Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.
The Security Platform Engineer is a seasoned subject matter expert, responsible for facilitating problem resolution and mentoring for the overall team.
This role performs operational security tasks such as performance and availability monitoring, log monitoring, security incident detection and response, security event reporting, and content maintenance (tuning).
The Security Platform Engineer is responsible for detecting and monitoring escalated threats and suspicious activity affecting the organization's technology domain (servers, networks, appliances and all infrastructure supporting production applications for the enterprise, as well as development environments).
- Works as part of a 24/7 team working on rotational shifts.
- Works as part of Platform and Content Engineering handling tunings, stake holder requests, escalations, reporting, trainings.
- Administers the organization's security tools to gather security logs from environment.
- Performs lifecycle management of the supported security tools/technologies, Break-fix, Patching, Live update.
- Adheres to SOPs and notify stake holders on log flow/log format issues.
- Documents best practices.
- Identifies opportunities to make automations which will help the incident response team.
- Performs security incident handling and response from several vectors including End Point Protection and Enterprise Detection and response tools, attack analysis, malware analysis, network forensics, computer forensics, and a broad range of skills in LAN technologies, Windows and Linux O/S’s, and general security infrastructure.
- Carries out agreed maintenance tasks.
- Ensures usage of knowledge articles in incident diagnosis and resolution and assist with updating as and when required.
- Performs defined tasks to monitor service delivery against service level agreements and maintains records of relevant information.
- Investigates causes of incidents and seeks resolution.
- Escalates unresolved incidents and follow up until incident is resolved.
- Provides service recovery, following resolution of incidents.
- Documents and closes resolved incidents according to agreed procedures.
- Investigates and identifies root cause of incidents and assist with the implementation of agreed remedies and preventative measures.
- Maintains knowledge of specific specialisms, provides detailed advice regarding their application.
- Ensures efficient and comprehensive resolution of incidents, including ensuring that repairs are carried out by coordinating product requests, working with other team members.
- Logs all such incidents in a timely manner with the required level of detail with all the necessary.
- Cooperates with all stakeholders including client IT environments, vendors and carriers to expedite diagnosis of errors and problems and to identify a resolution.
- Seasoned working knowledge on implementation and monitoring of any SIEM or security tools/technologies.
- Seasoned knowledge on security architecture, worked across different security technologies.
- Customer service orientated and pro-active thinking.
- Problem solver who is highly driven and self-organized.
- Great attention to detail.
- Good analytical and logical thinking.
- Excellent spoken and written communication skills.
- Team player with the ability to work well with others and in group with colleagues and stakeholders.
- Bachelor's degree or equivalent in Information Technology or related field.
- Relevant level of Networking certifications such as CCNA, JNCIA, ACCA, PCNSA, CCSA etc. preferred.
- Relevant level of Security certifications such as AZ-500, SC-200, Security+, CEH, CISSP, CISM etc. will be added advantage.
- Seasoned experience in Security technologies like (Firewall, IPS, IDS, Proxy etc.).
- Seasoned experience in technical support to clients.
- Seasoned experience in diagnosis and troubleshooting.
- Seasoned experience providing remote support in Security Technologies.
- Seasoned experience in SOC/CSIRT Operations.
- Seasoned experience in handling security incidents end to end.
- Knowledge on networking, Linux and security concepts.
- Seasoned experience in configuring/managing security controls such as Firewall, IDS/IPS, EDR, NDR, UTM, Proxy, SOAR, HoneyPots and other security tools.
- Knowledge on log collection mechanism such as Syslog, Log file, DB API.
- Knowledge in security architecture.
- Seasoned experience in Security engineering.
Workplace type:
Hybrid WorkingAbout NTT DATA
NTT DATA is a $30+ billion business and technology services leader, serving 75% of the Fortune Global 100. We are committed to accelerating client success and positively impacting society through responsible innovation. We are one of the world’s leading AI and digital infrastructure providers, with unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and application services. Our consulting and industry solutions help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more than 50 countries. We also offer clients access to a robust ecosystem of innovation centers as well as established and start-up partners. NTT DATA is part of NTT Group, which invests over $3 billion each year in R&D.
Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
Third parties fraudulently posing as NTT DATA recruiters
NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters—whether in writing or by phone—in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an @nttdata.com email address. If you suspect any fraudulent activity, please contact us.
