Incident Response Analyst

A global organisation is seeking an Incident Response Analyst to join their Information Security Team in Taguig.

This role offers you the opportunity to play a pivotal part in safeguarding critical information systems, ensuring their confidentiality, integrity, and availability. You will be at the forefront of detecting, containing, and analysing security events, contributing directly to the firm’s business objectives and regulatory requirements. The position provides exposure to advanced threat detection technologies and encourages your input into process improvements, making it ideal for someone passionate about information security and eager to grow within a supportive environment. Flexible working arrangements, ongoing training opportunities, and a culture that values empathy, professionalism, and expertise await you.

• You will have the chance to work with cutting-edge incident response tools and platforms while collaborating with a knowledgeable team dedicated to protecting global assets.
• The organisation offers flexible working opportunities and comprehensive training programmes designed to support your professional development and enhance your skills in information security.
• You will be empowered to contribute ideas for improvement, participate in special projects, and help shape internal standards and procedures within an inclusive and supportive workplace.

What you'll do:

As an Incident Response Analyst based in Taguig, you will be responsible for providing Tier 2 incident response services on behalf of a global Information Security Team. Your day-to-day activities will involve processing tickets efficiently according to service level agreements while maintaining exemplary customer service standards. You will analyse information from various monitoring systems to identify potential threats or breaches, assess their impact, and respond using established protocols. By offering feedback on current practices and assisting with the implementation of new threat detection solutions, you will help drive continuous improvement within the team. Utilising industry-standard tools such as SIEM platforms and breach detection systems will be central to your investigative work. You will also support forensic examinations under guidance from senior engineers while contributing input into operational standards. Reporting compliance failures swiftly ensures regulatory adherence. Maintaining system reliability through oversight of performance metrics is key. Additionally, you will prepare status reports for management review, assist with internal training initiatives, contribute content for security-related repositories or awareness campaigns, and participate in special projects that further strengthen organisational resilience against cyber threats.

• Provide Tier 2 incident response services across the global organisation as part of the Information Security Team, ensuring timely detection and resolution of security incidents.
• Receive, process, and resolve tickets according to defined service level agreements, maintaining high standards of customer service throughout each interaction.
• Analyse data from monitoring systems, operational incidents, and other sources to determine the scope and impact of potential security threats, responding appropriately based on established protocols.
• Assess current practices critically and offer constructive feedback to management regarding opportunities for improvement in incident response processes.
• Assist with the design and implementation of threat detection and prevention solutions identified as necessary for protecting organisational assets.
• Utilise common incident response toolsets such as SIEM, log management platforms, packet capture systems, and breach detection technologies effectively during investigations.
• Support forensic examinations by following chain-of-custody procedures as directed by Security Incident Response Engineers, ensuring evidence integrity.
• Contribute input into the development of standards and procedures related to information security operations within the organisation.
• Report compliance failures promptly to management for immediate remediation actions in accordance with regulatory requirements.
• Maintain assigned systems by overseeing their availability, reliability, performance, capacity planning, licensing compliance, and integrity.
• Prepare status reports and relevant metrics for the Security Operations Manager to inform decision-making processes.
• Participate actively in the creation of internal training materials and documentation aimed at increasing awareness among staff members.
• Engage in special projects as needed to support broader organisational goals related to information security.

What you bring:

To excel as an Incident Response Analyst in this global setting based in Taguig, you should bring proven experience working within information security teams—particularly those focused on incident response or digital forensics. Your background may include formal education in computer science or equivalent hands-on experience that has equipped you with foundational knowledge of network protocols such as TCP/IP/DNS along with familiarity using industry-standard tools like SIEM platforms or breach detection systems. Experience conducting malware analysis—both static and dynamic—will allow you to extract meaningful indicators from suspicious code or websites efficiently. Familiarity with vulnerability management tools such as Qualys or Nessus supports proactive risk identification efforts. Adaptability is key; staying informed about evolving threat landscapes enables you to adjust practices accordingly based on intelligence reports or attacker tactics techniques procedures (TTPs). Analytical skills are vital: gathering facts from diverse sources then drawing logical conclusions helps define problems accurately before suggesting effective solutions. Composure under pressure combined with disciplined approaches during incidents ensures consistent performance even when stakes are high. Communication skills—both written/spoken English—are essential for translating complex technical issues into clear messages suitable for non-technical audiences across departments. Flexibility regarding shift-based work schedules demonstrates your willingness to support global operations seamlessly. Above all else your passion for achieving excellence through rigorous practice sets you apart; providing empathetic customer service during every interaction underscores your professionalism expertise respectfulness.

• A bachelor’s degree in Computer Science or equivalent experience demonstrating foundational knowledge in information security principles is required for this role.
• Professional certifications such as GSEC, GCIH, GCFE, GREM, CISSP or SSCP are desirable but not mandatory; candidates with strong practical experience are encouraged to apply.
• Some professional experience focusing on incident response and digital forensics within an enterprise environment is highly valued.
• Solid understanding of incident response concepts including best practices for handling forensic evidence and chain-of-custody procedures is essential.
• Experience using common IR tools such as SIEM platforms (Security Information & Event Management), log management systems, IDS/IPS (Intrusion Detection/Prevention Systems), breach detection technologies (APT/BDS/EDR), packet capture utilities is expected.
• Broad familiarity with TCP/IP networking fundamentals including DNS protocols and common network services forms a strong foundation for success in this role.
• Working knowledge of malware detection techniques including static/dynamic analysis methods; ability to extract indicators of compromise from suspicious code or websites is beneficial.
• Experience utilising vulnerability management tools like Qualys or Nessus (or similar) for scanning/discovery purposes enhances your effectiveness in identifying risks.
• Awareness of evolving threat landscapes coupled with adaptability in applying updated practices based on available intelligence reports is important.
• Ability to gather facts methodically from multiple sources (IDS/IPS/SIEM/AV), analyse them critically, define problems clearly, suggest actionable solutions demonstrates analytical strength.
• Maintaining composure under pressure while exercising disciplined approaches during incident handling reflects your commitment to excellence.
• Excellent written and spoken English communication skills enable you to convey complex technical concepts clearly to non-technical stakeholders within the organisation.
• Willingness to accommodate shift-based work schedules supporting a global operation shows flexibility and dedication.
• Demonstrated passion for pursuing excellence in incident response practices alongside a rigorous approach towards problem-solving sets you apart as an ideal candidate.
• Providing empathetic customer service by striving for first-call resolution while exhibiting respectfulness professionalism expertise during interactions is crucial.

What sets this company apart:

This global organisation stands out due to its unwavering commitment to fostering a collaborative environment where every team member’s contributions are valued. Employees benefit from flexible working opportunities that accommodate personal needs while supporting operational demands across time zones. Comprehensive training programmes ensure continual growth—whether you’re advancing technical skills or broadening your understanding of emerging threats—and encourage sharing knowledge among peers. The workplace culture emphasises inclusivity: everyone’s voice matters regardless of background or experience level. Supportive leadership guides teams through challenges with empathy rather than hierarchy; open communication channels facilitate honest feedback which drives process improvements collectively rather than individually. The organisation invests heavily in state-of-the-art technology so employees can leverage advanced tools during investigations without constraint; this empowers analysts like yourself not only to protect assets but also innovate new solutions proactively. Opportunities abound for participating in special projects that expand horizons beyond routine tasks—whether developing internal training materials raising awareness among colleagues or contributing content repositories that educate wider audiences about cybersecurity best practices. Above all else this company prioritises employee wellbeing: generous pension contributions robust benefits packages regular recognition programmes reinforce loyalty kinship among staff members creating an atmosphere where everyone feels supported respected appreciated daily.

What's next:

If you are enthusiastic about advancing your career in information security within a globally recognised organisation that values collaboration empathy professionalism expertise apply now!

Apply today by clicking on the link provided—your journey towards becoming an integral part of a supportive inclusive team starts here.

Due to the high volume of applications we are experiencing, our team will only be in touch with you if your application is shortlisted.