Job Title: Security Analyst - Threat Triage L 2

Job Summary

• IT/Computers - Hardware & Networking • IT/Computers - Software
Metro Manila / NCR
Job Category:
Years of Experience
5 - 7 years
Posted On
19th Dec 2019

Job Description:

• Candidates must possess at least a Bachelor’s/College Degree, Computer Science/Information Technology, Engineering (Computer/Telecommunication), Science and Technology or equivalent.
• At least 3 year(s) of working experience in the related field is required for this position.
• Preferably supervisor /  5 Yrs. and up Experienced Employees specializing in IT/Computer – Network/System/Database Admin or equivalent.

• Full- time position(s) available.

Why IBM Security Services?

IBM Security has 10,000 clients in 133 countries, 6,000 researchers, developers, and SMEs focused on security, 3,700 security-related patents, and 36 IBM Security locations across the globe.

High-growth areas are security analytics/SIEM (10%); Threat Intelligence (10%+); Mobile Security (18%); and Cloud Security (50%)

Key Responsibilities:

The SOC Threat Triage Analyst role is part of the SOC. Candidates in this role will respond to events according to documented procedures and industry best practices. Ideal candidates should be experienced in the areas of networking, client/server technologies, and analyzing log files with the ability to identify false positive and true positive events. Candidates must have experience in Linux and Windows operating systems. Candidates in this role may also be required to follow the incident response plan and assist SOC Threat Response Analysts when necessary. Additionally, candidates with hands-on experience with SIEM administration will be preferred. Enthusiasm and interest in Information Security must be displayed.

Job Requirements:
  • Accept escalations from Monitoring and provide initial investigation of security incidents
  • Application of contextual data (criticality, device grouping, existing vulnerabilities)
  • Provide communication and escalation throughout the incident per the Security Incident Management guidelines
  • Communicates directly with data asset owners and business response plan owners during high severity incidents
  • Provides feedback to Threat Monitoring team
  • Perform analysis of log files for security incidents
  • Takes an active part in the containment of incidents, even after they are escalated

Technical Competencies
  • Knowledge of network security zones, firewall, IDS
  • Ability to contextualize data from multiple SIEM tools
  • Preference for candidates with hands-on system administration experience.
  • Knowledge of log formats for syslog, http logs, DB logs and how to gather forensics for traceability back to event
  • Knowledge of packet capture and analysis
  • Experience with log management or security information management tools
  • Ability to make information security risk determinations
  • Effective verbal and written communication skills


Security Essentials – SEC401 (GSEC certification) or equivalent


Advanced Security Essentials – SEC501 (optional GCED certification)

Advanced digital forensics and Incident Response - FOR 508 (Optional GCFA certification)

Hacker Techniques, Exploits & Incident Handling – SEC504 (optional GCIH certification)

Apply Now
About Us

Are you up for a challenge? Are you looking for your next career journey? Join us and become part of a diverse and global team of thinkers and doers. Work with exceptional, insightful, imaginative people that nurtures creativity and individuality.

Your Life at IBM
IBM is the largest technology and consulting employer in the world, serving clients in 170 countries. In this new era of Cognitive Business, we're reshaping the future of health, education, fashion, travel, green energy, and more, using groundbreaking cognitive solutions, cloud computing technology, and quantum computing.

Imagine what you can do at IBM.

IBM’s greatest invention is the IBMer. As an IBMer, you’ll collaborate with outstanding, insightful professionals in an environment that cultivates creativity, and individuality. You will be part of an innovative team that strives to make the world work better and you will also have an opportunity to help our clients visualize a future that may not yet exist. Join us as we make the most of these existing times and discover what you can make as of this moment.

About IBM Philippines
Since establishing its presence in the Philippines in 1937, IBM has evolved to be a leading cognitive solutions and cloud platform company that demonstrates the power of innovation, data and expertise to improve business and society. With 25 consecutive years of patent leadership, IBM Research is the world’s largest corporate research organization with more than 3,000 researchers in 12 labs located across 6 continents.

Our organization is comprised of the following subsidiaries:

IBM Philippines, Inc.
Leading supplier of information technology hardware, software, & services in the country.

IBM Solutions Delivery, Inc.
Provides IT expertise, delivering world-class technology services and business solutions.

IBM Business Services
Foremost provider of Business Transformation Outsourcing for HR, F&A and Supply Chain Management services.

Culture at IBM
IBM has a long-standing commitment to diversity and inclusion, recognizing the unique value and skills every individual brings to the workplace. Here, you'll get a chance to be in a diverse global team where being yourself and supporting others is part of everyday lives. We at IBM believe that innovation comes from seeking out and inspiring collaboration in all dimensions. Consciously building inclusive teams and encouraging diversity of ideas helps us make the greatest impact for our clients, our colleagues, and the world.

IBM impacts everything, everywhere. We change lives, businesses and nations, every day in every industry in every country in the world. We differentiate ourselves from our competitors by offering you to join not only a big company, but also a bigger cause.