Job Description

Security Incident Response: 

● Monitor and analyze security logs, events, and incidents to detect and respond to potential threats. 

● Conduct forensic investigations in case of security breaches.

● Manage and lead a team of security analysts and incident responders to ensure the timely and effective detection, investigation and resolution of security incidents and events

● Develop and maintain a security incident and event management program, including the creation of playbooks, procedures, and workflows

● Collaborate with other departments and stakeholders to ensure that security incident and event management is integrated into all aspects of the organization’s operations.

Security Policy and Compliance: 

● Develop and enforce security policies, standards, and procedures to ensure compliance with data protection laws and regulations.

● Develop and implement technology security incident and event management policies, procedures and best practices to ensure the timely and effective response to security incidents and events

● Collaborate with internal teams to implement security controls and best practices. 

● Ensure compliance with relevant security and data protection regulations, such as GDPR, CCPA and HIPAA


Security Awareness and Training: 

● Conduct security awareness training for employees to promote a culture of cybersecurity. 

As Required:

Security Infrastructure and Solutions: 

● Deploy and manage security infrastructure, including firewalls, intrusion detection systems, and encryption tools. ● Configure and maintain security software and tools for threat detection and prevention. 

Research and Innovation: 

● Stay updated with the latest cybersecurity trends, tools, and technologies. 

● Recommend and implement innovative security solutions to enhance the organization's security posture.

Vulnerability Management: 

● Identify and assess security vulnerabilities through regular security assessments and penetration testing. 

● Implement patches and updates to address vulnerabilities promptly. 


  • Professional certifications such as CISSP, CISM, or CISA are highly desirable.
  • Proven experience (5+ years) in a cybersecurity engineering role or similar position. 
  • Strong knowledge of cybersecurity principles, practices, and technologies. 
  • Hands-on experience with security tools, such as firewalls, IDS/IPS, antivirus, SIEM, etc. 
  • Excellent problem-solving and analytical skills. 
  • Strong communication and collaboration abilities.

Go Beyond Banking with CIMB Bank

Download the all-new CIMB Bank PH app and enjoy an enhanced digital banking experience that's fast, easy, and more convenient than ever!