Drake's progressive client- a company in the hospitality and gaming industry that operates integrated resorts with casinos and entertainment facilities across Asia and Europe, is currently looking to hire an Assistant Manager, Threat Intelligence, Information Security to be part of their team in Paranaque City!

Job Overview

The Assistant Manager, Threat Intelligence, is responsible for overseeing the identification, analysis, and dissemination of actionable threat intelligence to support the organization's cybersecurity posture. The Assistant Manager will ensure the team effectively monitors, evaluates, and responds to emerging threats, providing critical insights to enhance the organization's defense mechanisms. This role will also work closely with the Cyber Security Operations Center (CSOC) team to contribute to incident response, threat hunting, and purple team exercises, providing critical insights to enhance security detection capabilities.

Responsibilities

• Monitor and Analyze Threats: Oversee the monitoring of open-source and restricted channels for relevant threats, vulnerabilities, and indicators of compromise.
• Threat Assessment: Evaluate the exposure and impact of identified threats through vulnerability and configuration information.
• Incident Analysis: Analyze malware, phishing campaigns, and network intrusions to identify threat actors' tactics, techniques, and procedures.
• Threat Profiling: Develop and maintain threat profiles on adversary groups, detailing their objectives, capabilities, and methods of operation.

Qualifications

• Bachelor’s degree in Computer Science, Information Technology, Information Security Management, or a related field.
• 3-5 years of experience in cybersecurity, with a focus on threat intelligence, incident response, vulnerability management, or a related area.
• Previous experience managing a team of analysts is a must.
• Working knowledge of frameworks, best practices, and industry-standard scoring models such as MITRE, CIS, CVSS, and EPSS.
• Ability to gather and integrate threat intelligence from various sources, e.g. OSINT and other paid subscriptions.
• Understanding of operating systems and platform (e.g. Windows, Linux)
• Understanding of security technologies such as intrusion detection and prevention technologies, endpoint protection and proxies and ability to interpret log data produced by these technologies (including. Windows Events, Powershell Events, WMI events, AD events)
• Solid foundation on various security tools such as Antivirus (AV), Antispam (AS), Endpoint Detection & Response (EDR), Firewalls (FW), Intrusion Detection / Prevention Systems (IDS/IPS), Data Loss Prevention (DLP), Security Information & Event Management (SIEM)

Additional information

• Salary of up to 120K per month
• Hybrid (once or twice a week WFH)
• Shift is from 9AM to 6:36PM – possibility of shifting/rotational schedule

Please refer to job description.