IT Security Analyst - Hybrid

Job Locations PH-Cavite
Posted Date 1 month ago(1/3/2023 1:15 PM)
Information Technology



IT Security Analyst - Hybrid




Position Summary


IT Security Analyst at Appen will plan, implement, monitor, and manage IT security operational measures to protect the organization's data, systems, and computer networks from cyber-attacks. This position will also help to develop organization-wide best practices for IT security. He/She will monitor computer networks for security issues, install security software and document all security issues or breaches you find.


Flexible Working Hours on a rotational basis: 7 am to 4 pm PH time and  11 am to 8 pm PH time




  • Oversee the implementation, administration, and operation of multiple endpoint security technologies such as but not limited to Sophos, CrowdStrike, Tenable and SIEM
  • Perform health check of Endpoint protection and SIEM tools, update with latest signatures and maintain the minimum hygiene of IT systems
  • Performs vulnerability discovery and validation using in-house tools, analyzes incoming vulnerability reports to determine technical validity and merit
  • Administration of the Data Loss Prevention (DLP) environments and monitoring and responding to the alerts that generate from the tool.
  • Work with the security team to perform tests and uncover network vulnerabilities. Fix detected vulnerabilities to maintain a high-security standard.
  • Responsible for suggesting configuration settings for firewalls, Web gateway, Messaging, and data encryption programs, to help protect the company’s data and sensitive information.
  • Investigate security breaches and other cyber security incidents.
  • Carry out regular tests to simulate attacks so they can identify areas where the company is vulnerable and ways in which its systems might be exploited by hackers and viruses.
  • Prepare and create regular reports to document any process changes, improvements made, and security breaches that caused damage to the company.
  • Monitor and analyze the logs, help in implementing SIEM and reduce false positives
  • Monitor and Manage data breaches notifications and identified risks using UpGuard.
  • Handle Security related tickets in SolarWinds (Samanage) such as admin rights requests, USB access etc.
  • Provide support in IT Security related projects like Secure configuration and application authorisation to name a few.
  • Acting as a median between IT Sys Admins and service desk for any IT Security-related tasks
  • Participating in the change management process
  • Troubleshooting all network and security issues and incidents
  • Participate in the resolution of the issues found in penetration testing results.



Required Knowledge, Skills and Abilities


  • Hands on experience with any or all the following technologies: Endpoint Detection & Response (EDR), Host-based antivirus, Network malware detonation/sandboxing, Full Packet Capture tools, Intrusion Detection/Prevention Systems (IPS), Security Orchestration, Automation & Response (SOAR) tools. Example: like Crowdstrike, CarbonBlack and Sophos AV and UTM
  • Conducts technical analysis against impacted systems to determine impact, scope, and recovery from active and potential cyber incidents.
  • Hands-onon experience in implementation, and support of DLP and SIEM tools like Microsoft Sentinel, MS Defender, Splunk, ArcSight, QRadar (Indexers, Forwarders, Search-Heads Setup etc.) 
  • Leverages basic Forensics tools, techniques, and capacities to support Cyber Incident Response activities.
  • Documents results of cyber threat analysis and subsequent remediation and recovery in an effective and consistent manner.
  • Knowledge of vulnerability management including the tools expertise like Nessus Tenable, Qualys etc. (scanning, assessment, remediation, communications etc.)
  • Experience on Unix Access Control Lists (ACLs), Microsoft Active Directory Group Policy and ACLs and Amazon Web Services (AWS) Directory Services.
  • Ability to understand key security controls and how they factor into assessing overall security risk at an Enterprise level.
  • Effective at communicating with various levels of the organization (e.g., technical/non-technical verbal & written communication abilities In English)
  • Excellent communication skills including an ability to present information clearly and concisely in writing or verbally to a wide audience including clients and managers; effectively uses active listening skills
  • Independent, motivated self-starter who can establish a course of action for self and others while driving initiatives to completion
  • Proven analytical skills including the ability to proactively identify problems, gather information and set a course of action.
  • Takes personal responsibility for continuous learning



Qualifications and Experience


  • A bachelor’s degree in a relevant field of study, preferred (i.e.: Computer Science)
  • Around 6 years of IT experience, with 2-4 years in the relevant information security role
  • Holds or working towards at least one of the relevant certifications, including widely recognized security or audit-related certifications such as CompTIA Security+, SANS-GIAC, CISSP, CCSP, CEH or CIAM.
  • Basic Knowledge on Role-based Access Control (RBAC), Mandatory Access Control (MAC), Discretionary Access Control (DAC)
  • IT Service Management certification – desirable





About Appen


Appen collects and labels images, text, speech, audio, video, and other data used to build and continuously improve the world’s most innovative artificial intelligence systems. Our expertise includes having a global crowd of over one million skilled contractors who speak over 180 languages and dialects, in over 70,000 locations and 130 countries, and the industry’s most advanced AI-assisted data annotation platform. Our reliable training data gives leaders in technology, automotive, financial services, retail, healthcare, and governments the confidence to deploy world-class AI products. At Appen, we value performance, honesty, humility, and grit.


We are an equal opportunity employer and value diversity at our company. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.





Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed