Talent.com
Optum
InfoSec Engineer Consultant (Security Incident Response)Optum • Metro Manila, Philippines
No longer accepting applications
InfoSec Engineer Consultant (Security Incident Response)

InfoSec Engineer Consultant (Security Incident Response)

Optum • Metro Manila, Philippines
30+ days ago
Job description

Primary Responsibilities:

  • Lead and conduct highly complex security incident investigations across endpoints (memory and disk), network traffic, and cloud environments, including Azure and Microsoft 365.
  • Perform advanced incident investigation and in‑depth log analysis by correlating data from multiple sources such as SIEM, EDR, network security devices, and cloud platforms to accurately identify scope and impact.
  • Act as the final escalation point for critical and high‑severity security incidents, providing expert guidance and decisive incident handling.
  • Conduct static and dynamic malware analysis, including reverse engineering of exploits, and analyze adversary tactics, techniques, and procedures (TTPs) to understand attacker behavior.
  • Map attacker activities and observed behaviors to industry‑recognized frameworks such as MITRE ATT&CK, NIST to ensure structured analysis and reporting.
  • Perform digital forensic analysis across endpoints (Windows, Linux, and macOS), memory, and network data using established forensic methodologies and tools to support security incident investigations.
  • Execute effective containment actions during incidents, including isolating compromised systems, blocking malicious traffic, disabling accounts, and applying emergency controls to limit spread and impact.
  • Validate that eradication activities are fully completed and ensure affected systems are securely restored to normal operations without residual risk.
  • Prepare comprehensive incident reports detailing timelines, root cause analysis, impact assessment, indicators of compromise (IOCs), and remediation actions taken.
  • Collaborate with Security and Engineering teams to automate repetitive tasks such as alert enrichment, containment workflows, response actions, and ticket creation to improve efficiency and consistency.
  • Leverage internal and external threat intelligence feeds to enrich investigations with contextual insights, including known malicious IPs, domains, threat actor profiles, and attacker methodologies.
  • Work closely with cross‑functional teams to ensure coordinated and timely execution of incident response activities.
  • Continuously enhance detection and response capabilities by recommending improvements to SIEM and EDR platforms, tuning detection rules, developing better queries, and identifying logging gaps.
  • Handle Priority 1 (P1), Priority 2 (P2) and other critical incidents with urgency, ensuring rapid response, clear stakeholder communication, and minimal business disruption.
  • Monitor and report on key performance indicators (KPIs) such as Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR) to measure and improve incident response effectiveness.


Job Qualifications

Must Have Skills:

  • 5–8 years of hands‑on experience in Major Security Incident Management, including:
  • Case management
  • War room facilitation
  • Paging / on‑call coordination
  • Security bridge management
  • Strong log analysis experience across multiple security domains, including:
  • SIEM platforms
  • Endpoint security
  • Perimeter/network security
  • Threat intelligence feeds
  • Email security solutions
  • Proven experience in Sandbox Analysis for malware and suspicious file investigation
  • Hands‑on Digital Forensics experience, including evidence collection, analysis, and reporting
  • Solid understanding and application of security frameworks, including:
  • MITRE ATT&CK
  • MITRE D3FEND
  • NIST (incident response, security controls, or related standards)
  • Practical experience with forensic tools, such as:
  • Magnet AXIOM Forensics
  • REMnux
  • X‑Ways Forensics
  • EnCase
  • Forensic Toolkit (FTK)
  • Or equivalent forensic tools


What we offer

  • Laptop/Computer Provided by the Company
  • Market Total Rewards Package
  • Retirement Plan
  • Medical Plan (HMO) from Day 1 of employment
  • Dental, Medical, and Optical Reimbursements
  • Life and Disability Insurance
  • Paid Time-Off Benefits
  • Sick Leave Conversion
  • Tuition Fee Reimbursement
  • Employee Assistance Program (EAP)
  • Annual Performance Based Merit Increases
  • Employee Recognition
  • Training and Staff Development
  • Employee Referral Program
  • Employee Volunteerism Opportunity
  • All Mandatory Statutory Benefits

Who we are

  • Optum is the health care technology and innovation company of the UnitedHealth Group enterprise along with UnitedHealthcare.
  • As part of a Fortune 5 enterprise, we are improving the health care experience of over 125 million people around the world.
  • This includes our over 25,000 employees in the Philippines. Elevate your career with a leading health care company while improving lives.

Create a job alert for this search

InfoSec Engineer Consultant (Security Incident Response) • Metro Manila, Philippines

Similar jobs

Senior Manager Information Security

PhilWeb Groupnational capital region, ph

The Information Security Senior Manager has the responsibility for managing the day-to-day operations and personnel in-charge of the development and implementation of the organization’s various inf... Show more

 • Promoted

Information System Security Engineer

Atmailquezon city, national capital region, ph

Join Atmail and Help Shape the Future of Continuous Compliance.At Atmail, we’re looking for an Information System Security Engineer to join our Cloud Platforms team and help bridge the gap between ... Show more

 • Promoted

Incident Manager

Philtech Inc.national capital region, ph

You will lead high-impact incident response efforts across a complex technical environment.You will coordinate cross-functional teams, ensure rapid service restoration, and uphold best-in-class ope... Show more

 • Promoted

Incident Manager / Situation Manager

Avensys Consultingnational capital region, ph

Advanced working expertise EIGRP routing protocols as well as TCP/IP, Multicast, LON and protocol redistribution.BGP and IS/IS would also be preferred – Should be able to configure these protocols ... Show more

 • Promoted

Incident Manager

Security Bank Corporationnational capital region, ph

IT incident resolution to minimize disruptions to business operations.This role ensures effective communication of incident status and resolutions to stakeholders while performing impact assessment... Show more

 • Promoted

Endpoint Security SME

Tata Consultancy Servicesnational capital region, ph

The Endpoint Security Specialist is responsible for delivering comprehensive endpoint protection across all managed devices by deploying, administering, and optimizing an enterprise‑grade Endpoint ... Show more

 • Promoted

Security Engineering Manager

DFI Retail Groupnational capital region, ph

Is this your next challenge in Network Security?.This role will assist the IT organization to implement on enhance network security system from Group requirements and collaborate with 1st line of r... Show more

 • Promoted

Security Engineer

Azeus Systems LimitedPasig, NCR, Philippines
Quick Apply

Involve in Red Team activities:.Perform penetration testing of Web and Mobile (iOS, Android, Windows and Mac) applications.Own the vulnerability management lifecycle from identification, remediatio... Show more

SOC Analyst/Incident Response Analyst

Our ClientsMetro Manila, Metro Manila, Philippines
Quick Apply

A growing technology services organization is looking for a SOC Analyst / Incident Response Analyst to support cybersecurity monitoring and incident validation activities during critical off-hour o... Show more

Information Security Engineer

Strategic Staffing Solutionsnational capital region, ph

STRATEGIC STAFFING SOLUTIONS (S3).Senior Information Security Engineer.Graduate of a Bachelor's degree in Information Technology, Computer Science, Computer Engineering, or any related IT or Engine... Show more

 • Promoted

Information Technology Security Engineer

Monde Nissin Corporationnational capital region, ph

As an IT Security Engineer, you will support in the design and implementation of comprehensive security strategies to protect the organization's digital structure.You'll collaborate with internal t... Show more

 • Promoted

Information Security Analyst

Satellite OfficeTaguig, Metro Manila, .PH
Quick Apply

Satellite Office partners with some of the world’s leading brands to build high-performing offshore teams based in the Philippines.Our people work directly with international clients in roles that ... Show more

Cybersecurity Incident Response Manager

Smart Communications, Inc.national capital region, ph

Lead the development, communication, and implementation of strategies and programs for.Cyber Security Incident Response, Incident Investigation, and Threat Intelligence/Hunting teams.Ensure effecti... Show more

 • Promoted

SYSTEMS AND MONITORING ENGINEERING LEAD

Cobden & Carter InternationalMakati City, Metro Manila, Philippines
Quick Apply

SYSTEMS AND MONITORING ENGINEERING LEAD.The IO Engineering Supervisor – Infrastructure Operations & Monitoring leads a team of L1.L2 infrastructure analysts responsible for 24x7 monitoring, que... Show more

Incident Engineer (NOC)

PlayneticMetro Manila, Metro Manila, PH
Quick Apply

Playnetic is a fast-growing iGaming studio focused on building high-quality, engaging casino games for global markets.Our mission is to combine technical excellence with creative innovation to deli... Show more

Senior Consultant – Digital Forensics & Incident Response (DFIR)

Our ClientsTaguig, Metro Manila, Philippines, Metro Manila, Philippines
Quick Apply

The Senior Consultant – DFIR plays a key role in delivering cybersecurity incident response and forensic investigation services.This position involves working closely with cross-functional security... Show more

Incident Response Specialist – Global Cyber Security Operations

Our ClientsTaguig, Metro Manila, Philippines, Metro Manila, Philippines
Quick Apply

A leading organization within the insurance sector is seeking an experienced Incident Response Specialist to join its Global Cyber Security Operations function.This role plays a critical part in de... Show more

Information Technology Security Engineer

Tata Consultancy Servicesnational capital region, ph

Ensure IT Risk Strategy, Risk Appetite and action plans are formulated/ implemented to meet AXA Group and NIST IT requirements/expectations which includes formulating frameworks for Technology Risk... Show more

 • Promoted

Information Security Manager

Data Analytics Ventures, Inc. | Go Rewardsnational capital region, ph

The Information Security Manager is responsible for defining, implementing, and operating the information security and risk management framework for the company.This role ensures the confidentialit... Show more

 • Promoted

Senior Information Security Manager for Information Security Group (ISG)

MicroSourcingMetro Manila, Philippines
Quick Apply

Discover your 100% YOU with MicroSourcing!.Senior Information Security Manager for Information Security Group (ISG).Enjoy above-market compensation, healthcare coverage on day one, plus one or more... Show more