Cybersecurity Engineer
Description:
Our client is seeking a highly skilled and experienced Senior SOC Engineer to lead threat detection, incident response, and continuous monitoring efforts within our Security Operations Center. This role is critical to maintaining the confidentiality, integrity, and availability of our systems and data, especially in a highly regulated financial environment. The ideal candidate will bring deep technical expertise, a proactive mindset, and a passion for defending against evolving cyber threats.
Key Responsibilities:
Lead and coordinate real-time monitoring, triage, and response to security incidents across cloud and on-prem environments.
Develop and tune SIEM detection rules, use cases, and correlation logic to improve threat visibility.
Perform threat hunting and forensic investigations using logs, endpoint telemetry, and network data.
Collaborate with threat intelligence teams to integrate IOCs and TTPs into detection workflows.
Maintain and enhance SOC playbooks, runbooks, and incident response procedures.
Mentor junior SOC analysts and provide technical guidance during escalated incidents.
Work with engineering and infrastructure teams to implement security controls and logging standards.
Support compliance efforts (e.g., GLBA, FFIEC, PCI DSS) by ensuring logging, monitoring, and incident response capabilities meet regulatory requirements.
Participate in red/blue/purple team exercises and post-incident reviews.
Qualifications:
Lead and coordinate real-time monitoring, triage, and response to security incidents across cloud and on-prem environments.
Develop and tune SIEM detection rules, use cases, and correlation logic to improve threat visibility.
Perform threat hunting and forensic investigations using logs, endpoint telemetry, and network data.
Collaborate with threat intelligence teams to integrate IOCs and TTPs into detection workflows.
Maintain and enhance SOC playbooks, runbooks, and incident response procedures.
Mentor junior SOC analysts and provide technical guidance during escalated incidents.
Work with engineering and infrastructure teams to implement security controls and logging standards.
Support compliance efforts (e.g., GLBA, FFIEC, PCI DSS) by ensuring logging, monitoring, and incident response capabilities meet regulatory requirements.
Participate in red/blue/purple team exercises and post-incident reviews.
Preferred Certifications:
GIAC Certified Incident Handler (GCIH)
GIAC Security Operations Certified (GSOC)
Certified Information Systems Security Professional (CISSP)
Certified SOC Analyst (CSA)
--
Work setup: Hybrid, 3x a week RTO
Work location: BGC, Taguig City
Work schedule: Night shift
Interested applicants may apply directly on this job post or direct their CV to [].
FILIPINO CITIZEN ONLY residing in the Philippines***