
Cybersecurity Analyst - Hybrid, Mandaluyong City
Job Description
Req number:
R8004Employment type:
Full timeWorksite flexibility:
HybridWho we are
CAI is a global services firm with over 9,000 associates worldwide and a yearly revenue of $1.3 billion+. We have over 40 years of excellence in uniting talent and technology to power the possible for our clients, colleagues, and communities. As a privately held company, we have the freedom and focus to do what is right—whatever it takes. Our tailor-made solutions create lasting results across the public and commercial sectors, and we are trailblazers in bringing neurodiversity to the enterprise.
Job Summary
The Cybersecurity Analyst - Hybrid, Mandaluyong City is an entry-level role under the Talent Accelerator: IDIQ FIT Leaders Graduate Program designed to support the next generation of cybersecurity and IT security professionals within the Information Technology Department (ITD).Job Description
We are looking for a Cybersecurity Analyst - Hybrid, Madaluyong City requires a foundational understanding of information security concepts, willingness to learn enterprise-level practices, and the ability to support business and technical teams in implementing security measures. A successful candidate is detail-oriented, collaborative, and eager to grow within a teamwork-oriented organization. This position will be full-time and hybird set-up in Mandaluyong City from 8:00AM – 5:00PM Manila Time.
What You'll Do
Web Application Firewall (WAF) Replacement Project Support
Assist in onboarding ADB web applications and API endpoints to the new cloud-based WAF platform, including policy validation and tuning
Support day-to-day WAF monitoring, change requests, and SLA tracking, escalating findings to senior specialists
Maintain the WAF asset inventory and related documentation in SharePoint
Support project management and go-live readiness activities, including tracking of tasks, milestones, risks, and dependencies, as well as cutover planning, stakeholder communications, and post-go-live issue tracking
Assist in drafting related policies, standard operating procedures, and technical manuals to support WAF operations and knowledge transfer
Secure AI Assurance Program Support
Assist in the implementation and administering the AI security monitoring and visibility platform to support oversight of AI tool usage and data flows
Support continuous monitoring of AI agents and triage of policy exceptions against defined control rules
Help maintain AI compliance dashboards and prepare periodic assurance reports for management
Support user training, awareness, and compliance activities on responsible and secure AI use, including the development of guidance materials and tracking of user adherence to AI policies
Cyber Due Diligence Platform Modernization Support
Assist in the gap assessment of the current Cyber Risk Assessment (CRA) process against business requirements, industry standards, and best practices
Support the end-to-end market evaluation of purpose-built cyber risk assessment platforms, covering vendor research, RFI/RFP coordination, demo facilitation, proof-of-concept tracking, and the preparation of comparative scorecards and feature-fit analyses
Help gather and consolidate functional and non-functional requirements from IT Security, Procurement, Legal, and business stakeholders, and assist in preparing evaluation summaries, scorecards, and recommendation papers for management review
Continuous Learning
Complete structured onboarding and assigned cybersecurity training/certifications during the engagement
Participate in knowledge-sharing sessions, team huddles, and shadowing opportunities with senior practitioners
Other responsibilities may be asked of the person as needed
What You’ll Do
Required:
No prior professional experience required; recent graduates (within the last 2 years) are encouraged to apply
Relevant internships, capstone projects, or coursework in cybersecurity, cloud, or risk management will be considered favorably
Foundational understanding of cybersecurity concepts (confidentiality, integrity, availability; common threats and vulnerabilities; basic network and web security)
Familiarity with cloud computing concepts and at least one major cloud provider (AWS, Azure, or GCP) through coursework, internships, or self-study is acceptable
Interest in AI/emerging technologies and their security implications
Awareness of common security frameworks (e.g., ISO 27001, NIST CSF, OWASP Top 10) is a plus
Proficiency in Microsoft 365 tools (Word, Excel, PowerPoint, Teams, SharePoint)
Exposure to scripting (Python, PowerShell) or data tools (Excel, Power BI) is a plus
Preferred:
Excellent written and oral communication skills in English
Strong collaboration and teamwork abilities
Eagerness to learn, intellectual curiosity, and a growth mindset
Attention to detail, organizational skills, and ability to handle confidential information with discretion
Highly coachable, fast learner, punctual, and dedicated
Entry-level certifications such as CompTIA Security+, ISC2 Certified in Cybersecurity (CC), Microsoft SC-900, or AWS Cloud Practitioner
Physical Demands
Ability to safely and successfully perform the essential job functions
Sedentary work that involves sitting or remaining stationary most of the time with occasional need to move around the office to attend meetings, etc.
Ability to conduct repetitive tasks on a computer, utilizing a mouse, keyboard, and monitor
Reasonable accommodation statement
If you require a reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employment selection process, please direct your inquiries to [email protected] or (888) 824 – 8111.