Incident Response Specialist

At Globant, we are working to make the world a better place, one step at a time. We enhance business development and enterprise solutions to prepare them for a digital future. With a diverse and talented team present in more than 30 countries, we are strategic partners to leading global companies in their business process transformation.

We seek a  mid-level Incident Response (IR) Specialist with proven experience in handling cybersecurity incidents and conducting proactive threat-hunting activities. This role is part of a global follow the sun security operations model, ensuring 24/7 coverage for security incidents across multiple regions. This role is critical to helping our business partners evolve and adapt to consumers' personalized expectations in this new technological era.

Responsibilities:

Incident Response

• Act as a first or second responder to security incidents, coordinating triage, containment, eradication, and recovery efforts.
• Analyze, investigate, and document incidents to determine root cause, scope, and impact.
• Provide timely updates and recommendations to stakeholders during active investigations.

Proactive Security Operations

• Conduct threat-hunting activities, including reviewing logs, alerts, and telemetry for indicators of compromise.
• Perform Golden Image reviews to ensure baseline system integrity and security compliance.
• Execute system audits to identify vulnerabilities, misconfigurations, and potential exposures.
• Reduce attack surface by identifying and removing unused domains, URLs, and other unnecessary external exposures.
• Detect and mitigate risky accounts such as logged-in domain administrators and exposed service accounts.
• Query endpoints to identify insecure credential storage (e.g., plaintext passwords in configuration files).

Collaboration & Continuous Improvement

• Work closely with global IR teams to ensure seamless handoff of cases across time zones.
• Contribute to playbook development and process improvements.
• Support security awareness by sharing findings and best practices with technical teams.

What will help you succeed:

• 5 years of experience in cybersecurity operations, with at least 3 years in incident response or threat hunting.
• Strong understanding of security concepts, incident lifecycle, and attacker tactics, techniques, and procedures (TTPs).
• Experience with SIEM, EDR, and security monitoring tools.
• Familiarity with log analysis, endpoint forensics, and network traffic analysis.
• Working knowledge of operating systems (Windows, Linux, macOS) and common enterprise infrastructure.
• Ability to script or automate tasks (PowerShell, Python, Bash, etc.) is a plus.
• Strong analytical, problem-solving, and communication skills.

Preferred Qualifications

• Certifications such as GCFA, GCIA, GCIH, or similar.
• Experience working in a global or distributed SOC/IR team.
• Exposure to cloud environments (AWS, Azure, GCP) incident response.

This is a contract-based role that can be based in the Philippines  #LI-Hybrid or #LI-Remote.

Create with us digital products that people love. We will bring businesses and consumers together through AI technology and creativity, driving digital transformation to impact the world positively. 

We may use AI and machine learning technologies in our recruitment process. Globant is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, veteran status, or any other characteristic protected by applicable federal, state, or local law. Globant is also committed to providing reasonable accommodations for qualified individuals with disabilities in our job application procedures. 

If you need assistance or an accommodation due to a disability, please let your recruiter know. 

Final compensation offered is based on multiple factors such as the specific role, hiring location, as well as individual skills, experience, and qualifications. In addition to competitive salaries, we offer a comprehensive benefits package. 

Learn more about life at Globant here: Globant Experience Guide.