Share this Job

SIEM Engineer - REMOTE US

Apply now »

Date: Sep 8, 2022

Location: Plano, TX, US

Company: NTT DATA Services

Req ID: 189632 

NTT DATA Services strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a SIEM Engineer - REMOTE US to join our team in Plano, Texas (US-TX), United States (US).

This client-facing SIEM Engineer, will provide security log management to identify threats to the Customer’s in-scope environment.

 

This professional will also manage design, deploy, config, tune, and customize the NTT DATA SIEM (“Security Incident Event Management”) tool to protect Customer data. They will configure reports and dashboards to provide insight into Security Incidents.

 

Expectations: Remote within the United States

 

Other Key Role Responsibilities Include:

  • Provide a designated technical point of contact responsible for the quality of the managed security services delivered to customers
  • Monitor and record defined Security Alerts and Security Events
  • Classify Security Alert and Security Event severity based on industry standards
  • Provide initial assessment of Security Events and Security Alerts
  • Make a first attempt at resolving or escalating the Security Event to the appropriate customer contact, Third Party, or Third Party Vendors providing Application support as defined by  customer playbooks
  • Investigate Security Alerts and Security Events from integrated devices or systems to proactively identify any security-related issues
  • Continuously tune Security Alerts and their severity, and provide recommendations to customer about tuning the Security Events and Security Alerts from tools such as intrusion detection and prevention Systems, deep packet inspection devices, etc.
  • Gather intelligence by analyzing reports, interviewing Authorized Users, and examining logs to identify Security Events, risk, exposure, compliance, and suspicious activity throughout customer environment
  • Close Security Events, to include support case closure and, where applicable, root cause reporting; author, monitor, track, and communicate Security Event summary and reports back to customer
  • Provide reports to customer on violation and access attempts, and retain documentation of the investigation according to  customer playbooks or procedures
  • Promptly notify customer of all Priority 1 and Priority 2 security events and open a ticket automatically, unless specifically requested not to do so by the Customer
  • Identify, monitor, and escalate all Security Events in accordance with applicable Service Levels and, to the extent that such Security Event is escalated to a Cybersecurity Incident, in accordance with the requirements of the contract
  • Coordinate as needed and keep designated NTT DATA and customer authorized contacts informed on status and progress
  • Report compliance of systems involved in remediation efforts

 

Basic Required Qualifications:

  • 5+ Years Security SIEM experience
  • Must have admin experience with the following tools: Securonix and/or LogRhythm

 

Highly Preferred Skills:

  • Need to have Linux administration experience
  • Application Management
  • Security strategies
  • Vulnerabilities 
  • Tuning

 

#INDICS 

#LI-MIWS

About NTT DATA Services

NTT DATA Services is a global business and IT services provider specializing in digital, cloud and automation across a comprehensive portfolio of consulting, applications, infrastructure and business process services. We are part of the NTT family of companies, a partner to 85 % of the Fortune 100.

NTT DATA Services is an equal opportunity employer and considers all applicants without regarding to race, color, religion, citizenship, national origin, ancestry, age, sex, sexual orientation, gender identity, genetic information, physical or mental disability, veteran or marital status, or any other characteristic protected by law. We are committed to creating a diverse and inclusive environment for all employees. If you need assistance or an accommodation due to a disability, please inform your recruiter so that we may connect you with the appropriate team.


Job Segment: Linux, Consulting, Technical Support, Technology