Req ID: 338084
NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.
We are currently seeking a Cyber Defense Analyst & Incident Responder to join our team in Merrifield, Virginia (US-VA), United States (US).
All of the duties listed support one or more of the following cybersecurity related functions: Information Security, SPAA, incident response, cyber security, insider threat, computer forensics, vulnerability assessment and management, network data capture, intrusion detection, log management, auditing, security incident and event management (SIEM), and penetration testing.
Personnel assigned to this role will serve primarily on the Operations & Response (O&R) Team; however, this role may also support the Vulnerability Assessment and Penetration Test (VAPT) and Engineering teams. This role is also responsible for coordinating with both the Cybersecurity Services Section and other sections or divisions within the organization.
Job Duties:
Perform network security monitoring and incident response for a large organizationCoordinate with other government agencies to record and report incidentsMaintain records of security monitoring and incident response activities, utilizing case management and ticketing technologiesMonitor Security Information and Event Management (SIEM) to identify security issues for remediationRecognize potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information.Communicate alerts to agencies regarding intrusions and compromises to their network infrastructure, applications and operating systemsAssist with implementation of counter-measures or mitigating controlsSupport efforts to consolidate and conduct comprehensive analysis of threat data obtained from classified, proprietary, and open source resources to provide indication and warnings of impending attacks against unclassified and classified networksSupport Team Lead on developing recommendations for changes to Standard Operating Procedures and other similar documentationMonitor and reviews logs from existing security tools and creates new security tool signatures to ensure maximum performance and availabilityPerform all aspects of intrusion detection, log and audit management, network and database vulnerability assessment and compliance management, and security configurationInstall, configure, troubleshoot, and maintain server configurations (hardware and software) to ensure their confidentiality, integrity, and availabilityManage accounts, security devices, and patches; responsible for access control/passwords/account creation and administrationAnalyze collected information to identify vulnerabilities and potential for exploitationProvide support in the identification, documentation, and development of computer and network security countermeasuresIdentify network and operating systems vulnerabilities and recommends countermeasuresSupport the deployment and integration of security tools as neededPrepare written reports, and provide verbal information security briefingsInvestigate, monitor, analyze, and report on information security incidentsResponds to crisis or urgent situations within the pertinent domain to mitigate immediate and potential threats.Use mitigation, preparedness, and response and recovery approaches, as needed to maximize information security.Provide incident handling support for incident detection, analysis, coordination, and responseMonitor network to actively remediate unauthorized activitiesMonitor intrusion detection sensors and log collection hardware and software to ensure systems are collecting relevant dataMonitor all security systems to ensure maximum performance and availabilityAnalyze computer security threat information from multiple sources, disciplines, and agencies across
Basic Qualifications:
Bachelor’s degree in computer science, information systems analysis, science/technology, information management, computer engineering, or electrical/electronic engineering or equivalent combination of education and work experienceHigh School Diploma + 4 additional years of experience = Associate's DegreeAssociate's Degree + 4 additional years of experience = Bachelor's DegreeMinimum 5 years of experience supporting federal IT contracts in a technical/IT capacityMinimum 3 years of experience in information system security, computer forensics, or insider threat, to include:Performing requirements analysis, program development activities, architecting, engineering, integrating, developing and/or deploying information technology products (hardware and software) in an enterprise environment.Vulnerability assessment, analysis, and mitigation; analyzing security system logs, security tools, and data; network monitoring, and intrusion detection using host-based and network-based intrusion detection systems (IDS) and log management applications; testing, installing, patching, and upgrading computer hardware and operating systems (Windows, and UNIX) in an enterprise environment; identifying, collecting, processing, documenting, reporting, cyber security/incident response events; architecting, engineering, developing and implementing cyber security/incident response policies and procedures; engineering, testing, installing, patching, and upgrading various information security hardware and software applications.Experience using one or more of the following security tools: SourceFire, Arcsight, Splunk, NetWitness, Guidance Software, Digital Guardian, SureView, Intelliview, Nessus, and Foundstone.Penetration testing experience for networks, web applications, and enterprise systems. Experience with Federal cybersecurity standards, industry best practices and guidelines.Active Secret security clearance required with ability to obtain a TS clearance
About NTT DATA
NTT DATA is a $30 billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long term success. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure and connectivity. We are one of the leading providers of digital and AI infrastructure in the world. NTT DATA is a part of NTT Group, which invests over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. Visit us at us.nttdata.com
Whenever possible, we hire locally to NTT DATA offices or client sites. This ensures we can provide timely and effective support tailored to each client’s needs. While many positions offer remote or hybrid work options, these arrangements are subject to change based on client requirements. For employees near an NTT DATA office or client site, in-office attendance may be required for meetings or events, depending on business needs. At NTT DATA, we are committed to staying flexible and meeting the evolving needs of both our clients and employees. NTT DATA recruiters will never ask for payment or banking information and will only use @nttdata.com, @nttdatafed.com and @talent.nttdataservices.com email addresses. If you are requested to provide payment or disclose banking information, please submit a contact us form, https://us.nttdata.com/en/contact-us.
NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https://us.nttdata.com/en/contact-us. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here. If you'd like more information on your EEO rights under the law, please click here. For Pay Transparency information, please click here.