Security Platform Engineer
NTT DATA, Inc.
full-time
Posted on:
Location Type: Office
Location: Hyderabad • 🇮🇳 India
Visit company websiteJob Level
Mid-LevelSenior
Tech Stack
Linux
About the role
- Facilitate problem resolution and mentoring for the overall team
- Perform operational security tasks such as performance and availability monitoring, log monitoring, security incident detection and response, security event reporting, and content maintenance (tuning)
- Detect and monitor escalated threats and suspicious activity affecting the organization's technology domain
- Work as part of a 24/7 team working on rotational shifts
- Work as part of Platform and Content Engineering handling tunings, stake holder requests, escalations, reporting, trainings
- Administer the organization's security tools to gather security logs from environment
- Perform lifecycle management of the supported security tools/technologies, Break-fix, Patching, Live update
- Adhere to SOPs and notify stake holders on log flow/log format issues
- Document best practices
- Identify opportunities to make automations which will help the incident response team
- Perform security incident handling and response including End Point Protection and Enterprise Detection/response tools, attack analysis, malware analysis, network forensics, computer forensics
- Carry out agreed maintenance tasks
- Investigate causes of incidents and seek resolution
- Escalate unresolved incidents and follow up until incident is resolved
- Provide service recovery, following resolution of incidents
- Document and close resolved incidents according to agreed procedures
- Investigate and identify root cause of incidents and assist with the implementation of agreed remedies and preventative measures
- Maintain knowledge of specific specialisms, providing detailed advice regarding their application
- Ensure efficient and comprehensive resolution of incidents, including ensuring that repairs are carried out by coordinating product requests, working with other team members
- Log all such incidents in a timely manner with the required level of detail
Requirements
- Seasoned working knowledge on implementation and monitoring of any SIEM or security tools/technologies
- Seasoned knowledge on security architecture, worked across different security technologies
- Customer service orientated and pro-active thinking
- Problem solver who is highly driven and self-organized
- Great attention to detail
- Good analytical and logical thinking
- Excellent spoken and written communication skills
- Team player with the ability to work well with others and in group with colleagues and stakeholders
- Bachelor's degree or equivalent in Information Technology or related field
- Relevant level of Networking certifications such as CCNA, JNCIA, ACCA, PCNSA, CCSA etc. preferred
- Relevant level of Security certifications such as AZ-500, SC-200, Security+, CEH, CISSP, CISM etc. will be added advantage
- Seasoned experience in Security technologies like (Firewall, IPS, IDS, Proxy etc.)
- Seasoned experience in technical support to clients
- Seasoned experience in diagnosis and troubleshooting
- Seasoned experience providing remote support in Security Technologies
- Seasoned experience in SOC/CSIRT Operations
- Seasoned experience in handling security incidents end to end
- Knowledge on networking, Linux and security concepts
- Seasoned experience in configuring/managing security controls such as Firewall, IDS/IPS, EDR, NDR, UTM, Proxy, SOAR, HoneyPots and other security tools
- Knowledge on log collection mechanism such as Syslog, Log file, DB API
- Knowledge in security architecture
- Seasoned experience in Security engineering
Benefits
- Diversity and inclusion in the workplace
- Opportunities for growth and development
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
SIEMsecurity architectureFirewallIPSIDSProxyEDRNDRUTMSOAR
Soft skills
customer serviceproblem solvingattention to detailanalytical thinkinglogical thinkingcommunication skillsteam playerself-organizationproactive thinkingmentoring
Certifications
CCNAJNCIAACCAPCNSACCSAAZ-500SC-200Security+CEHCISSP