Cybersecurity Analyst (Entry Level)

ERNI is a fast-growing Software Development company headquartered and founded in Switzerland in 1994, with more than 800 employees. We are highly specialized in IT & software engineering to enable and deliver innovation in process and technology. Our first service center in Asia Pacific is in Metro Manila (Mandaluyong) from where we provide our service to Europe, APAC incl. our local market Philippines, and USA regions. We are now geared towards expansion and are looking for highly motivated joiners. WHY ERNI is the best place to call HOME? - At ERNI, this is how we can support you; ALL company PERKS AND BENEFITS take effect UPON HIRING! - Contract: there is always a project and opportunity for you. - Personal Development and Travel Opportunities outside the Philippines. - Baby Basket – to welcome your newborn to the ERNI family. - Fruit Basket – boost of vitamins during hospitalization. - Free snacks and coffee in the office UNLOCKING NEW DOORS OF GROWTH & OPPORTUNITIES - Free Training with Certifications: Grow with us through technical and non-technical training. - Challenging Projects: ERNI is dedicated to developing high-quality software in complex technical environments such as MedTech, Industry, Finance, and Transportation. Have the chance to participate in various technically challenging projects amongst passionate and skilled colleagues. - Employee Welfare: You will be guided by a group of people who will guide and support you to have the right tools and mindset. - Promotions & Recognition: From the very first day, we offer you a way to learn and develop yourself in our company. Your colleagues and superiors consistently recognize and appreciate all efforts, making you feel satisfied with your achievements. - Communication: You will find transparency, honesty, and open communication in our working culture. we value suggestions, opinions, and feedback from all employees. ⏱ FLEXIBILITY - Hybrid Set-Up: We are combining both remote work and in-person work. The hybrid setup will allow you to reduce commuting time and have a more flexible work schedule. This will help you to manage better your work-life balance. EVENTS: - We provide many opportunities to connect and build relationships. We are learning, growing, and celebrating achievements together. You will experience a wide range of different exciting activities. What to expect? Leisure Events, Summer Events, Family Events, Social Events, and Year-End Events. What are our wishes? Education and Work Experience - Bachelor's degree in Computer Science, Information Technology, Cybersecurity, Information Systems, Engineering, or a related field. - No prior professional experience required; recent graduates (within the last 2 years) are encouraged to apply. - Relevant internships, capstone projects, or coursework in cybersecurity, cloud, or risk management will be considered favorably. Technical Knowledge - Foundational understanding of cybersecurity concepts (confidentiality, integrity, availability; common threats and vulnerabilities; basic network and web security). - Familiarity with cloud computing concepts and at least one major cloud provider (AWS, Azure, or GCP) — through coursework, internships, or self-study is acceptable. - Interest in AI/emerging technologies and their security implications. - Awareness of common security frameworks (e.g., ISO 27001, NIST CSF, OWASP Top 10) is a plus. Soft Skills - Excellent written and oral communication skills in English. - Strong collaboration and teamwork abilities. - Eagerness to learn, intellectual curiosity, and a growth mindset. - Attention to detail, organizational skills, and ability to handle confidential information with discretion. - Highly coachable, fast learner, punctual, and dedicated. Tools/Software - Proficiency in Microsoft 365 tools (Word, Excel, PowerPoint, Teams, SharePoint). - Exposure to scripting (Python, PowerShell) or data tools (Excel, Power BI) is a plus. Certification (nice to have) - Entry-level certifications such as CompTIA Security+, ISC2 Certified in Cybersecurity (CC), Microsoft SC-900, or AWS Cloud Practitioner. How can you contribute to the team? Scope of Work/Responsibilities The Cybersecurity Associate position requires a foundational understanding of information security concepts, willingness to learn enterprise-level practices, and the ability to support business and technical teams in implementing security measures. A successful candidate is detail-oriented, collaborative, and eager to grow within a teamwork-oriented organization. The role is based full-time at client HQ during the engagement period. Detailed Tasks / Expected Output - Web Application Firewall (WAF) Replacement Project Support - Assist in onboarding web applications and API endpoints to the new cloud-based WAF platform, including policy validation and tuning. - Support day-to-day WAF monitoring, change requests, and SLA tracking, escalating findings to senior specialists. - Maintain the WAF asset inventory and related documentation in SharePoint. - Support project management and go-live readiness activities, including tracking of tasks, milestones, risks, and dependencies, as well as cutover planning, stakeholder communications, and post-go-live issue tracking. - Assist in drafting related policies, standard operating procedures, and technical manuals to support WAF operations and knowledge transfer. - Secure AI Assurance Program Support - Assist in the implementation and administering the AI security monitoring and visibility platform to support oversight of AI tool usage and data flows. - Support continuous monitoring of AI agents and triage of policy exceptions against defined control rules. - Help maintain AI compliance dashboards and prepare periodic assurance reports for management. - Support user training, awareness, and compliance activities on responsible and secure AI use, including the development of guidance materials and tracking of user adherence to AI policies. - Cyber Due Diligence Platform Modernization Support - Assist in the gap assessment of the current Cyber Risk Assessment (CRA) process against business requirements, industry standards, and best practices. - Support the end-to-end market evaluation of purpose-built cyber risk assessment platforms, covering vendor research, RFI/RFP coordination, demo facilitation, proof-of-concept tracking, and the preparation of comparative scorecards and feature-fit analyses. - Help gather and consolidate functional and non-functional requirements from IT Security, Procurement, Legal, and business stakeholders, and assist in preparing evaluation summaries, scorecards, and recommendation papers for management review. - Continuous Learning - Complete structured onboarding and assigned cybersecurity training/certifications during the engagement. - Participate in knowledge-sharing sessions, team huddles, and shadowing opportunities with senior practitioners. - Other responsibilities may be asked of the person as needed. Work Arrangement - The role requires onsite reporting five (5) days a week, unless otherwise advised or approved by the supervisor based on operational requirements. - If the user unit requires contractors to report to HQ for more than 1 day, compliance is mandatory. - Work Schedule is from 8:00AM – 5:00PM Manila Time.

Back to blog

Common Interview Questions And Answers

1. HOW DO YOU PLAN YOUR DAY?

This is what this question poses: When do you focus and start working seriously? What are the hours you work optimally? Are you a night owl? A morning bird? Remote teams can be made up of people working on different shifts and around the world, so you won't necessarily be stuck in the 9-5 schedule if it's not for you...

2. HOW DO YOU USE THE DIFFERENT COMMUNICATION TOOLS IN DIFFERENT SITUATIONS?

When you're working on a remote team, there's no way to chat in the hallway between meetings or catch up on the latest project during an office carpool. Therefore, virtual communication will be absolutely essential to get your work done...

3. WHAT IS "WORKING REMOTE" REALLY FOR YOU?

Many people want to work remotely because of the flexibility it allows. You can work anywhere and at any time of the day...

4. WHAT DO YOU NEED IN YOUR PHYSICAL WORKSPACE TO SUCCEED IN YOUR WORK?

With this question, companies are looking to see what equipment they may need to provide you with and to verify how aware you are of what remote working could mean for you physically and logistically...

5. HOW DO YOU PROCESS INFORMATION?

Several years ago, I was working in a team to plan a big event. My supervisor made us all work as a team before the big day. One of our activities has been to find out how each of us processes information...

6. HOW DO YOU MANAGE THE CALENDAR AND THE PROGRAM? WHICH APPLICATIONS / SYSTEM DO YOU USE?

Or you may receive even more specific questions, such as: What's on your calendar? Do you plan blocks of time to do certain types of work? Do you have an open calendar that everyone can see?...

7. HOW DO YOU ORGANIZE FILES, LINKS, AND TABS ON YOUR COMPUTER?

Just like your schedule, how you track files and other information is very important. After all, everything is digital!...

8. HOW TO PRIORITIZE WORK?

The day I watched Marie Forleo's film separating the important from the urgent, my life changed. Not all remote jobs start fast, but most of them are...

9. HOW DO YOU PREPARE FOR A MEETING AND PREPARE A MEETING? WHAT DO YOU SEE HAPPENING DURING THE MEETING?

Just as communication is essential when working remotely, so is organization. Because you won't have those opportunities in the elevator or a casual conversation in the lunchroom, you should take advantage of the little time you have in a video or phone conference...

10. HOW DO YOU USE TECHNOLOGY ON A DAILY BASIS, IN YOUR WORK AND FOR YOUR PLEASURE?

This is a great question because it shows your comfort level with technology, which is very important for a remote worker because you will be working with technology over time...