Looking for a job

Keith John Mendoza

@keithjohnmendoza

Message

Cybersecurity leader specializing in incident response, forensics, and threat hunting.

Philippines

Message

What I'm looking for

I seek a senior security role where I can lead incident response, build detection capabilities, mentor teams, and drive proactive threat hunting in a collaborative, learning-focused organization.

I am a cybersecurity professional with over 11 years' experience in incident response, malware analysis, digital forensics, and SOC monitoring, recognized for preventing high-severity attacks and building MDR capabilities from the ground up. I have led end-to-end incident handling, developed detection rules and playbooks, automated workflows, and mentored junior analysts to improve team performance.

I have managed regional operations and tuned enterprise security platforms (SIEM, EDR, SOAR), conducted deep malware and forensic analysis, and delivered proactive threat hunting and adversary simulation exercises. My achievements include stopping numerous critical attacks, authoring extensive operational documentation, and receiving Employee of the Year recognition for leadership.

Experience

Work history, roles, and key accomplishments

Incident Response Lead

Dataguard365

Feb 2020 - Aug 2025 (5 years 6 months)

Led end-to-end incident response and remediation for high-impact breaches involving APTs and ransomware, reduced mean time to detect by developing custom detection rules, and automated workflows to improve response efficiency.

Incident Response Malware Analysis Cynet)LogRhythm Threat Hunting Playbook Development Automation)Python

Cybersecurity Operations Lead

SAP Concur

Feb 2021 - May 2021 (3 months)

Directed incident response across APAC, optimized deployment and tuning of SIEM, EDR, and threat intelligence platforms to increase detection accuracy and reduce false positives.

Incident Response SIEM Tuning EDR Threat Intelligence Cross Functional Collaboration Detection Engineering

L3 Senior Info Security Analyst

PDX

Dec 2019 - Feb 2021 (1 year 2 months)

Managed high-severity threats from EDR, SIEM, email protection and IPS, conducted vulnerability assessments and delivered penetration testing and adversary simulations to evaluate defenses.

EDR SIEM Vulnerability Assessment Penetration Testing Threat Detection Security Awareness Risk Mitigation

Senior Info Security Analyst

CEVA Logistics

Dec 2018 - Dec 2019 (1 year)

Administered SIEM, EDR and IDS/IPS platforms, developed incident response playbooks, and investigated complex alerts involving malware, phishing, and unauthorized access.

SIEM EDR IDS Incident Response Playbook Development Malware Analysis Phishing

Tier 2 Network Security Analyst

Masergy

Jun 2016 - Dec 2018 (2 years 6 months)

Led a team of Tier 1/2 analysts, performed deep-dive forensics and threat hunting across customer environments, and created SOPs and escalation procedures; awarded Employee of the Year (2018).

Threat Hunting Forensics Team Leadership SIEM EDR SOP Development Escalation Management

Network Security Analyst

Masergy

Jun 2015 - Jun 2016 (1 year)

Analyzed security telemetry and correlated events using SIEM and EDR platforms, worked directly with clients on remediation and triage of security incidents.

SIEM EDR Security Monitoring Event Correlation Triage Log Analysis Network Security

Network Engineer (Team Lead)

Net Gate

Jun 2013 - May 2015 (1 year 11 months)

Directed infrastructure projects including firewall configuration, routing systems deployment, and structured cabling while leading a technical team to deliver network solutions.

Routing Network Infrastructure Team Leadership Structured Cabling Network Deployment Troubleshooting Project Management

Education

Degrees, certifications, and relevant coursework

Angeles University Foundation

Bachelor of Science, Information Technology

2009 - 2013

Completed a Bachelor of Science in Information Technology with coursework and practical experience in networking, security, and systems administration.