Security Managed Services Engineer (L1)

Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Configure and maintain the SIEM system, ensuring that it's properly set up to collect and analyze security event data.

· Develop, customize, and manage security rules within the SIEM to detect and respond to security threats.

· Monitor SIEM alerts, investigate them, and take appropriate actions based on the severity and nature of the alerts.

· Oversee the collection, normalization, and storage of log data from various sources.

· Develop and document incident response procedures, and lead or assist in incident response efforts when security incidents occur.

· Analyze and investigate security events from various sources.

· Manage security incidents through all incident response phases to closure.

· Utilize SIEM, SOAR, UEBA, EDR, NBAD, PCAP, Vulnerability Scanning, and Malware analysis technologies for event detection and analysis.

· Update tickets, write incident reports, and document actions to reduce false positives.

· Develop knowledge of attack types and fine-tune detective capabilities.

· Identify log sources and examine system logs to reconstruct event histories using forensic techniques.

· Align SIEM rules and alerts with the CLIENT’s security poClienties and compliance requirements.

· Conduct computer forensic investigations, including examining running processes, identifying network connections, and disk imaging.

· Maintain and support the operational integrity of SOC toolsets.

· Collaborate with SIEM solution vendors for updates, patches, and support to ensure the system's reliability and effectiveness.

· Maintain thorough documentation of the SIEM system's configuration, procedures, and incident response plans.

· Proactively identify and report system security loopholes, infringements, and vulnerabilities to the Security Operations Centre Manager in a timely manner.

· Work closely with other IT and security teams during incident response, coordinating efforts and sharing information to mitigate security incidents effectively.

· Ensure that the SIEM system helps the CLIENT meet regulatory compliance

requirements and is ready for security audits.

· Continuously optimize the SIEM system for efficient performance, ensuring it can handle the volume of data and remain responsive.

· Develop automation scripts and workflows to streamline common security response tasks and enhance efficiency.

Workplace type:

On-site Working

About NTT DATA
NTT DATA is a $30+ billion business and technology services leader, serving 75% of the Fortune

Global 100. We are committed to accelerating client success and positively impacting society through

responsible innovation. We are one of the world’s leading AI and digital infrastructure providers, with

unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and

application services. Our consulting and industry solutions help organizations and society move

confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more

than 70 countries. We also offer clients access to a robust ecosystem of innovation centers as well as

established and start-up partners. NTT DATA is part of NTT Group, which invests over $3 billion each

year in R&D.

Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Third parties fraudulently posing as NTT DATA recruiters 

NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters whether in writing or by phone in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an @nttdata.com email address. If you suspect any fraudulent activity, please contact us.