Incident Response Analyst

A leading global professional services firm is seeking an Incident Response Analyst to join its highly respected Information Security Team in Taguig.

This is a unique opportunity to play a pivotal role in safeguarding the confidentiality, integrity, and availability of critical information systems across a truly international network. You will be at the forefront of detecting, containing, and analysing security events, working with cutting-edge technologies and collaborating with talented professionals from around the world. The organisation is renowned for its inclusive culture, commitment to diversity, and dedication to nurturing talent at every level. Flexible working opportunities and a supportive leadership team ensure you can thrive both personally and professionally while making a meaningful impact on the security posture of a global enterprise.

• Join a globally recognised professional services firm with over 70 offices worldwide, offering exposure to complex business challenges and cross-border collaboration.
• Benefit from a culture that values diversity, inclusion, and personal growth, where your contributions are celebrated and your development is prioritised through ongoing training opportunities.
• Enjoy flexible working arrangements and the chance to work alongside knowledgeable colleagues who are passionate about information security excellence.

What you'll do:

As an Incident Response Analyst based in Taguig, you will play an essential role in protecting vital information assets across a global network. Your day-to-day activities will involve responding to complex security incidents using advanced analytical skills and technical expertise. You will collaborate closely with colleagues across multiple regions to ensure swift identification and containment of threats while providing valuable insights into improving existing processes. By leveraging your experience with industry-leading tools such as SIEMs and forensic platforms, you will help drive continuous enhancement of threat detection capabilities. Your ability to communicate effectively with both technical teams and non-technical stakeholders will be crucial as you prepare reports, contribute to internal knowledge repositories, and participate in special projects designed to strengthen overall cyber resilience. Success in this position requires not only technical proficiency but also a collaborative spirit, attention to detail, composure under pressure, and a genuine passion for advancing information security best practices within a diverse international environment.

• Provide Tier 2 incident response services for a global organisation as part of the Information Security Team, ensuring timely detection, containment, and resolution of security incidents.
• Receive, process, and resolve tickets according to defined service level agreements (SLAs), maintaining high standards of customer service throughout each interaction.
• Analyse data from monitoring systems, operational incidents, and other sources to determine the scope and impact of potential security threats, escalating issues as appropriate.
• Critically assess current practices within the incident response function and provide constructive feedback to management on areas for improvement.
• Assist in designing and implementing threat detection and prevention solutions that align with organisational objectives and regulatory requirements.
• Utilise industry-standard incident response toolsets such as SIEM platforms, log management systems, packet capture tools, and breach detection systems to investigate incidents thoroughly.
• Support forensic examinations by following chain-of-custody procedures under the guidance of Security Incident Response Engineers.
• Contribute input into the development of standards and procedures that enhance the effectiveness of the security operations function.
• Report compliance failures promptly to management for immediate remediation actions to protect organisational assets.
• Maintain assigned systems by overseeing their availability, reliability, performance, capacity planning, and licensing requirements.

What you bring:

To excel as an Incident Response Analyst in this prestigious global setting, you will bring proven experience in managing sophisticated security incidents within enterprise environments. Your educational background or equivalent practical expertise will underpin your ability to navigate complex technical landscapes involving digital forensics tools like EnCase or FTK. You will have developed a keen eye for identifying anomalous behaviour on networks or endpoints using advanced monitoring platforms. Your interpersonal skills will enable you to build productive relationships across diverse teams while maintaining professionalism even during high-pressure situations. A disciplined approach ensures rigorous adherence to established procedures when handling sensitive data or conducting forensic investigations. Your commitment to continuous learning keeps you abreast of evolving threats so you can adapt practices accordingly. Above all else, your empathetic nature fosters trust among colleagues as you share knowledge generously—contributing not just technical acumen but also warmth and supportiveness that enriches the wider team dynamic.

• Possess a Bachelor’s Degree in Computer Science or demonstrate substantial equivalent experience relevant to information security roles.
• Hold or be willing to obtain certifications such as GSEC, GCIH, GCFE, or GREM; CISSP or SSCP qualifications are considered advantageous but not mandatory.
• Demonstrate professional experience in information security with a focus on incident response and digital forensics within large-scale environments.
• Show foundational knowledge of incident response concepts including forensics methodologies and chain-of-custody protocols for evidence handling.
• Exhibit hands-on experience with common incident response tools such as SIEM platforms (e.g., Splunk), log management solutions, intrusion detection/prevention systems (IDS/IPS), breach detection systems (APT/BDS/EDR), vulnerability scanners (Qualys/Nessus), and packet capture utilities.
• Display broad understanding of TCP/IP networking principles, DNS operations, common network services, malware detection techniques, analysis methods (static/dynamic), evasion strategies used by attackers, and mitigation recommendations.
• Demonstrate capability in gathering facts from multiple sources (IDS/IPS logs, SIEM alerts) to identify threats within enterprise environments; apply threat intelligence reports effectively during investigations.
• Maintain critical thinking skills under pressure while exhibiting strong written and oral communication abilities suitable for conveying complex concepts clearly to non-technical audiences.
• Be able to assist with preparation of internal training materials/documentation; show willingness to accommodate shift-based work schedules supporting global operations.
• Provide exemplary customer service by striving for first-call resolution while demonstrating empathy, respectfulness towards others regardless of position or background.

What sets this company apart:

This organisation stands out as one of the world’s most respected professional services firms due to its unwavering commitment to delivering seamless client solutions across markets and sectors. With more than 70 offices globally—and a workforce drawn from an extraordinary range of backgrounds—the company offers unparalleled opportunities for cross-cultural collaboration. Its inclusive ethos ensures everyone feels valued regardless of race, religion or belief (if any), gender identity or expression, disability status or sexual orientation. Employees benefit from access to extensive training resources designed to foster both personal growth and professional advancement. The leadership team is dedicated not only to upholding high ethical standards but also nurturing talent through mentorship programmes that encourage sharing ideas openly in a supportive environment. Flexible working arrangements further empower staff members at all levels—enabling them to balance career ambitions with life outside work while contributing meaningfully toward shared goals. If you are looking for an employer that genuinely invests in people’s success while championing diversity at every turn—this is your ideal destination.

What's next:

If you are ready to take your career in information security incident response to new heights within an inclusive global environment—this is your moment!

Apply today by clicking on the link provided—your next exciting challenge awaits!

Due to the high volume of applications we are experiencing, our team will only be in touch with you if your application is shortlisted.