Officer - SOC
Experience: Job Code: REQ-022030
Sagility
Quezon City
job Details
Job title
Officer - SOC
About Sagility
Sagility combines industry-leading technology and transformation-driven BPM services with decades of healthcare domain expertise to help clients draw closer to their members. The company optimizes the entire member/patient experience through service offerings for clinical, case management, member engagement, provider solutions, payment integrity, claims cost containment, and analytics. Sagility has more than 25,000 employees across 5 countries.
Responsible for the Daily Events log analysis and Security Alerts/Alarm from SIEM;
Responsible for File integrity checking (monitoring of Servers and Network devices) and Issues Tracker for Critical Events Log from the monitored Servers;
Responsible for Preparation and Analysis of the Reports: 100% compliance and monitoring for Bridgetowne, Iloilo and Alabang Sites (may still vary depending on the need) Server and Network Devices on a DAILY basis.
Provide assistance and investigations to the other groups pertaining to logs review and Security Incidents
Monitoring of closure of issues for Critical Events, Security Alerts, Notification to concerned group: zero misses and 100% SLA.
Quarterly Vulnerability Assessments (Internal and External): 100% compliance and timely closure of gaps for affected devices across all Sagility PH sites (PCI-DSS, Healthcare accounts and Critical Servers and Network Devices).
Daily and monthly review and analysis of Cisco Firepower IPS for Threat feeds.
Timely closure and notable and reported threats and possible intrusion detected by the IPS.
Quarterly Assessment for Wireless LAN and Rogue AP's and clients as well as unusual observation of Wireless devices.
Creating Adhoc analysis of unusual events and unusual user activities, or upon request by concerned Group or other Departments.
Conduct initial forensic triage for endpoint, network, cloud, and email-based incidents.
Collect, preserve, and document digital evidence following chain-of-custody standards.
Perform log correlation, timeline reconstruction, and root-cause identification.
Analyze suspicious emails, URLs, attachments, and user activity for compromise indicators.
Prepare forensic evidence packages for IR, Legal, Compliance, and client RCA requests.
Document findings with clear timelines, impact assessment, and remediation validation.
The SecOps officer will be supporting Sagility Philippines and North America.
General Safety and Security
• Protects the organization’s assets by upholding the principles of the Quality Information Security Management System (QISMS).
• Ensures confidentiality, integrity, and availability of information critical to fulfilling the organization’s business functions.
Job title:
Job Description:
DUTIES & RESPONSIBILITIES:
Responsible for the Daily Events log analysis and Security Alerts/Alarm from SIEM;
Responsible for File integrity checking (monitoring of Servers and Network devices) and Issues Tracker for Critical Events Log from the monitored Servers;
Responsible for Preparation and Analysis of the Reports: 100% compliance and monitoring for Bridgetowne, Iloilo and Alabang Sites (may still vary depending on the need) Server and Network Devices on a DAILY basis.
Provide assistance and investigations to the other groups pertaining to logs review and Security Incidents
Monitoring of closure of issues for Critical Events, Security Alerts, Notification to concerned group: zero misses and 100% SLA.
Quarterly Vulnerability Assessments (Internal and External): 100% compliance and timely closure of gaps for affected devices across all Sagility PH sites (PCI-DSS, Healthcare accounts and Critical Servers and Network Devices).
Daily and monthly review and analysis of Cisco Firepower IPS for Threat feeds.
Timely closure and notable and reported threats and possible intrusion detected by the IPS.
Quarterly Assessment for Wireless LAN and Rogue AP's and clients as well as unusual observation of Wireless devices.
Creating Adhoc analysis of unusual events and unusual user activities, or upon request by concerned Group or other Departments.
Conduct initial forensic triage for endpoint, network, cloud, and email-based incidents.
Collect, preserve, and document digital evidence following chain-of-custody standards.
Perform log correlation, timeline reconstruction, and root-cause identification.
Analyze suspicious emails, URLs, attachments, and user activity for compromise indicators.
Prepare forensic evidence packages for IR, Legal, Compliance, and client RCA requests.
Document findings with clear timelines, impact assessment, and remediation validation.
The SecOps officer will be supporting Sagility Philippines and North America.
General Safety and Security
- Protects the organization’s assets by upholding the principles of the Quality Information Security Management System (QISMS).
- Ensures confidentiality, integrity, and availability of information critical to fulfilling the organization’s business functions.
Location: