NTT DATA Services strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking an Incident Response Security Engineer to join our team in Rockville, MD, USA.

NTT DATA is seeking an information security analyst who will be a key member of a consulting team providing advice and support, to federal agencies, in the Risk Management areas of Information Security. This role will be primarily responsible for conducting incident handling tasks during different phases of Computer Security Incident Response (CSIR) – monitoring, research, analysis of security alerts and events.

Key Responsibilities

Monitor and analyze security events and alerts from multiple sources, including security information and event management (SIEM) software, network and host-based intrusion detection systems, firewall logs, and system logs (Windows, Linux, and Unix), and databases
Separate true threats from false positives using network and log analysis and escalate possible intrusions and attacks
Initiate tickets, document, and escalate to leadership
Maintain a strong awareness of the current threat landscape
Track and document cyber defense incidents from initial detection through final resolution.
Employ approved defense-in-depth principles and practices (e.g., defense-in-multiple places, layered defenses, security robustness).
Gather and analyze information for defining requirements, specifications and issues to support the development of new policies, standards and procedures or update existing ones.
Work with a team of diverse individuals and cross-functional teams to solve unique and complex problems with broad impact on the business.
Provide clear updates to management on security incidents; Investigate, document, and report on forensic investigations
Able to exercise discretion and maintain confidentiality
Proficient in reporting and answering analytical questions using vulnerability data
Basic Qualifications Excellent teamwork skills
Knowledge of and experience with intrusion detection/prevention systems and SIEM software
Strong knowledge and understanding of network protocols and devices.
Strong experience with Mac OS, Windows, and Unix systems.
Ability to analyze event logs and recognize signs of cyber intrusions/attacks
Ability to handle high pressure situations in a productive and professional manner.
Strong written and verbal communication skills and the ability to present complex technical topics in clear and easy-to-understand language
Strong teamwork and interpersonal skills, including the ability to work effectively with a globally distributed team
Ability to provide tuning recommendations for security tools to tool administrators.
Work can be performed remotely but Govt customer is expecting candidates to visit client site once a quarter to Rockville, MD.
Strong knowledge of the following: SIEM
Packet Analysis
SSL Decryption
Malware Detection
EDR
Network Monitoring Tools
Email Security
Data Loss Prevention
Anti-Virus
Preferred Qualifications Experience in network/host vulnerability analysis, intrusion analysis, digital forensics, or related areas
2-4 years of hands-on SOC/TOC/NOC experience
GCIA, GCIH, GCFE, CISSP, Security +, Network +, CEH, RHCA, RHCE, MCSA, MCP, or MCSE preferred
Understanding of programming/scripting languages and ability to run basic database queries
Education Minimum bachelor’s degree in Information Security, Computer Science, or another IT-related field. Exceptional candidates with proven experience in security/network operations will also be considered.

Candidates for this position will be required to adhere to NTT DATA’s and its clients’ COVID-19 health and safety protocols. NTT DATA is committed to complying with the Safer Federal Workforce Task Force COVID-19 Workplace Safety Guidance for Federal Contractors and Subcontractors to the extent it is enforced by the federal government or any of its clients. If this position becomes subject to a COVID-19 vaccination mandate based on applicable law or client requirement, candidates will be required to become fully vaccinated as defined by NTT DATA or be approved for an exemption in accordance with applicable law.

In compliance with the Colorado Equal Pay Transparency Rules, NTT DATA provides a reasonable range of compensation for roles that may be hired in Colorado. For a candidate in the state of Colorado only, the starting pay range for this role is $95k to $140k. Actual compensation will depend on a number of factors, including actual work location, relevant experience (internal or external), technical skills, and other qualifications.

#INDPUBLIC

About NTT DATA Services

NTT DATA Services is a global business and IT services provider specializing in digital, cloud and automation across a comprehensive portfolio of consulting, applications, infrastructure and business process services. We are part of the NTT family of companies, a partner to 85 % of the Fortune 100.

NTT DATA Services is an equal opportunity employer and considers all applicants without regarding to race, color, religion, citizenship, national origin, ancestry, age, sex, sexual orientation, gender identity, genetic information, physical or mental disability, veteran or marital status, or any other characteristic protected by law. We are committed to creating a diverse and inclusive environment for all employees. If you need assistance or an accommodation due to a disability, please inform your recruiter so that we may connect you with the appropriate team.