Show more filters
Banner image for CloudConsole IT Consulting
Job Type   /   Job Level
Full-time   /   Others/Any
Company Location
Philippines
Cyber Security Analyst

Department: Security Operations Department

Reports to: Security Operations Director

Work Schedule: Shifting Schedule (Supporting US)

Work Setup: WFH

Location: Makati City

Company Overview €“ CloudConsole

CloudConsole is a Philippines-based Managed Service Provider (MSP) specializing in IT infrastructure, network deployment, cybersecurity, cloud services, and managed IT support. We help businesses run, secure, support, and modernize their IT operations through end-to-end technology solutions, delivering reliable services that enable organizations to focus on growth while we manage their technology needs.

Role Overview

The Cyber Security Analyst is responsible for monitoring, detecting, investigating, and responding to cybersecurity threats across client and internal environments. This role plays a critical part in maintaining the security posture of the organization by proactively identifying risks, managing security tools, supporting incident response activities, and ensuring compliance with security best practices.

The position requires a security-focused professional with hands-on experience in security monitoring, SIEM platforms, threat detection, vulnerability management, and endpoint protection technologies. The ideal candidate is analytical, detail-oriented, and capable of responding effectively to evolving cybersecurity threats.

Key Responsibilities

  • Monitor security events, network activity, and system logs for potential threats and security incidents
  • Investigate and respond to security alerts, phishing attempts, malware infections, and other cybersecurity events
  • Analyze, document, and report security incidents, including root cause analysis and remediation recommendations
  • Support threat hunting activities and vulnerability remediation initiatives
  • Participate in scheduled on-call rotations to support critical security incidents outside business hours
  • Implement, configure, maintain, and monitor security technologies including firewalls, IDS/IPS, antivirus, EDR, MDR, and content filtering solutions
  • Manage and maintain SIEM platforms such as AlienVault, QRadar, LogRhythm, Rapid7, or similar technologies
  • Perform vulnerability assessments, security reviews, and support penetration testing activities
  • Assist with patch management processes and ensure timely remediation of identified vulnerabilities
  • Develop, maintain, and implement security standards, policies, procedures, and operational runbooks
  • Prepare and distribute security advisories, patch notifications, and security communications
  • Conduct phishing simulations and support security awareness initiatives
  • Prepare security reports, assessments, and recommendations for clients and internal stakeholders
  • Collaborate with technical teams to ensure systems are deployed and maintained according to security best practices
  • Research emerging threats, vulnerabilities, and security technologies to continuously improve security operations

Success Metrics

  • Timely detection and response to security incidents
  • Reduced number of recurring security vulnerabilities and threats
  • Successful completion of vulnerability remediation and patch management activities
  • Effective management and optimization of security tools and platforms
  • Accurate and complete security documentation and reporting
  • Strong compliance with security policies, standards, and procedures
  • Positive stakeholder feedback on security assessments and recommendations

Qualifications

  • Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related field
  • Strong understanding of cybersecurity concepts, frameworks, and best practices
  • Experience working with enterprise SIEM platforms such as AlienVault, QRadar, LogRhythm, Rapid7, or similar solutions
  • Hands-on experience analyzing security logs, network traffic, and threat indicators
  • Experience with vulnerability management, security assessments, and penetration testing methodologies
  • Familiarity with Linux operating systems such as Kali Linux and Ubuntu
  • Basic scripting or automation experience using Python or similar languages
  • Understanding of TCP/IP, networking protocols, OSI model, and defense-in-depth security principles
  • Knowledge of firewalls, proxies, antivirus, EDR, MDR, content filtering, and IDS/IPS technologies
  • Ability to assess security risks and implement appropriate remediation measures
  • Strong communication, documentation, and analytical skills

Preferably But Not Required

  • CompTIA Security+ certification
  • CompTIA A+, CompTIA Network+, or other cybersecurity certifications
  • Experience with ConnectWise Manage, ConnectWise Automate, Cylance, SentinelOne, or similar platforms
  • Experience working within a Managed Service Provider (MSP) environment
  • Exposure to security operations center (SOC) processes and incident response procedures
  • Experience supporting multiple client environments and security technologies

More jobs