Home › Companies › Blackpanda › Junior Incident Responder, Philippines
Junior Incident Responder, Philippines
Blackpanda · Active · BambooHR
Job facts
| Field | Value |
|---|---|
| Company | Blackpanda |
| Title | Junior Incident Responder, Philippines |
| Normalized title | - |
| Department / team | Response |
| Location | Manila, Manila, Philippines |
| Work model | - |
| Employment type | Full Time |
| Salary | - |
| Status | active |
| ATS provider | BambooHR |
| Posted / first seen | 2026-05-29 / 2026-05-30 |
| Changed / last seen | 2026-05-30 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Blackpanda. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through BambooHR. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Manila. | Open |
| Department jobs | Active postings in Response. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Blackpanda |
| Source | 167ef10f-b127-4b62-b9d2-8ec3f2718936 |
| ATS provider | BambooHR |
Description
About Blackpanda
Blackpanda is a Lloyd's of London–accredited insurance coverholder and Asia's leading local cyber incident response firm, delivering end-to-end digital emergency support across the region. We are pioneering the A2I (Assurance-to-Insurance) model in cybersecurity — uniting preparation, response, and insurance into a seamless pathway that minimizes financial and operational impact from cyber attack.
Through expert consulting services, response assurance subscriptions, and innovative cyber insurance, we help organisations get ready, respond, and recover from cyber attacks — all delivered by local specialists working in concert. Our mission is clear: to bring complete cyber peace of mind to every organisation in Asia, from the first moment of breach through full recovery and beyond.
How We Work
Blackpanda is a tech-enabled services team. We invest heavily in AI and are constantly pushing to do better, faster, and at scale. You are given freedom to use the approved tools in the team, but you are to take ownership of outcomes. We prefer smart work over hard work, welcome good ideas regardless of where they come from, and have deliberately kept red tape out of the way of innovation. If you want to join a team building the best response practice in Asia — and shaping the tools and methods that get us there — you'll be in good company.
A note on levelling
This posting reflects a single role title; however, we hire across a range of seniority levels from this brief. The final title, whether DFIR Analyst, DFIR Specialist, or an adjacent level, will be determined by the depth and breadth of cybersecurity and incident response capabilities demonstrated throughout the interview process. If your experience sits near the edge of these levels, we encourage you to apply regardless.
Your Mission: Junior Incident Responder
As a Junior Incident Responder, you will work alongside senior responders on live engagements — helping clients contain, investigate, and recover from real cyber attacks. This is a delivery-focused role: your job is to do the work, learn the craft, and grow into a fully fledged responder under direct mentorship.
We hire for attitude and aptitude. We don't expect you to have seen everything yet — we expect you to be curious, coachable, and serious about building a career in incident response. The right candidate can demonstrate a genuine interest in IR through their experience, side projects, study, or community involvement, and shows up ready to learn fast in a real-world environment.
Core Responsibilities
Delivery Alongside Senior Responders
Support senior consultants on active incidents — assisting with containment, evidence collection, forensic analysis, and reporting.
Acquire and triage forensic artifacts across Windows, Linux, macOS, and cloud environments under the guidance of more experienced team members.
Analyse logs, endpoint telemetry, network data, and malware artifacts, and contribute findings to investigation timelines.
Use scripting (Python, Bash, or PowerShell) to assist with collection, parsing, and automation tasks where useful.
Client-Ready Professionalism
Document findings clearly and accurately, contributing sections to client deliverables under senior review.
Maintain a calm, professional posture in client-facing settings — even when the situation around you is anything but calm.
Follow operational procedures, chain-of-custody requirements, and quality standards as taught and reinforced through mentorship.
Learning and Growth
Take ownership of your own development — ask questions, study actively, and apply feedback quickly.
Participate in instructor-led training, internal exercises, and on-the-job mentoring designed to accelerate your tradecraft.
Contribute observations, ideas, and improvements back to the team — innovation is welcomed regardless of seniority.
Minimum Requirements
1+ year of experience in cybersecurity, IT, or an adjacent technical field (e.g. SOC analysis, sysadmin, helpdesk, network engineering, software engineering).
Demonstrable, genuine interest in incident response — through study, side projects, CTFs, home labs, community involvement, or prior work.
Working comfort with at least one of Windows, Linux, or macOS, and a willingness to become competent across all three.
Basic scripting ability in Python, Bash, or PowerShell — enough to read and adapt scripts, with the appetite to grow further.
Clear written and verbal English; able to take notes, write up findings, and communicate professionally with teammates and clients.
Coachable, curious, and resilient — willing to be wrong, learn fast, and try again.
Calm under pressure, with a professional posture in client-facing settings.
Preferred Qualifications
Started or completed a relevant certification (e.g. Security+, Network+, GCIH, GCFA, GFACT, CEH, BTL1) — in progress is just as welcome as completed.
Hands-on exposure to EDR, SIEM, or forensic tooling, even in a learning context.
Participation in CTFs, security communities, open-source projects, or personal labs.
Background in an adjacent field — IT operations, SOC, sysadmin, network engineering, software engineering, intelligence analysis — and a clear desire to move into IR.
Additional languages relevant to the regions Blackpanda serves.
How You'll Grow
You will be paired with senior responders on real engagements from day one. Your development will be supported through direct, hands-on mentorship and a structured instructor-led training program — not a sink-or-swim environment.
You'll join a diverse team of teammates from around the world, where who you are, the quality of your work, and your character are what matter. Trying and failing is ok. Failing to try is not.
Why This Role
If you're early in your career, hungry to learn, and want to spend the next phase of it doing real incident response under people who will invest in your growth — this is the seat for you. We're not looking for a finished product. We're looking for the right attitude, the right aptitude, and the willingness to put in the work.
Full job record
| Job ID | 3494b6da07fa7df30b2a4500e7e766679a074166 |
| Org ID | 6358a142-2f9b-414e-be08-ee623f4d2e1a |
| Source ID | 167ef10f-b127-4b62-b9d2-8ec3f2718936 |
| Board ID | 167ef10f-b127-4b62-b9d2-8ec3f2718936 |
| Provider | bamboohr |
| Provider Job Key | 50 |
| Title | Junior Incident Responder, Philippines |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | — |
| Department | Response |
| Team | — |
| Employment Type | full_time |
| Workplace Type | — |
| Remote Policy | — |
| Country | Philippines |
| Region | Manila |
| City | Manila |
| Salary Raw | — |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://blackpanda.bamboohr.com/careers/50 |
| Apply URL | https://blackpanda.bamboohr.com/careers/50 |
| First Seen At | 2026-05-30 05:42:21Z |
| Last Seen At | 2026-06-06 10:25:41Z |
| Last Checked At | 2026-06-06 10:25:41Z |
| Last Changed At | 2026-05-30 05:42:21Z |
| Inactive At | — |
| Source Posted At | 2026-05-29 00:00:00Z |
| Source Updated At | — |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=bamboohr/board=blackpanda/date=2026-06-06/2026-06-06T10-25-40-288Z-1893b90d815922fd3fedffdd1646d940c4e8917444d9ce9e1d797b73b9b69ce9.json |
Event Fields
{
"content_hash": "89787b25780d790e68ba9ce2bd7b69a1ddb512a3a214f54e06d7424073e97302",
"source_hash": "ffb942b6c4e2beed2d0a0513fc61b59a03ea3fed586f261fa9d4a1ac4ea1fa0d",
"last_changed_at": "2026-05-30T05:42:21.190Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "Manila, Manila, Philippines",
"city": "Manila",
"region": "Manila",
"country": "Philippines",
"is_remote": false,
"confidence": 0.8
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-06T10:25:41.488Z",
"launch_scope": {
"reason": "bamboohr_production_catalog",
"included": true,
"location": {
"raw": "Manila, Manila, Philippines",
"city": "Manila",
"region": "Manila",
"country": "Philippines",
"is_remote": false,
"confidence": 0.8
},
"countries": [
"Philippines"
]
},
"remote_policy": null,
"salary_period": null,
"workplace_type": null,
"salary_currency": null
}Extensions
{}Native Structured
{
"list_job": {
"id": "50",
"isRemote": null,
"location": {
"city": null,
"state": null
},
"atsLocation": {
"city": "Manila",
"state": null,
"country": "Philippines",
"province": "Manila"
},
"departmentId": "18607",
"locationType": "1",
"jobOpeningName": "Junior Incident Responder, Philippines",
"departmentLabel": "Response",
"employmentStatusLabel": "Full-Time"
},
"detail_errors": [],
"detail_job_opening": {
"location": {
"city": null,
"state": null,
"postalCode": null,
"addressCountry": null
},
"datePosted": "2026-05-29",
"atsLocation": {
"city": "Manila",
"state": "Manila",
"country": "Philippines",
"countryId": "169"
},
"description": "<p><span style=\"color: rgb(17, 17, 17); font-family: Arial, sans-serif; font-size: 12pt; font-weight: bold\">About Blackpanda</span></p>\n<p><span style=\"font-family: Arial, sans-serif; font-size: 12pt\">Blackpanda is a Lloyd's of London–accredited insurance coverholder and Asia's leading local cyber incident response firm, delivering end-to-end digital emergency support across the region. We are pioneering the A2I (Assurance-to-Insurance) model in cybersecurity — uniting preparation, response, and insurance into a seamless pathway that minimizes financial and operational impact from cyber attack.<br><br></span></p>\n<p><span style=\"font-family: Arial, sans-serif; font-size: 12pt\">Through expert consulting services, response assurance subscriptions, and innovative cyber insurance, we help organisations get ready, respond, and recover from cyber attacks — all delivered by local specialists working in concert. Our mission is clear: to bring complete cyber peace of mind to every organisation in Asia, from the first moment of breach through full recovery and beyond.<br><br></span></p>\n<p><span style=\"color: rgb(17, 17, 17); font-family: Arial, sans-serif; font-size: 12pt; font-weight: bold\">How We Work</span></p>\n<p><span style=\"font-family: Arial, sans-serif; font-size: 12pt\">Blackpanda is a tech-enabled services team. We invest heavily in AI and are constantly pushing to do better, faster, and at scale. You are given freedom to use the approved tools in the team, but you are to take ownership of outcomes. We prefer smart work over hard work, welcome good ideas regardless of where they come from, and have deliberately kept red tape out of the way of innovation. If you want to join a team building the best response practice in Asia — and shaping the tools and methods that get us there — you'll be in good company.<br><br></span></p>\n<p><span style=\"color: rgb(17, 17, 17); font-family: Arial, sans-serif; font-size: 12pt; font-weight: bold\">A note on levelling</span></p>\n<p><span style=\"font-family: Arial, sans-serif; font-size: 12pt\">This posting reflects a single role title; however, we hire across a range of seniority levels from this brief. The final title, whether DFIR Analyst, DFIR Specialist, or an adjacent level, will be determined by the depth and breadth of cybersecurity and incident response capabilities demonstrated throughout the interview process. If your experience sits near the edge of these levels, we encourage you to apply regardless.<br><br></span></p>\n<p><span style=\"color: rgb(17, 17, 17); font-family: Arial, sans-serif; font-size: 12pt; font-weight: bold\">Your Mission: Junior Incident Responder</span></p>\n<p><span style=\"font-family: Arial, sans-serif; font-size: 12pt\">As a Junior Incident Responder, you will work alongside senior responders on live engagements — helping clients contain, investigate, and recover from real cyber attacks. This is a delivery-focused role: your job is to do the work, learn the craft, and grow into a fully fledged responder under direct mentorship.<br><br></span></p>\n<p><span style=\"font-family: Arial, sans-serif; font-size: 12pt\">We hire for attitude and aptitude. We don't expect you to have seen everything yet — we expect you to be curious, coachable, and serious about building a career in incident response. The right candidate can demonstrate a genuine interest in IR through their experience, side projects, study, or community involvement, and shows up ready to learn fast in a real-world environment.<br><br></span></p>\n<p><span style=\"color: rgb(17, 17, 17); font-family: Arial, sans-serif; font-size: 12pt; font-weight: bold\">Core Responsibilities</span></p>\n<p><span style=\"font-family: Arial, sans-serif; font-size: 12pt; font-weight: bold\">Delivery Alongside Senior Responders</span></p>\n<ul>\n<li><span style=\"font-size: 12pt\"><span style=\"font-family: Arial, sans-serif\">Support senior consultants on active incidents — assisting with containment, evidence collection, forensic analysis, and reporting.</span></span></li>\n<li>Acquire and triage forensic artifacts across Windows, Linux, macOS, and cloud environments under the guidance of more experienced team members.</li>\n<li>Analyse logs, endpoint telemetry, network data, and malware artifacts, and contribute findings to investigation timelines.</li>\n<li>Use scripting (Python, Bash, or PowerShell) to assist with collection, parsing, and automation tasks where useful.<br><br></li>\n</ul>\n<p><span style=\"font-family: Arial, sans-serif; font-size: 12pt; font-weight: bold\">Client-Ready Professionalism</span></p>\n<ul>\n<li><span style=\"font-size: 12pt\"><span style=\"font-family: Arial, sans-serif\">Document findings clearly and accurately, contributing sections to client deliverables under senior review.</span></span></li>\n<li>Maintain a calm, professional posture in client-facing settings — even when the situation around you is anything but calm.</li>\n<li>Follow operational procedures, chain-of-custody requirements, and quality standards as taught and reinforced through mentorship.<br><br></li>\n</ul>\n<p><span style=\"font-family: Arial, sans-serif; font-size: 12pt; font-weight: bold\">Learning and Growth</span></p>\n<ul>\n<li><span style=\"font-size: 12pt\"><span style=\"font-family: Arial, sans-serif\">Take ownership of your own development — ask questions, study actively, and apply feedback quickly.</span></span></li>\n<li>Participate in instructor-led training, internal exercises, and on-the-job mentoring designed to accelerate your tradecraft.</li>\n<li>Contribute observations, ideas, and improvements back to the team — innovation is welcomed regardless of seniority.<br><br></li>\n</ul>\n<p><span style=\"color: rgb(17, 17, 17); font-family: Arial, sans-serif; font-size: 12pt; font-weight: bold\">Minimum Requirements</span></p>\n<ul>\n<li><span style=\"font-size: 12pt\"><span style=\"font-family: Arial, sans-serif\">1+ year of experience in cybersecurity, IT, or an adjacent technical field (e.g. SOC analysis, sysadmin, helpdesk, network engineering, software engineering).</span></span></li>\n<li>Demonstrable, genuine interest in incident response — through study, side projects, CTFs, home labs, community involvement, or prior work.</li>\n<li>Working comfort with at least one of Windows, Linux, or macOS, and a willingness to become competent across all three.</li>\n<li>Basic scripting ability in Python, Bash, or PowerShell — enough to read and adapt scripts, with the appetite to grow further.</li>\n<li>Clear written and verbal English; able to take notes, write up findings, and communicate professionally with teammates and clients.</li>\n<li>Coachable, curious, and resilient — willing to be wrong, learn fast, and try again.</li>\n<li>Calm under pressure, with a professional posture in client-facing settings.<br><br></li>\n</ul>\n<p><span style=\"color: rgb(17, 17, 17); font-family: Arial, sans-serif; font-size: 12pt; font-weight: bold\">Preferred Qualifications</span></p>\n<ul>\n<li><span style=\"font-size: 12pt\"><span style=\"font-family: Arial, sans-serif\">Started or completed a relevant certification (e.g. Security+, Network+, GCIH, GCFA, GFACT, CEH, BTL1) — in progress is just as welcome as completed.</span></span></li>\n<li>Hands-on exposure to EDR, SIEM, or forensic tooling, even in a learning context.</li>\n<li>Participation in CTFs, security communities, open-source projects, or personal labs.</li>\n<li>Background in an adjacent field — IT operations, SOC, sysadmin, network engineering, software engineering, intelligence analysis — and a clear desire to move into IR.</li>\n<li>Additional languages relevant to the regions Blackpanda serves.<br><br></li>\n</ul>\n<p><span style=\"color: rgb(17, 17, 17); font-family: Arial, sans-serif; font-size: 12pt; font-weight: bold\">How You'll Grow</span></p>\n<p><span style=\"font-family: Arial, sans-serif; font-size: 12pt\">You will be paired with senior responders on real engagements from day one. Your development will be supported through direct, hands-on mentorship and a structured instructor-led training program — not a sink-or-swim environment.</span></p>\n<p><span style=\"font-family: Arial, sans-serif; font-size: 12pt\">You'll join a diverse team of teammates from around the world, where who you are, the quality of your work, and your character are what matter. Trying and failing is ok. Failing to try is not.<br><br></span></p>\n<p><span style=\"color: rgb(17, 17, 17); font-family: Arial, sans-serif; font-size: 12pt; font-weight: bold\">Why This Role</span></p>\n<p><span style=\"font-family: Arial, sans-serif; font-size: 12pt\">If you're early in your career, hungry to learn, and want to spend the next phase of it doing real incident response under people who will invest in your growth — this is the seat for you. We're not looking for a finished product. We're looking for the right attitude, the right aptitude, and the willingness to put in the work.</span></p>",
"compensation": null,
"departmentId": "18607",
"locationType": "1",
"seekPromoted": false,
"jobCategoryId": null,
"jobOpeningName": "Junior Incident Responder, Philippines",
"departmentLabel": "Response",
"jobOpeningStatus": "Open",
"minimumExperience": "Entry-level",
"jobOpeningShareUrl": "https://blackpanda.bamboohr.com/careers/50",
"employmentStatusLabel": "Full-Time"
}
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/3494b6da07fa7df30b2a4500e7e766679a074166?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/6358a142-2f9b-414e-be08-ee623f4d2e1aJSONGET https://api.bluedoor.sh/job-postings/v1/sources/167ef10f-b127-4b62-b9d2-8ec3f2718936JSONGET https://api.bluedoor.sh/job-postings/v1/jobs/3494b6da07fa7df30b2a4500e7e766679a074166/eventsJSON