SOC Analyst L2
Job Summary
Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations and for making a difference to our clients and society. Our workplace embraces diversity and inclusion its a place where you can grow belong and thrive.
Your day at NTT DATA
The Security Managed Services Engineer (L2) is a developing engineering role responsible for providing a managed service to clients to ensure that their Security Infrastructures and systems remain operational.Through the proactive monitoring identifying investigating and resolving of technical incidents and problems this role is able to restore service to clients.
The primary objective of this role is to proactively review client requests or tickets and apply technical/process knowledge to resolve them without breaching service level agreement (SLA) and focuses on second-line support for incidents and requests with a medium level of complexity.
The Security Managed Services Engineer (L2) may also contribute to / support on project work as and when required.
What youll be doing
Academic Qualifications and Certifications:
- BE/BTech in Electronics/EC/EE/CS/IT Engineering or MCA
- At least one security certification such as CCNA Security CCSA CEH CompTIA GCIH/GCIA
Required Experience:
- At least one SIEM solution certifications with one or more SIEM/ Security solutions (i.e. RSA NetWitness Splunk ES Elastic ELK HP ArcSight IBM QRadar Log Rhythm).
- Minimum overall 5 years of experience in handling security related products & services in a reputed organization out of which 3 years experience should be in SIEM solution.
- Person should have adequate knowledge of security devices like firewalls IPS Web Application Firewall DDOS EDR Incident response SOAR and other security devices
- Administration of SIEM environment (e.g.: deployment of solution user management managing the licenses upgrades and patch deployment addition or deletion of log sources configuration management change management report management manage backup and recovery etc.)
- Construction of SIEM content required to produce Content Outputs (e.g. filters active lists correlation rules reports report templates queries trends variables)
- Integration of customized threat intelligence content feeds provided by the Threat Intelligence & Analytics service
- Identifies possible sensor improvements to prevent incidents
- Collects/updates threat intelligence feeds from various sources
- Creates situational awareness briefings
- Co-ordinates with the different departments for incident analysis containment and remediation
- Liaise with Security monitoring team to discover repeatable process that lead to new content development
- Provides engineering analysis and architectural design of technical solutions
- Knowledge of networking protocols and technologies and network security
- Sound analytical and troubleshooting skills
Key Responsibilities:
- Monitors client infrastructure and solutions.
- Identifies problems and errors prior to or when they occur.
- Routinely identifies common incidents and opportunities for avoidance as well as general opportunities for incident reduction.
- Investigates first line incidents assigned and identifies the root cause of incidents and problems.
- Provides telephonic or chat support to clients when required.
- Schedules maintenance activity windows for patching and configuration changes.
- Follows the required handover procedures for shift changes to ensure service continuity.
- Reports and escalates incidents where necessary.
- Ensures the efficient and comprehensive resolutions of incidents and requests.
- Updates existing knowledge articles or create new ones.
- Identifies opportunities for work optimization including opportunities for automation of work request fulfilment incident resolution and other general process improvement opportunities.
- May also contribute to / support on project work as and when required.
- May work on implementing and delivering Disaster Recovery functions and tests.
- Performs any other related task as required.
Workplace type:
On-site WorkingAbout NTT DATA
NTT DATA is a $30 billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting data and artificial intelligence industry solutions as well as the development implementation and management of applications infrastructure and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age race colour gender sexual orientation religion nationality disability pregnancy marital status veteran status or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
Required Experience:
IC
About Company
NTT drives innovation globally with human-centered technology, creating a connected future for people and communities.