Job Description:
Tier - 1 Security Analyst is responsible for, identifying, monitoring, and reporting computer security incidents within the Telos environment and helping ensure a positive information security posture for the organization. He/she will perform initial assessments of security incidents and escalate, as needed, for resolution and remediation. Responsibilities also include being proactive research work on threats, vulnerabilities, and information security in general.
Provide monitoring of security alerts, health sensors, and uptime for the following products:
PTRG Network Monitor Logrhythm (SIEM) CarbonBlack AntiVirus Alerts (System Center Endpoint Protection) PaloAlto Network Firewalls Other Email Alerts Tool status (Nessusscan completion, TenableSecurity Center server status) Xacta Continuum / 360 AWS logs Monitor new software updates for security tools. Generate simple reports for IT and compliance:
current alerts, banned file, malicious file, current software, etc. Monitor public threat lists and perform the immediate corresponding action, such as:
Validate the presence of a published vulnerability and initiate the process for applying the appropriate fix/patch; Actively search for Indicators of Compromise (IoCs) Escalate issues to the next level for resolution/response. Conduct research on/respond to SPAM reports. Perform simple initial threat responses by:
adding IP addresses to block lists; banning executables in Bit9 Conduct research and information gathering on the company. Conduct research on threats/vulnerabilities. Performs other duties as requested and within areas of expertise. Minimum Qualifications:
Bachelor's degree in Computer Science or related course At least 1 - 2 years related experience in computer security and incident response
Basic knowledge in security applications, including: PTRG Network Monitor Logrhythm(SIEM) CarbonBlack AntiVirus Alerts (System Center Endpoint Protection) PaloAlto Network Firewalls Tool status (Nessusscan completion, TenableSecurity Center server status) AWS logs Familiar with network architecture best practices Basic knowledge in firewall configuration Basic computer system troubleshooting and problem-solving skills Good to excellent interpersonal and communication skills Capable of self-direction and self-motivation Good to excellent English communication skills (oral and written) Openness for worktime flexibility Preferably lives within Metro Manila