Continue to make an impact with a company that is pushing the boundaries of what is possible. At NTT DATA, we are renowned for our technical excellence, leading innovations, and making a difference for our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can continue to grow, belong, and thrive.
Your career here is about believing in yourself and seizing new opportunities and challenges. It’s about expanding your skills and expertise in your current role and preparing yourself for future advancements. That’s why we encourage you to take every opportunity to further your career within our great global team.
Grow Your Career with NTT DATA
The Security Managed Services Engineer (L1) is an entry level engineering role, responsible for providing a managed service to clients to ensure that their Firewall infrastructure remain operational through proactively identifying, investigating, and routing the incidents to correct resolver group.
The primary objective of this role is to ensure zero missed service level agreement (SLA) conditions and focuses on first-line support for standard and low complexity incidents and service requests.
The Security Managed Services Engineer (L1) may also contribute to / support on project work as and when required.
What you'll be doing
Responsibilities
SOC Analyst
Configure and maintain the SIEM system, ensuring that it's properly set up to collect and analyze security event data. Develop, customize, and manage security rules within the SIEM to detect and respond to security threats. Monitor SIEM alerts, investigate them, and take appropriate actions based on the severity and nature of the alerts. Oversee the collection, normalization, and storage of log data from various sources.
Develop and document incident response procedures, and lead or assist in incident response efforts when security incidents occur. Analyze and investigate security events from various sources. Manage security incidents through all incident response phases to closure. Utilize SIEM, SOAR, UEBA, EDR, NBAD,Splunk
PCAP, Vulnerability Scanning, and Malware analysis technologies for event detection and analysis.
Update tickets, write incident reports, and document actions to reduce false positives. Develop knowledge of attack types and finetune detective capabilities.
Identify log sources and examine system logs to reconstruct event histories using forensic techniques.
Align SIEM rules and alerts with the LIC’s security policies and compliance requirements.
Conduct computer forensic investigations, including examining running processes, identifying network connections, and disk imaging.
Maintain and support the operational integrity of SOC toolsets.
Collaborate with SIEM solution vendors for updates, patches, and support to ensure the system's reliability and effectiveness.
Maintain thorough documentation of the SIEM system's configuration, procedures, and incident response plans.
Proactively identify and report system security loopholes, infringements, and vulnerabilities to the Security Operations Centre Manager in a timely manner.
Work closely with other IT and security teams during incident response, coordinating efforts and sharing information to mitigate security incidents effectively.
Ensure that the SIEM system helps the LIC meet regulatory compliance requirements and is ready for security audits.
Continuously optimize the SIEM system for efficient performance, ensuring it can handle the volume of data and remain responsive.
Develop automation scripts and workflows to streamline common security response tasks and enhance efficiency.
Certification: Valid CEH Certificate required
Workplace type:
On-site Working
Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Accelerate your career with us. Apply today
