BUSINESS SUMMARY
ABS-CBN is considered one of the country’s leading media and entertainment companies, with service offerings across the different platforms of media, servicing a wide array of customer segments.
As an organization, ABS-CBN affirms its mission of being in the service of the Filipino and all of its stakeholders worldwide. The company is driven to pioneer, innovate and adapt as it continues to provide information, news and entertainment that connects Filipinos with one another and with their community - wherever they may be. ABS-CBN is firmly committed to pursuing excellence.
Prior to the shutdown of its broadcast operations in 2020, ABS-CBN was the largest television network in the Philippines. As a radio broadcast company, it operated 22 radio stations including anchor radio stations in Mega Manila, DZMM and DWRR, in the AM and FM bands, respectively.
The company delivers television programming outside of the Philippines to over 3 million viewers in North America, the Middle East, Europe, Japan, Australia, Canada, and other countries in Asia, through the internet and the Company’s global distribution platform, TFC, using DTH satellite service, cable television channels, IPTV, mobile applications and video streaming services. Its offerings are further complemented by subsidiaries focused on other multimedia services such as film production, music recording, telecommunications, and magazine and book publishing.
RESPONSIBILITIES
The Lead, Security Operations Center is responsible for managing the SOC's operations, ensuring continuous security monitoring, incident response, digital forensics, and threat intelligence integration. This role involves leading a team of cybersecurity analysts, coordinating responses to security incidents, and enhancing the organization's security posture. The SOC Lead ensures that the organization is prepared to detect, analyze, and respond to cyber threats effectively.
- SOC Operations Management
- Oversee the daily operations of the SOC, ensuring 24/7 monitoring and timely response to security events.
- Develop and maintain SOC processes, procedures, and playbooks to ensure efficient operations.
- Ensure that the SOC team is equipped with the necessary tools, technologies, and resources.
- Incident Response Coordination
- Lead and coordinate the organization's incident response activities, ensuring swift identification, containment, eradication, and recovery from security incidents.
- Develop, implement, and regularly test incident response plans and playbooks.
- Provide timely incident reporting and escalation to the InfoSec Head and relevant stakeholders.
- Digital Forensics and Investigation
- Oversee digital forensic investigations to support incident response and legal/regulatory requirements.
- Ensure proper collection, preservation, and analysis of digital evidence in line with legal standards.
- Deliver detailed forensic reports and recommend security improvements based on investigation findings.
- Threat Intelligence Integration
- Integrate threat intelligence into SOC operations to enhance detection and response capabilities.
- Monitor and analyze threat intelligence feeds to anticipate and mitigate potential threats.
- Establish and maintain relationships with external threat intelligence providers and industry peers.
- Security Monitoring and Analysis
- Ensure continuous monitoring of networks, systems, and applications for signs of suspicious activity.
- Lead the configuration and optimization of security monitoring tools, including SIEM/SOAR systems and IDS/IPS.
- Oversee the analysis of security alerts and events to identify and assess potential threats.
- Team Leadership and Development
- Manage and mentor a team of cybersecurity analysts, providing guidance, training, and performance evaluations.
- Foster a collaborative and high-performance culture within the SOC team.
- Identify skill gaps within the team and implement training and development initiatives.
- Collaboration and Communication
- Collaborate with technology groups, network, and other departments to ensure alignment of SOC operations with business objectives.
- Communicate SOC activities, incident status, and security risks to the InfoSec Head and other senior management.
- Coordinate with external partners, including law enforcement and third-party vendors, as necessary.
- Continuous Improvement
- Continuously evaluate and improve SOC processes, tools, and technologies to enhance the organization's security posture.
- Conduct regular SOC exercises and simulations to test and refine incident response capabilities.
- Stay informed of the latest cybersecurity trends, threats, and technologies to ensure the SOC remains effective and up-to-date.
- Compliance and Reporting
- Ensure SOC activities comply with relevant regulations, standards, and policies.
- Maintain detailed records of security incidents, investigations, and responses.
- Provide regular reports to the InfoSec Head on SOC performance, incidents, and overall security posture.
- Crisis Management
- Act as the primary point of contact for security-related crises, ensuring a coordinated and effective response.
- Support broader organizational crisis management efforts during major security incidents.
- Implement lessons learned from past incidents to strengthen future response strategies.
- Other Roles and Responsibilities that may be assigned from time to time
REQUIREMENTS
- Bachelor’s degree in Information Security, Computer Science, or a related field; Cyber/InfoSec Certified preferred.
- At least 5 years of experience in SOC operations, incident response, digital forensics, and threat intelligence.
- 2-3 years of experience in security monitoring tools, incident response frameworks, and threat intelligence platforms.
- 1-2 years of proven experience leading and managing a team of cybersecurity analysts.
- Excellent problem-solving, analytical, and decision-making skills.
- Strong communication and leadership abilities
Preference will be given to candidates who APPLY ONLINE.