schedule : 10 PM - 6AM - PHT (Mon-Fri)

We are seeking an experienced and highly skilled Incident Responder to join our Security and Compliance team. The Incident Responder will play a critical role in protecting our organization by detecting, responding to, and mitigating cybersecurity threats.

This role requires a keen understanding of security incident response protocols and experience in handling a wide range of cybersecurity incidents, from phishing attacks to advanced persistent threats (APTs).

About the Job:

• Incident Detection and Response
• Gather, analyze, and disseminate threat intelligence to improve the organization’s security posture and prepare for potential attacks.
• Perform digital forensics on compromised systems to identify the root cause of security incidents, document findings, and provide recommendations.
• Work closely with the vulnerability management team to identify, prioritize, and remediate security vulnerabilities that may be exploited by attackers.
• Assist in developing automation scripts and playbooks for common incidents to streamline response efforts and reduce incident resolution time.
• Conduct incident response tabletop exercises and training for staff to improve readiness and ensure all stakeholders are familiar with incident response protocols.
• Document all phases of incident response activities, ensuring detailed records of actions taken and evidence gathered, and provide reports to senior management.

Your Qualification:

• 3+ years of experience in incident response, security operations, or digital forensics.
• Strong knowledge of cybersecurity frameworks, incident response methodologies, and forensic investigation techniques.
• Hands-on experience with SIEM, IDS/IPS, and EDR platforms.
• Understanding of network protocols, operating systems (Windows, Linux), and cloud environments (Azure, AWS).
• Excellent problem-solving skills and the ability to remain calm under pressure.
• Strong documentation and communication skills for clear reporting to technical and non-technical stakeholders.
• Attention to Detail: High level of accuracy in gathering and analyzing incident-related data.
• Communication: Effective verbal and written communication skills, especially during high-pressure situations.
• Proactivity: Takes initiative in threat hunting and improving the incident response process.
• Collaboration: Works well with cross-functional teams to address security threats holistically.

NICE TO HAVE:

• Certifications such as GIAC Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP), or equivalent are a plus.

Job Offer:

• Permanent REMOTE role
• 21 Days Paid Time Off (PTO) Annually + 1 Additional PTO per successful year of tenure (up to five (5) years)
• HMO coverage for employee +1 FREE dependent on the first day of employment
• +1 additional FREE dependent per successful year of tenure (up to five (5) years)
• Tenure Incentive Program*
• FREE daily meal
• Referral Bonus of up to Php20,000.00*
• ALL government mandated benefits

*Terms and conditions apply