Share this Job

Senior Cyber Threat Analyst

Apply now »

Date: Jul 13, 2019

Location: Mountain View, CA, US

Company: NTT DATA Services

Req ID: 31855 

 

At NTT DATA Services, we know that with the right people on board, anything is possible. The quality, integrity, and commitment of our employees are key factors in our company’s growth, market presence and our ability to help our clients stay a step ahead of the competition. By hiring the best people and helping them grow both professionally and personally, we ensure a bright future for NTT DATA Services and for the people who work here.

 

NTT DATA Services currently seeks a Senior Cyber Threat Analyst to join our team in Mountain View, California (US-CA), United States (US).

 

 

NTT DATA Services Federal Government is looking for a Senior Cyber Threat Analyst.  The ideal candidate will have a demonstrated work history analyzing cyber threats and security and determining indicators of compromise that are relevant to a large IT operating environment. The focus of this opportunity is daily / operational, leveraging Threat Intelligence tools (SIEMs, Vulnerability tools, Security Gateways such as Imperva), with the goal of identifying in real-time indicators of Threats and Compromise, performing additional investigation activity, and working with other Security Ops teams and System Owners to conclusively address and close-out any security Alerts or Incidents.

 

Responsibilities:

  • Provide proactive event monitoring of the following security tools for targeted threats and malicious activity including but not limited to: Splunk, Juniper Networks, McAfee, Cisco, Netscout, Sourcefire Defense Center and Bigfix.
  • Identify Open Source Intelligence threats relevant to the environment and develop relevant reports
  • Document any threat intelligence exchanges and report/integrate IAW documented processes.
  • Develop and provide a Cyber Threat Intelligence Report, Monthly Report and Quarterly Report and an Annual Report.
  • Establishes procedures for handling, storing, and keeping sensitive records, and for granting personnel and visitor access to restricted records and materials as needed.
  • Provide daily (business day) collection(s) and dissemination(s) of a Zero-Day and Vulnerability Digest.
  • Responsible for Alerts and Issues which cannot be closed by more junior members of the CSOC team
  • Mentor and provide guidance to less experienced members of the CSOC team
  • Provide initial analysis of security intelligence feeds
  • Provide communication and escalation to senior intelligence analysts for severe intelligence findings.
  • Hunting for indicators of compromise, using various toolsets, based off intelligence gathered.
  • Takes an active part in the gathering, analysis, and communication of threat intelligence through the intelligence process

 

Required Qualification:

  • Bachelor’s Degree in IT or related field or equivalent years of experience
  • 5-7 years of directly related work experience
  • Must be a US Citizen with a current active Top Secret SCI security clearance

 

Skills:

  • Deep understanding of SIEM toolsets
  • Advanced knowledge of security and the ability to identify and evaluate policies and procedures to compliment the business objectives while protecting company personnel and assets
  • Knowledge of security intelligence threats and threat actors
  • Knowledge of log formats for syslog, http logs, DB logs and how to gather forensics for traceability back to event
  • Knowledge of packet capture and analysis
  • Experience with log management or security information management tools
  • Experience with Security Assessment tools (NMAP, Nessus, Metasploit, Netcat)
  • Ability to make information security risk determinations based off of threat intelligence analysis
  • Effective verbal and written communication skills
  • Strong Analytical and Problem Solving Skills, communication skills, customer service skills and strong attention to detail and organization skills

 

Desired:

Certifications such as:

  • Security Essentials – SEC401 (optional GSEC certification)
  • Intrusion Detection In Depth – SEC503 (optional GCIA certification)
  • GIAC Cyber Threat Intelligence – FOR578
  • Hacker Guard: Security Baseline Training – SEC464

 

 

This position is only available to those interested in direct staff employment opportunities with NTT DATA, Inc. or its subsidiaries.  Please note, 1099 or corp-2-corp contractors or the equivalent will NOT be considered. We offer a full comprehensive benefits package that starts from your first day of employment.                                                                                

                     

About NTT DATA Services

 

NTT DATA Services partners with clients to navigate and simplify the modern complexities of business and technology, delivering the insights, solutions and outcomes that matter most. We deliver tangible business results by combining deep industry expertise with applied innovations in digital, cloud and automation across a comprehensive portfolio of consulting, applications, infrastructure and business process services.

 

NTT DATA Services, headquartered in Plano, Texas, is a division of NTT DATA Corporation, a top 10 global business and IT services provider with 118,000+ professionals in more than 50 countries, and NTT Group, a partner to 88 percent of the Fortune 100. Visit nttdataservices.com to learn more.

 

NTT DATA, Inc. (the “Company”) is an equal opportunity employer and makes employment decisions on the basis of merit and business needs.  The Company will consider all qualified applicants for employment without regard to race, color, religious creed, citizenship, national origin, ancestry, age, sex, sexual orientation, gender identity, genetic information, physical or mental disability, veteran or marital status, or any other class protected by law.  To comply with applicable laws ensuring equal employment opportunities to qualified individuals with a disability, the Company will make reasonable accommodations for the known physical or mental limitations of an otherwise qualified individual with a disability who is an applicant or an employee unless undue hardship to the Company would result.

 

 

 


Nearest Major Market: San Jose
Nearest Secondary Market: Palo Alto

Job Segment: Consulting, Cisco, Open Source, Information Security, Technology