Information Security Officer

At Ubiquity, we live and breathe our mantra: Head, Heart, Hustle. This isn’t just a philosophy—it’s the foundation of who we are and what we do. As an Information Security Officer, you’ll embody this mantra every day, delivering exceptional service with expertise, empathy, and a drive to succeed.

The Information Security Officer is a supporting role and integral member to our InfoSec team. The ISO is an internal triage analyst who assesses security events and incidents. Monitors environments and reports analytics to management. It also plays an instrumental role supporting PCI and SOC2 audits by validating and mitigating the required controls and mitigations that are required by these frameworks.

📍 Location: Bacolod City, Philippines
⏰ Work Mode: Work From Office
💼 Role: Information Security Officer

What You'll Do:

• Lead initiatives including the research, analysis, design, testing and
  implementation of computer network security and protection technologies for
  company information and network systems and applications.
• Review and analyze computer security incident response activities and technical
  investigations of information security related incidents.
• Identify vulnerabilities and associate those to a severity rating by deriving impact
  and ease of exploit.
• Conduct security risk assessments to ensure compliance with corporate
  information security policies and adherence to best practices.
• Communicate to the line of business on the inherent risks and providing
  meaningful mitigation strategies.
• Support company-wide security awareness efforts and train information owners
  in the appropriate use of information and in the implementation of necessary
  computer security controls and/or systems.
• Collaborate and consult with peers, colleagues, and managers to resolve issues
  and achieve goals.
• Triage customer requests, apply playbook driven solutions, initiate potential
  incident investigations through assignment to support engineers and may assist
  the engineers with use web-based resources to determine if a given event is
  potentially real, or more importantly that it is benign.
• Respond to security incidents; perform forensics activities and root cause analyses.
• Continuously drive to learn new aspects of the security business.
  
  

What We're Looking For:

Top Skills:
✅Incident Analysis and Response
✅Strong networking and Systems Security skills
✅VAPT – Vulnerability Assessments and Penetration Testing

Minimum Qualifications:
✅Bachelor's degree in Computer Science or related field, or equivalent work
experience
✅Relevant work experience preferably within security information technology
✅Prior experience in Computer Incident Response team (CIRT)/Computer
Emergency Response team (CERT), or a Security Operations Center (SOC)
✅Extensive experience in network security monitoring, network packet analysis,
host, and server forensics

Desired Qualifications:
✅Prior SIEM experience – Security Information & Event Management system, log
aggregation and event notification tool experience such Splunk, Exabeam
Rapid7.
✅Knowledge or experience with other tools like ESET, Crowd strike, Carbon Black,
Cisco Umbrella.
✅CISSP, GSEC (SANS 401) certification is desirable.
✅SANS certification such as GREM, GCFA, GREM, GNFA, ENCE or related also
preferred
✅Experience in industry well-known as well as open-source Network and/ Host
forensic tools, OSINT.

Preferred Knowledge, Skills and Abilities: 
✅Strong technical skills including malware reverse engineering, memory forensics,
live response techniques, registry analysis
✅Strong networking knowledge – TCP/IP protocols, OSI model, Firewalls and
other networking devices
✅Strong case management and forensic procedural skills
✅Strong customer service skills and decision-making skills
✅Good analytical skills – ability to analyze and think out of the box when working a
security event
✅Experience with scripting languages such as Python, Perl, PowerShell
✅ Self-motivated, methodical and detail oriented

Additional useful Skills And Experience
✅Security basics
✅Malware knowledge
✅Firewalls and IDS/IPS
✅Proxy and content filtering
✅Windows and Active Directory
✅Network and Security Auditing

Ready to make an impact? 🚀 Apply now and let's grow together!