Key Roles and Responsibilities : Work as part of a global CSIRT team that works 24 / 7 on rotational shifts.Work as part of Platform and Content Engineering handling tunings, stake holder requests, escalations, reporting, trainingsAdministration of the NTT Data Inc security tools to gather security logs from environmentLife cycle management of the supported security tools / technologies, Break-fix, Patching, Live updateAdhering to SOPs and notify stake holders on log flow / log format issuesDocument best practicesIdentify opportunities to make automations which will help the incident response team.This role involves security incident handling and response from several vectors including End Point Protection and Enterprise Detection and response tools, attack analysis, malware analysis, network forensics, computer forensics, and a broad range of skills in LAN technologies, Windows and Linux O / S's, and general security infrastructure.Carry out agreed maintenance tasksEnsures usage of knowledge articles in incident diagnosis and resolution and assist with updating as and when requiredPerform defined tasks to monitor service delivery against service level agreements and maintains records of relevant informationInvestigate causes of incidents and seeks resolutionEscalate unresolved incidents and follow up until incident is resolvedProvide service recovery, following resolution of incidentsDocument and close resolved incidents according to agreed proceduresKnowledge, Skills and Attributes : Applies learned techniques, as well as company policies and procedures to resolve a variety of issuesWorking knowledge on implementation and monitoring of any SIEM or security tools / technologiesKnowledge on security architecture, worked across different security technologiesCustomer service orientated and pro-active thinkingProblem solver who is highly driven and self-organisedGreat attention to detailGood analytical and logical thinkingExcellent spoken and written communication skillsTeam player with the ability to work well with others and in group with colleagues and stakeholdersAcademic Qualifications and Certifications : Degree or relevant qualification in IT / ComputingRelevant level of Networking certifications such as CCNA, JNCIA, ACCA, PCNSA, CCSA etc.Relevant level of Security certifications such as AZ-, SC-, Security+, CEH etc. will be added advantageRequired Experience : Moderate level experience in Security technologies like (Firewall, IPS, IDS, Proxy etc.)Moderate level experience in technical support to clientsModerate level experience in diagnosis and troubleshootingModerate level experience providing remote support in Security TechnologiesModerate level experience in SOC / CSIRT OperationsModerate level experience in handling security incidents end to endKnowledge on networking, Linux and security conceptsModerate level experience in configuring / managing security controls such as Firewall, IDS / IPS, EDR, NDR, UTM, Proxy, SOAR, HoneyPots and other security toolsKnowledge on log collection mechanism such as Syslog, Log file, DB APIKnowledge in security architectureModerate level experience in Security engineeringSkills Summary Ability to Work Under Pressure, Critical Thinking, Customer Service, Cybersecurity, Logical Thinking, Problem Solving, Teamwork, Troubleshooting, Written Communication
What will make you a good fit for the role?
Workplace type : Hybrid Working
Hybrid Working
Equal Opportunity Employer NTT is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment.
We do not discriminate based on age, race, color, sex, religion, national origin, disability, pregnancy, marital status, sexual orientation, gender reassignment, veteran status, or other protected category
#J-18808-Ljbffr
