Security Analyst (Remote)

Join Our Client's 24/7 SOC Team as a Security Analyst Remote from the Philippines

Do you thrive in high-pressure environments, love hunting threats, and know your way around SIEM dashboards like the back of your hand If you're passionate about cybersecurity and ready to take on real-time incident response across multiple clients, this might be the perfect role for you.

You'll be an integral part of a 24/7 Security Operations Center (SOC), monitoring, detecting, and responding to threats across diverse client infrastructures. Using tools like Rapid7 InsightIDR and InsightVM, you'll identify and respond to phishing, malware, privilege escalations, and other security incidents. This role is hands-on, fast-paced, and ideal for someone who loves staying ahead of cyber attackers.

Key Responsibilities:

• Monitor and analyze real-time security alerts using Rapid7 InsightIDR, SIEM/SOAR tools.
• Investigate security events such as malware, phishing, lateral movement, and privilege escalation.
• Execute incident response playbooks from detection to remediation.
• Tune SIEM rules and correlation logic to reduce noise and improve visibility.
• Conduct vulnerability correlation using InsightVM and threat intel feeds.
• Document incidents with precision and deliver client-facing communications.
• Collaborate with internal NOC, Infra, and Application teams.
• Support audits (HIPAA, PCI, ISO) through evidence collection and reporting.

Must-Have Skills:

• 24+ years in cybersecurity, ideally in SOC or MSP environments.
• Proficient in Rapid7 InsightIDR and InsightVM.
• Experience with SIEM, SOAR, EDR, vulnerability scanners, and firewalls.
• Knowledge of attack techniques (MITRE ATT&CK, phishing, ransomware, etc.).
• Comfort with Windows, Linux, AWS, and Azure environments.
• Familiarity with PowerShell, Python, or Bash scripting (a plus).
• Effective written and verbal communication skills.
• Tools-savvy: ConnectWise, ServiceNow, Slack, Teams.

Nice-to-Have:

• Certifications: Security+, CySA+, CEH, Rapid7, AWS/Azure Security.
• Experience in multi-tenant SOCs and regulatory frameworks like NIST, SOC 2.
• Client-facing communication experience (RCA calls, status updates).
• Ambition to evolve into a Threat Hunter or Security Engineer role.

• Location: Remote from the Philippines (preferably Butuan / Agusan del Norte)
• Schedule: Shift-based coverage within a 24/7 SOC operation
• Employment: Full-time position
• Salary Range: USD $1,300 $1,800/month

• Work alongside elite cybersecurity professionals across global environments.
• Exposure to real-world threats and enterprise-level security tools.
• Clear career growth paths into engineering, threat hunting, and leadership.
• Contribute directly to the safety and resilience of companies worldwide.