Benefits
- 15% Night differential
- 20 Paid Time Off (PTO) per year
- Annual Appraisal
- Annual Incentive
- Hybrid Work Arrangement
- HMO with FREE dependents
- Group life insurance
QUALIFICATIONS
- At least three years of vulnerability management and endpoint management experience
- Relevant industry recognized certifications (CISSP, CEH, GIAC, Security+, etc.)
- Amenable to be on a hybrid setup
- Okay to work in BGC, Taguig
- Willing to be on a Monday to Friday 9:00 pm to 6:00 am schedule
DUTIES AND RESPONSIBILITIES
Endpoint Security Administration
- Provide operational management and administration for endpoint security tools, including but not limited to Antivirus/antimalware, endpoint detection and response, and device encryption.
- Support change management tasking relative to the security policies associated with endpoint security solutions.
- Evaluate and approve endpoint and encryption security exception requests to determine legitimacy and completeness of requests prior to escalation to management.
- Review endpoint security alerts to determine true or false positives based on industry standards.
- Review Threat Reports generated from Endpoint security tools and provide recommendations and plans for appropriate resolutions.
- Conduct reviews of security and third party patch releases and provide approvals for deployment of patches.
- Conduct security operating reporting for the endpoint detection and response tool.
- Provide Service Matter Expertise (SME) support to MSSP for guidance and approvals for endpoint support actions as needed.
- Provide SME support to endpoint security projects, providing input, recommendations, guidance and directives to the solutioning of new products, maturity and upgrades of existing products, or guidance on appropriate configurations and execution of endpoint related projects.
- Review and approve access request for Cybereason Defender and Infinity Account Provisioning.
- Provide oversight and management of the email security platform alerts and responses.
- Review external security scores from Bitsight and implement corrective actions as needed.
Vulnerability Assessment Administration
- Perform scheduled security vulnerability assessments across global applications and infrastructure.
- Manage, coordinate, and track vulnerabilities from discovery, triage, remediation, and validation.
- Coordinate, schedule, and manage the engagement process (with internal stakeholders and third-party vendors) for vulnerability remediation activities.
- Formally document and establish well-defined processes, procedures, remediation and mitigation strategies, and lessons learned.
- Manage vulnerability related tickets to ensure issues are remediated within designated timelines.
- Provide vulnerability mitigation strategies and meaningful vulnerability metrics.
- Support the maintenance and operations of vulnerability assessment infrastructure through refresh initiatives and annual planning.
- Report on findings and respond to requests and known vulnerabilities as well as delivering ad-hoc vulnerability scans on request.
- Coordinate emergency vulnerability patching, including remediation efforts.
- Conduct research and provide feedback to leadership and Cybersecurity team members of the recommended actions for vulnerability scan findings.
- Provide support of maintenance and operations to the vulnerability assessment toolsets.
- Provide support to internal processes to ensure compliance with the Payment Card Industry (PCI) standard.
Incident Response Support
- Provide investigation support and incident escalation for the email security platform (Proofpoint).
- Execute incident escalations and support for Endpoint security tools.
- Conduct incident request handling end-to-end for endpoint security tools for USPI.
