Job Summary The Security Operations Engineer role guides information security practices for our operational infrastructures to ensure Cebu Air’s IT operations environments production, dev, and internal have adequate protections against cyberthreats, visibility into where those protections may fail, and leads the investigation and response to such incidents.
Role Functions and Responsibilities Maintains responsibility for operational security practices through the identification and evaluation of security protection measures and controls around our technical operations infrastructure Conducts security monitoring activities including advanced investigation (forensic, malware analyses, root cause analysis etc.
to examine and remediate security incidents Develops custom tools to generate security analytics and provide visibility into potential incidents Maintains responsibility for the security incident management process, and acts as lead on security incident response Responsible for reviewing threat intelligence feeds for new threats as well as working with staff to identify and resolve issues when required Provides advice in the development of security compliance controls, and assists in achieving compliance with established standards Responsible for configuring and maintaining hardware and network security infrastructure.
Job Description Manage and support security solutions and products. Assess vulnerabilities, risks and cyber security threats, and their impact on security infrastructure.
Perform security incident response and root cause analysis. Evaluate and recommend cyber security technologies and solutions Problem diagnosis and resolution of requirements analysis, testing, integrating and managing components Evaluate, test and implement software / hardware with appropriate standards e.
g. Firewalls / Data Security Qualifications & Experience At least 2 years technical experience in IT Infrastructure (Servers / Network) Degree / Diploma in Information Technology, IT Security or equivalent.
Proven experience with Windows / Linux / Unix operating systems Experience in IT security software (Firewall, VPN, SSL, Anti-
Spam, IDS / IPS etc) Strong knowledge of TCP / IP, network administration / protocols and network infrastructure Technical knowledge of security, network infrastructure and server platforms.
Understanding and knowledge of current IT security trends, threats, solutions and tools Experience in SOC environment Coding experience in at least one general-
purpose scripting language is a plus