Req ID: 342338 

NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a Sr. Security Engineer - Team Lead to join our team in Merrifield, Virginia (US-VA), United States (US).

Job Summary:

The Senior Security Engineer – Team Lead is responsible for directing and overseeing security engineering operations, guiding a team of engineers, and ensuring the protection of the organization’s cloud platforms, cybersecurity tools, infrastructure, information systems, and data. This role blends tactical vision and technical expertise with strategic leadership to architect, implement, and govern secure solutions across the enterprise. The Team Lead sets priorities, mentors staff, and ensures alignment of engineering initiatives with organizational objectives, compliance requirements, and industry best practices.

The position covers the full system lifecycle—requirements, procurement, design, integration, monitoring, and continuous improvement—while ensuring cloud, infrastructure, and cybersecurity best practices are embedded into all phases. Serving as a subject matter expert, the Team Lead advises leadership, coordinates cross-functional teams, and drives continuous enhancement of the organization’s cybersecurity posture.

The team lead also works with the team to design workflow automations for cybersecurity tools, process automation, troubleshooting investigation, interoperability testing, Business Impact Analysis (BIAs), Project Charters adherence and implementation of standards, industry best practices, cybersecurity guidelines, and training of the team. 

Duties and Responsibilities:

1. Lead and manage security engineering teams to meet organizational objectives.
   1. Set team goals, define priorities, and oversee delivery of security engineering initiatives and requirements.
   2. Provide clear guidance, mentorship, performance feedback, and professional development planning.
   3. Promote collaboration, accountability, and knowledge sharing across the team.
2. Assist enterprise architect & client with architecture, design, and integration of security solutions.
   1. Guide & test the integration of secure architectures for infrastructure, applications, and cloud services.
   2. Review and provide recommendations regarding technical specifications, configurations, and deployment plans for security tools.
   3. Ensure designs meet enterprise security requirements, including baseline configurations and quality standards.
3. Participate in system design planning.  Provide requirements recommendations and execute approved project system procurements/project plans to ensure all implementation requirements are met.
   1. Follow and implement system security requirements ensuring alignment with functional, operational, and cybersecurity needs.
   2. Advise on technology acquisition, supply chain risk management, and procurement strategies.
   3. Participate in the configuration management, change control process, and the Change Control Board - (CCB) to provide technical/cybersecurity related advice.
4. Ensure oversight of governance, compliance, and risk management activities associated with engineering team projects, tasks, and efforts
   1. Lead and collaborate with other teams regarding risk assessments, audits, and compliance reviews for security engineering projects.
   2. Ensure application of NIST, FedRAMP, and other federal cybersecurity standards.
   3. Provide recommendations for policy updates, security standards, and operational procedures.
5. Provide recommendations and assist the SOC team with incident response readiness and threat mitigation strategies.
   1. Work with the SOC, DevOps, and IT teams on incident containment, recovery, and lessons learned.
   2. Work alongside of the SOC’s root cause analysis of security events to drive long-term mitigations.
   3. Recommend enhancements to monitoring, detection, and response capabilities.
6. Participate in the lifecycle management evaluation of security tools and technologies.
   1. Assess, test, recommend, and oversee approved integration of new or upgraded security tools, including open-source options.
   2. Evaluate technology performance, cost/benefit analysis, and capability assessments (Overlap/gaps).
   3. Provide tuning, test and initiate updates/patches for the optimization of deployed tools.
7. If project team/lead, coordinate cross-functional security collaboration and stakeholder engagement to meet milestones, requirements, project deadline, and budget constraints.
   1. Serve as a security SME in project planning, architecture reviews, and operational workflows.
   2. Facilitate alignment between security engineering, development, and infrastructure teams.
   3. Communicate technical recommendations, risk assessments, and Root Cause Analysis - (RCA) results to leadership and required stakeholders.
8. Direct training, enablement, and knowledge management for security engineering.
   1. Develop and oversee delivery of security training for team and any identified external entities.
   2. Ensure documentation of designs, processes, and configurations in secure repositories.
   3. Promote adoption of secure coding, authentication, and authorization practices.

Basic Qualifications:

• Bachelor’s degree in information technology, cybersecurity, data science, information systems, or computer sciencei, from an ABET accredited or CAE designated institution fulfills the educational requirement for this WRC.
• One-and-one- half (1.5) years of additional experience can substitute for one (1) year of a typical degree program.
• Minimum 6 years of experience in Information Technology (IT) and/or Information Security (IS).
• DoD 8140 certification for their respective area or the ability to obtain certification within six (6) months of onboarding.
• Active Secret Security Clearance

Preferred Qualifications:

• Cyber Defense Infrastructure Support Specialist advanced certifications:
  • CEH, SSCP, or CASP +CE     
  • CSSLP, CISSP-ISSAP, CISSP-ISSEP, CCSP, or CISSP (Associate)
  • CompTIA: Cloud+, PenTest+, Security+, or CySA+
  • SANS certs: GCIA, GCLD, GDSA, GFACT, GICSP, or GSEC
• In-depth knowledge of various SIEM platforms, scripting languages (e.g., Python, SPL, KQL), and understanding of network security and threat intelligence. 
• Familiarity with Information Security requirements of Compliance audits. 
• Hands on experience with Splunk, Elastic Search, and ServiceNow. 
• Python programming experience. 
• Experience working with APIs, webhooks and custom queries to ingest data 

About NTT DATA

NTT DATA is a $30 billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long term success. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure and connectivity. We are one of the leading providers of digital and AI infrastructure in the world. NTT DATA is a part of NTT Group, which invests over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. Visit us at us.nttdata.com

Whenever possible, we hire locally to NTT DATA offices or client sites. This ensures we can provide timely and effective support tailored to each client’s needs. While many positions offer remote or hybrid work options, these arrangements are subject to change based on client requirements. For employees near an NTT DATA office or client site, in-office attendance may be required for meetings or events, depending on business needs. At NTT DATA, we are committed to staying flexible and meeting the evolving needs of both our clients and employees. NTT DATA recruiters will never ask for payment or banking information and will only use @nttdata.com, @nttdatafed.com and @talent.nttdataservices.com email addresses. If you are requested to provide payment or disclose banking information, please submit a contact us form, https://us.nttdata.com/en/contact-us.

NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https://us.nttdata.com/en/contact-us. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here. If you'd like more information on your EEO rights under the law, please click here. For Pay Transparency information, please click here.