Security Center Operations Advisor

Security Center Operations Advisor

NTT Data
4-6 years
Not Specified

Job Description


Req ID: 132201
NTT DATA Services strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.
We are currently seeking a Security Center Operations Advisor to join our team in Noida, Uttar Pradesh (IN-UP), India (IN).
#LI-INAPAC
  • Conduct threat hunting and analysis using various toolsets based on intelligence gathered.
  • Actively hunt for Indicators of Compromise (IOC) and APT Tactics, Techniques, and Procedures (TTP) in the network and in the host as necessary.
  • Search network flow, PCAP, logs, and sensors for evidence of cyber-attack patterns, and hunt for Advanced Persistent Threats (APT)
  • Create tickets to block identified threats, manage created tickets to insure timely completion.
  • Create reports on Threat Hunts, Threat briefs, Tickets and Findings
  • Collaborate with the other security teams to contain and investigate major incidents
  • Attend weekly meetings with the client to review reports, use cases as well as new threats concentrating on risk reduction
  • Bachelor's degree in related filed, to include computer science, or equivalent combination of education and experience

Basic Qualifications:
  • 4 -6 years of SIEM, or LogRhythm experience
  • Strong communication, written, and verbal skills
  • Experience with writing/creation of formal documentation such as reports, slide decks, and architecture diagrams
  • Root cause analysis experience, getting to the root cause, problem solving
  • Investigative and analytical problem-solving skills
  • Customer service/support experience

Nice to Have :
  • LogRhythm certification
  • Coding or scripting experience
  • Familiarity with Unix/Linux
  • Security+, GIAC, SSGB, ITIL, or similar certification
  • Working knowledge of applicable industry controls such as NIST 800-53

Leads the Cyber Threat Hunt function with SOC Analysts, Incident Responders and Threat Managers.
Conduct threat hunting and analysis using various toolsets based on intelligence gathered -
Actively hunt for Indicators of Compromise (IOC) and APT Tactics, Techniques, and Procedures (TTP) in the network and in the host as necessary.
Search network flow, PCAP, logs, and sensors for evidence of cyber-attack patterns, and hunt for Advanced Persistent Threats (APT)
Create detailed Incident Reports and contribute to lessons learned in collaboration with the appropriate team
Collaborate with the SOC and Threat Analysts to contain and investigate major incidents
Works with vulnerability management resources to uncover and prioritize potential risks and makes specific recommendations to reduce the threat landscape and minimize risk.
Provide simple and reusable hunt tactics and techniques to a team of security engineers, SIEM specialists, and SOC analysts
Work with leadership and the engineering team to improve and expand available toolsets
Analyze network perimeter data, flow, packet filtering, proxy firewalls, and IPS/IDS to create and implement a concrete plan of action to harden the defensive posture
Monitor open source and commercial threat intelligence for IOCs, new vulnerabilities, software weaknesses, and other attacker TTPs

About NTT Data

NTT DATA Services is a global business and IT services provider specializing in digital, cloud and automation across a comprehensive portfolio of consulting, applications, infrastructure and business process services. We are part of the NTT family of companies, a partner to 85 % of the Fortune 100. NTT DATA Services is an equal opportunity employer and will consider all qualified applicants for employment without regard to race, gender, disability, age, veteran-status, sexual orientation, gender identity, or any other class protected by law. #LI-INAPAC

Similar Jobs

People Also Considered

Career Advice to Find Better