Share this Job

Cyber Defense Analyst

Apply now »

Date: Jun 24, 2021

Location: Plano, TX, US

Company: NTT DATA Services

Req ID: 123348 

NTT DATA Services strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a Cyber Defense Analyst to join our team in Plano, Texas (US-TX), United States (US).

Role Purpose

The Cyber Defense Incident Responder investigates, analyzes and responds to cyber incidents within the organization. The primary goal of this role is to effectively remove threats from the network environment while minimizing damages and restoring normal operations as quickly as possible.

 

 

Responsibilities

As a direct report to the Sr. Director of Security Operations, you will have the following accountabilities:

  • Detect, respond and recover from identified computer security incidents in a timely manner
  • Perform remote triage across Windows, Mac and various Linux platforms to include volatile memory acquisition and targeted file system artifact extractions
  • Develop actionable leads during initial response and deploy generated IOCs in automated fashion to identify additional systems of interest while determining the scope of compromise
  • Analyze multiple sources of evidentiary data (e.g. endpoint artifacts, network packet captures, webserver and database traffic logs, sandbox reports) to validate and prioritize remediation efforts
  • Perform forensically sound collection of disk images with documented evidence preservation
  • Coordinate and provide expert technical support to teammates and other enterprise-wide teams to assist with eradication, recovery and any necessary post-incident activities
  • Produce high-quality written and verbal reports, presentations, recommendations and incident findings to senior leadership and customer delivery executives
  • Additional responsibilities include security technology management, endpoint and network defense continuous monitoring, vulnerability remediation, post-incident posturing and SIEM tuning
  • Ability to accommodate flexible works hours to meet surge needs of team

 

 

 

Abilities

Highly analytical individual contributor with a strong attention to detail and structured approach to problem solving Ability to effectively communicate technical concepts to audiences with varying technical prowess Familiarity with the MITRE ATT&CK, OWASP Top 10 and 20 CIS Controls Security Certifications (SANS GIAC, ISC2, OSCP or other vendor security certifications)

 

Skills

  • Experience in running investigations and computer forensic examinations without supervision
  • Strong understanding of common enterprise technologies and common network protocols Strong understanding of Microsoft Active Directory and Azure environments
  • Knowledge of malicious code analysis and reverse-engineering
  • Experience programming/scripting in Python, PowerShell, Bash, Java, C or C++ Strong experience with system administration and native command line utilities
  • Knowledge of common attacker TTPs with emphasis on persistence, privilege escalation, lateral movement, command and control and anti-forensics techniques
  • Current understanding of industry trends and emerging threats
  • Bonus points for experience with CrowdStrike Falcon, Exabeam UEBA, Tanium or X-Ways

 

 

Key Qualifications

Experience

  • 5+ years of experience in technical IT security or related job role
  • 3+ years of threat detection or incident response experience
  • 3+ years of host or network-based forensics examination experience Bachelor’s Degree in Information Security or related discipline or the equivalent of 6 years or more in the industry as job experience

#LI-NAM

"INDSALES"

About NTT DATA Services

NTT DATA Services is a global business and IT services provider specializing in digital, cloud and automation across a comprehensive portfolio of consulting, applications, infrastructure and business process services. We are part of the NTT family of companies, a partner to 85 % of the Fortune 100.

NTT DATA Services is an equal opportunity employer and will consider all qualified applicants for employment without regard to race, gender, disability, age, veteran-status, sexual orientation, gender identity, or any other class protected by law.


Nearest Major Market: Plano
Nearest Secondary Market: Dallas

Job Segment: Consulting, Database, Developer, Java, Linux, Technology