Security Analyst – Tier 3

Please login or register as jobseeker to apply for this job.

: TYPE OF WORK

Full Time

: SALARY

Php150,000/month

: HOURS PER WEEK

40

: DATE UPDATED

Dec 18, 2025

JOB OVERVIEW

About AlphaRidge

AlphaRidge delivers managed cybersecurity, IT operations, and compliance-driven resilience for clients in sectors where security maturity and uptime are mission-critical. Our Security Operations Center combines proactive threat detection, response, and governance to deliver measurable resilience and audit readiness.

We are seeking an experienced Tier 3 Threat Hunter to join our SOC team. This position focuses on proactive detection, hypothesis-driven hunting, and continuous improvement of detection engineering capabilities.

Role

As a Tier 3 Threat Hunter, you will proactively search for malicious activity that evades traditional detection mechanisms. You will leverage telemetry, threat intelligence, and behavioral analytics to uncover stealthy threats and design new detections that enhance AlphaRidge’s detection posture.

Responsibilities

• Conduct proactive threat hunts across endpoint, network, identity, and cloud telemetry.
• Develop hypotheses and use adversarial simulation to validate detection coverage.
• Build and tune analytic rules and hunting queries to identify suspicious behavior.
• Investigate complex i ---------- to identify root cause and long-term mitigation.
• Collaborate with the SOC architect to optimize automation and enrichment workflows.
• Mentor Tier 1 and Tier 2 analysts to elevate investigative rigor.
• Contribute to continuous improvement of SOC processes and maturity.

Qualifications

• 4–6 years of experience in threat hunting, DFIR, or SOC operations.
• Advanced understanding of attacker TTPs, persistence techniques, and evasion methods.
• Proficiency in log analysis, detection engineering, and SIEM content development.
• Excellent problem-solving skills and ability to translate technical findings into actionable intelligence.

Preferred Skills/Certifications

• Experience with leading SIEM and EDR platforms (e.g., Sentinel, Defender, CrowdStrike, Exabeam).
• Certifications such as SC-100, GCFA, or GCTI preferred.
• Familiarity with threat intelligence enrichment, IOC correlation, and purple-team collaboration.
• Scripting knowledge (PowerShell, Python) for automation and data parsing.

SKILL REQUIREMENT

Security - Microsoft Defender for Cloud Security - Microsoft Sentinel

SHARE THIS POST

Job Post	Reporter	Rank	Reason	Date

BENCHMARKS

Loading Time: Base Classes	0.0010
Controller Execution Time ( Jobseekers / Job )	0.0264
Total Execution Time	0.0282

GET DATA

No GET data exists

MEMORY USAGE

1,496,768 bytes

POST DATA

No POST data exists

URI STRING

jobseekers/job/Security-Analyst-Tier-3-1516957

CLASS/METHOD

jobseekers/job

DATABASE: onlinejobs (Jobseekers:$db) QUERIES: 13 (0.0113 seconds) (Hide)

0.0003	`SELECT * FROM exrates WHERE rate_name = 'USD-PHP'`
0.0006	SELECT * FROM `employer_jobs` WHERE `job_id` = 1516957 LIMIT 1
0.0004	SELECT * FROM `employers` WHERE `employer_id` = 700041 LIMIT 1
0.0009	SELECT COUNT(*) AS `numrows` FROM `t_thread` `t` LEFT JOIN `t_thread_misc` `misc` ON `t`.`id` = `misc`.`thread_id` WHERE `t`.`job_id` = 1516957 AND `misc`.`id` IS NULL
0.0005	SELECT e.business_name, e.logo, e.website, e.rebill_date, e.date_added member_date, hits, DATEDIFF('2026-04-20',ej.date_added) duration_days, DATEDIFF('2026-04-20',e.rebill_date) duration_rebill, ej.*, e.deactivate FROM employers e, employer_jobs ej WHERE e.employer_id = ej.employer_id AND ((e.user_level >= '500' AND ej.date_added <= e.rebill_date) OR e.employer_id = '' OR (ej.date_approved <> '2000-01-01' and DATEDIFF('2026-04-20',ej.date_added) <= 14 )) AND e.deactivate != 1 AND ej.deleted = 0 AND job_id = '1516957'
0.0020	SELECT * FROM `employer_jobs_skills` `ejs` LEFT JOIN `skills_categories` `sc` ON `ejs`.`skill_id` = `sc`.`id` WHERE `job_id` = 1516957
0.0019	UPDATE employer_jobs SET hit_counts = '*Nov-19-2025=86Nov-20-2025=38Nov-21-2025=22Nov-22-2025=3Nov-23-2025=11Nov-24-2025=21Nov-25-2025=20Nov-26-2025=7Nov-27-2025=9Nov-28-2025=15Nov-29-2025=9Nov-30-2025=4Dec-01-2025=12Dec-02-2025=14Dec-03-2025=2Dec-04-2025=24Dec-05-2025=11Dec-06-2025=8Dec-07-2025=9Dec-08-2025=6Dec-09-2025=9Dec-10-2025=4Dec-11-2025=4Dec-12-2025=7Dec-13-2025=6Dec-14-2025=2Dec-16-2025=2Dec-18-2025=46Dec-19-2025=53Dec-20-2025=7Dec-21-2025=10Dec-22-2025=11Dec-23-2025=10Dec-24-2025=7Dec-25-2025=4Dec-26-2025=14Dec-27-2025=5Dec-28-2025=7Dec-29-2025=14Dec-30-2025=3Dec-31-2025=1Jan-01-2026=6Jan-02-2026=5Jan-03-2026=2Jan-04-2026=7Jan-05-2026=10Jan-06-2026=11Jan-07-2026=8Jan-08-2026=10Jan-09-2026=15Jan-10-2026=8Jan-11-2026=3Jan-12-2026=2Jan-13-2026=1Jan-14-2026=2Jan-15-2026=9Jan-16-2026=5Jan-17-2026=5Jan-18-2026=4Jan-19-2026=14Jan-20-2026=1Jan-21-2026=7Jan-22-2026=6Jan-23-2026=2Jan-24-2026=6Jan-26-2026=10Jan-27-2026=6Jan-28-2026=3Jan-29-2026=5Jan-30-2026=3Jan-31-2026=2Feb-01-2026=1Feb-02-2026=6Feb-03-2026=5Feb-04-2026=2Feb-05-2026=3Feb-06-2026=3Feb-07-2026=4Feb-08-2026=8Feb-09-2026=5Feb-10-2026=8Feb-11-2026=6Feb-12-2026=3Feb-13-2026=2Feb-14-2026=3Feb-15-2026=1Feb-16-2026=1Feb-17-2026=2Feb-18-2026=9Feb-19-2026=4Feb-20-2026=2Feb-21-2026=3Feb-22-2026=2Feb-23-2026=5Feb-24-2026=7Feb-25-2026=5Feb-26-2026=3Feb-27-2026=2Feb-28-2026=1Mar-02-2026=2Mar-03-2026=5Mar-04-2026=1Mar-05-2026=1Mar-06-2026=2Mar-07-2026=1Mar-08-2026=2Mar-09-2026=6Mar-10-2026=2Mar-11-2026=6Mar-12-2026=3Mar-13-2026=1Mar-14-2026=2Mar-15-2026=2Mar-16-2026=1Mar-17-2026=2Mar-18-2026=1Mar-19-2026=3Mar-20-2026=3Mar-21-2026=2Mar-23-2026=1Mar-24-2026=3Mar-25-2026=2Mar-26-2026=7Mar-27-2026=4Mar-28-2026=2Mar-29-2026=2Mar-30-2026=2Apr-03-2026=3Apr-04-2026=1Apr-05-2026=1Apr-06-2026=4Apr-07-2026=1Apr-08-2026=3Apr-09-2026=3Apr-10-2026=3Apr-11-2026=1Apr-12-2026=1Apr-13-2026=1Apr-14-2026=1Apr-15-2026=5**Apr-20-2026=1' WHERE job_id= '1516957'
0.0006	`UPDATE employer_jobs SET monthly_hits = '*Nov-2025=245Dec-2025=312Jan-2026=178Feb-2026=106Mar-2026=71*Apr-2026=29' WHERE job_id= '1516957'`
0.0010	`SELECT date_sent FROM jobseeker_sent_emails WHERE jobseeker_id = '' AND job_id = '1516957' AND status LIKE 'sent%' ORDER BY id DESC`
0.0003	SELECT * FROM `employer_jobs_skills` `ejs` LEFT JOIN `skills_categories` `sc` ON `ejs`.`skill_id` = `sc`.`id` WHERE `job_id` = 1516957
0.0023	SELECT COUNT(*) AS `numrows` FROM `employer_jobs` WHERE `employer_id` = '700041' AND `date_added` >= '2022-06-08'
0.0003	`select * from teasers`
0.0002	`SELECT * FROM skill_categories WHERE skill_cat_id=''`

HTTP HEADERS (Show)

SESSION DATA (Show)

__ci_last_regenerate	1776638871
last_page	https://v1.stage.onlinejobs.ph/jobseekers/job/Security-Analyst-Tier-3-1516957
csrf-token	beed1366d4d20245efa8b159a6fbc7e6

CONFIG VARIABLES (Show)

base_url	https://v1.stage.onlinejobs.ph
log_threshold	2
enable_profiler
index_page
uri_protocol	PATH_INFO
url_suffix
language	english
charset	UTF-8
enable_hooks	1
subclass_prefix	MY_
composer_autoload	vendor/autoload.php
permitted_uri_chars	a-z 0-9~%.:_\=\-\+\@?\&
enable_query_strings
controller_trigger	c
function_trigger	m
directory_trigger	d
allow_get_array	1
log_path
log_file_extension
log_file_permissions	420
log_date_format	Y-m-d H:i:s
error_views_path
cache_path
cache_query_string
encryption_key	OdBUArjiWg9I7u7bvAwQ7Fu35VB1kzga
sess_driver	files
sess_cookie_name	ci_session
sess_expiration	2678400
sess_save_path
sess_match_ip
sess_time_to_update	300
sess_regenerate_destroy
cookie_prefix
cookie_domain
cookie_path	/
cookie_secure
cookie_httponly
standardize_newlines
global_xss_filtering	1
csrf_protection
csrf_token_name	csrf_test_name
csrf_cookie_name	csrf_cookie_name
csrf_expire	7200
csrf_regenerate	1
csrf_exclude_uris	Array ( )
compress_output
time_reference	local
rewrite_short_tags
proxy_ips
ojadmin	JpjZkQN5A8l@^L
salt	+UFjSAT49tPZLtmU2CIG2FYN7pRhgsWyLHgSyQa6k3I=
queue_enabled
twilio	Array ( [sid] => AC00c0594045c6eef9407e8fff01f3d467 [token] => f0bfc0b73444a077894a43f5f75e6d41 [length] => 6 [from] => +639221200200 [code_expiry_seconds] => 14400 )
maintenance	Array ( [admin] => Array ( [verification] => ) [announcement_bar] => Array ( [show_slow_issue_message] => ) )
trustpilot	Array ( [to_email] => onlinejobs.ph+3d844ebf71@invite.trustpilot.com )
services	Array ( [google_tag_manager] => Array ( [id] => GTM-T5CQMS6P ) [chatgpt] => Array ( [secret] => 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 ) [claude] => Array ( [secret] => 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 ) )
v2_url	https://v2.stage.app.onlinejobs.ph
replacemyself_secret_key	Kk1WpgTMkc4wBQOqC5rqCssdLhACKrsJeTtO1ywUkT4=
app	Array ( [app] => Array ( [command] => Array ( [map] => Array ( [OnlineJobs\Mailer\Command\SendEmailCommand] => OnlineJobs\Mailer\Handler\SendEmailHandler [OnlineJobs\Mail\Command\SendEmailCommand] => OnlineJobs\Mail\Handler\SendEmailHandler [OnlineJobs\Mail\Command\QueueEmailPendingCommand] => OnlineJobs\Mail\Handler\QueueEmailPendingHandler [OnlineJobs\Mail\Command\QueueJobEmailPendingCommand] => OnlineJobs\Mail\Handler\QueueJobEmailPendingHandler [OnlineJobs\Mail\Command\QueueUnapprovedEmailCommand] => OnlineJobs\Mail\Handler\QueueUnapprovedEmailHandler [OnlineJobs\Mail\Command\ProcessEmailQueueCommand] => OnlineJobs\Mail\Handler\ProcessEmailQueueHandler [OnlineJobs\Mail\Command\PutJobseekerEmailOnHoldCommand] => OnlineJobs\Mail\Handler\PutJobseekerEmailOnHoldHandler [OnlineJobs\Purchase\Command\RealEstateVaCourseCommand] => OnlineJobs\Purchase\Handler\RealEstateVaCourseHandler [OnlineJobs\Test\Command\HelloCommand] => OnlineJobs\Test\Handler\HelloHandler ) [middleware] => Array ( ) ) [providers] => Array ( [0] => OnlineJobs\Bus\BusServiceProvider [1] => OnlineJobs\Database\DbServiceProvider [2] => OnlineJobs\Mailer\MailerServiceProvider [3] => OnlineJobs\Support\SupportServiceProvider [4] => OnlineJobs\Employer\ServiceProvider [5] => OnlineJobs\Jobseeker\ServiceProvider [6] => OnlineJobs\Mail\ServiceProvider [7] => OnlineJobs\Postal\ServiceProvider [8] => OnlineJobs\Queue\ServiceProvider [9] => OnlineJobs\Courier\ServiceProvider [10] => OnlineJobs\Job\ServiceProvider [11] => OnlineJobs\Purchase\ServiceProvider ) ) )
meta	Array ( [facebook] => Array ( [input] => 1 [connect] => 2 [timezone] => 3 [url] => 30 [id] => 31 [photo] => 32 [name] => 33 [email] => 34 [review] => 35 ) [trust] => Array ( [government_id] => 4 [utility_bill] => 5 [selfie_photo] => 6 [profile_picture] => 7 [phone_number] => 8 [facebook] => 9 ) [verify] => Array ( [profile_picture] => 10 [government_id] => 11 [selfie_photo] => 12 [utility_bill] => 13 [address] => 14 [name] => 15 [reviewed] => 16 [government_group] => 28 [address_group] => 29 [mobile] => 38 ) [address] => Array ( [complete] => 17 [room_unit_no] => 20 [house_no] => 21 [street] => 22 [subdivision] => 23 [barangay] => 24 [city] => 25 [province] => 26 [postcode] => 27 ) [reviewed] => Array ( [similar_names] => 1 ) [name] => 18 [phone] => 19 [sms_verification_code] => 36 [resend_verification_code] => 37 [address_read] => 39 [first_name] => 100 [middle_name] => 101 [last_name] => 102 [edit] => Array ( [government_id_group] => 40 [address_group] => 41 [mobile_group] => 42 ) [salary_re_entry] => 103 [id_proof_recalibrate] => 104 [email] => 44 [mobile_verification_type] => 45 )
honeypot	Array ( [name_field] => my_name [enabled] => 1 )

HTTP_ACCEPT	/
HTTP_USER_AGENT	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
HTTP_CONNECTION	Upgrade
SERVER_PORT	80
SERVER_NAME	v1.stage.onlinejobs.ph
REMOTE_ADDR	127.0.0.1
SERVER_SOFTWARE	Apache/2.4.58 (Ubuntu)
HTTP_ACCEPT_LANGUAGE
SCRIPT_NAME	/index.php
REQUEST_METHOD	GET
HTTP_HOST
REMOTE_HOST
CONTENT_TYPE
SERVER_PROTOCOL	HTTP/1.1
QUERY_STRING
HTTP_ACCEPT_ENCODING	gzip, br, zstd, deflate
HTTP_X_FORWARDED_FOR	216.73.217.103
HTTP_DNT

Security Analyst – Tier 3

Please login or register as jobseeker to apply for this job.

TYPE OF WORK

SALARY

HOURS PER WEEK

DATE UPDATED

Why is this blurred?