L1 Soc Analyst

About Theos Our mission is to empower businesses to thrive in the new digital security age by helping define and execute strategies to achieve cyber resilience. Practical steps instead of silver bullets. We are a team of experts in key security domains, including Penetration Testing, Red Teaming, Managed Detection & Response, and Digital Forensics and Incident Response.  We deliver premium security services to local and international clients in Asia, SMEs and enterprises by leveraging leading technologies and expertise that are traditionally only accessible to high end global customers, some of which are also our clients. We value true Passion for Security, Innovation in our approach to Solutions and Services, and Continuous Development of our People. Importantly, we deliver on our commitments. We are seeing tremendous traction and aim to foster a collaborative, flexible working environment to enable the delivery of high value to customers. We are passionate about service and do not hesitate to go above and beyond the call of duty when necessary to ensure that we achieve the right outcome for our Customers and our People. About the Role We are looking for Level 1 SOC Analysts to join our growing TDR\SOC Team, protecting customers from an ever-evolving threat landscape. Reporting to the L1 team lead, L1 analyst focus on identifying events of interest within customer environments, then investigating and remediating threats. They interface directly with customers to ensure the timely and effective resolution of incidents. This requires working on shifts as part of a 24 / 7 team including night, weekend, and holiday shifts. L1 analysts are technically curious and have an insatiable appetite for catching and fixing bad guys tactics and techniques. Upon joining, L1 analyst undergo an onsite mentorship program to get up to speed on technologies, platforms and processes involved in running a world class security operation center. Everyone at Theos also has the opportunity to engage in projects and services delivered by other team such as threat intelligence, technical implementations, cloud migrations, penetration testing, red teaming etc. More importantly they can grow as part of a team of highly engaged security experts. Shifts can initially be attended from Theos offices (BGC, Taguig).  After successfully passing probation period analysts will be allowed to perform remote work as long as remote location has reliable internet connection, mobile network coverage, appropriate working place. Shifts cannot be taken from public places such coffee shops, bars, shopping malls, beaches etc. Key Responsibilities Alert triaging : Alert analysis, Alert severity level classification, additional information gathering Incident analysis and investigation, interactions with POCs Executing initial incident response actions (manual or automated) Providing initial recommendations related to incident Additional information gathering and analysis based on customer\l2\l3 demands. Escalations to L2\L3\PM escalations in case of more complicated incidents requiring more advanced knowledge Compliance to Service Level Agreements (SLA) and Standard Operating Procedures (SOPs). Requirements Understanding of IT networking principles, TCP\IP stack Understanding of architecture and administration of Windows and Unix operating systems Understanding of Active Directory principles Understanding of basic cyber security concepts, threat actors and defense principles Basic technical understanding of EDR, SIEM, Proxy, Firewalls, Email Gateways, Antivirus Basic understanding of MITRE ATT&CK matrix Being resourceful, creative, having ideas, opinions and being willing to challenge conventional approaches Growth mindset Previous experience as SOC analyst is an advantage Who Are We Looking For?

Self-starters and highly motivated individuals who are hungry for growth Ability to navigate ambiguity towards a north star, keeping in mind business needs and priorities Flexible and adaptable, especially working with a close-knit team Why Join Us?  At THEOS Cyber, we believe that people are at the core of what we do. We are building one of the top cybersecurity firms in Asia by working with some of the best in the industry—or those who are driven to become the best. We work hard to create an environment where experts thrive, challenges drive growth, and work is genuinely enjoyable. What You Can Expect :

A flexible, remote work set-up Professional growth and career development Trainings & Certifications. High-end laptop Top-notch medical benefits

Work with top teams, experts and executives Supportive work culture About Your Application

Answers to the screening questions matter a lot! If you do not specify a desired pay and date available, your application will be disregarded. No visa or relocation is provided for this role.