Job Description

At NTT we believe that by using innovative technology we can solve global challenges and create a world that is sustainable and secure. We are looking for curious people, from diverse backgrounds, that are keen to work in a fast-paced and agile environment.
At NTT we trust our employees to do the right thing, even when no one is watching, which is why we offer flexibility in the workplace. The majority of our roles are hybrid, meaning we encourage a balance of working from home and our local office. Ask our recruitment team if this is a hybrid role. Want to be a part of our team? A fantastic opportunity to join one of the only pure play Cybersecurity provider’s Advanced Cyber Security Operations Centre (ASOC) team, based at home (there may be the very occasional travel to NTT offices and the client’s site). As a Security Analyst, you will be responsible for ensuring NTT LTD’s client is kept secure, by providing comprehensive insight into the client’s risk to threats by using the AttackIQ BAS (Breach Attack Simulation) Service provided to the client. Candidates will be required to participate in multiple intelligence communities and be able to disseminate pertinent information throughout the CSO, Management and client security operations. Working at NTT Key Roles and Responsibilities:

As the Security Analyst, you will be accountable for the following activities:

• Participate in the assessment of the level of risk and support the development of appropriate mitigation countermeasures in operational and non-operational situations.
• Gathering of Threat Intelligence to support development of appropriate Attack Scenarios to run with the Customer environment
• Manage and monitor the system to ensure that Attack Scenarios are working as expected
• Take part of "Fusion Team" meeting and plan AttackIQ Scenario assessments based on agreed parameters
• Production of Control Centric Test assessments taking into account the Customer Security infrastructure
• Production of reporting and analysis relating to Scenario outputs - Detection, Prevention and Remediation
• Monitoring of Platform performance and Daily Health Checks
• Incident Management of Platform related issues
• Management of Attack Scenario information and updates to Scenarios based on changing environmental and security factors
• Work with both the Customer and the Vendors to integrate additional Security Toolsets as required
• Operation of all agreed processes and development of CSI initiatives
• Participate in the implementation of policies, processes and guidelines to ensure the standardisation of security management throughout the Service.
• Collaborates with stakeholders to guide and functional and security requirements.
• Use both manual approaches and automated tools to identify, analyse, and report events and support the development of countermeasures to proactively protect against these threats in the future.

Knowledge, Skills and Attributes:

• Knowledge and understanding of IT industry environment and business needs
• Strong understanding of information technology and information security
• Solid understanding of security risks and preventative controls
• Excellent understanding of security operational processes and controls
• Service Operations aptitude, focusing on the service and platform operations aspects
• Excellent verbal and written communication skills
• Demonstrate impeccable attention to detail are able to work with Senior members of the team to translate internal customer requirements into solutions
• Maintain up-to-date knowledge of security threats, countermeasures, security tools, and network technologies
• High level of drive and ability to work under pressure
• Ability to build and maintain cross-functional relationships with a variety of stakeholders
• Academic Qualifications and Certifications:
• An IT related or Engineering tertiary qualification will be highly regarded
• Industry relevant certifications such as CISSP, CISM, CEH, GSEC or CompTIA Security+ desirable, but not essential

Required Experience:

As the Security Analyst, your skills and qualifications will include:

• Technically minded, able to follow instructions carefully, ability to work well with more technical people.
• 2-5 years’ experience as a Security analyst or similar, within a Managed Security Service industry or SOC
• An interest and understanding of red team / penetration testing techniques is essential, direct experience is desirable.
• Attention to detail
• Must have good understanding of the capabilities of a variety of Security control capabilities (AV, EDR, IDS/IPS, Proxy technologies, DLP controls, etc).
• Ideally has experience in Security Incident response.
• Excellent communicator, able to convey technical information to a varied audience (including other SME’s).
• Due to the nature of this Service, training will be provided for the Security toolset

Key technologies:

Note: Any awareness, experience or understanding around some of the vendor technology would be advantageous

• Defender
• Carbon Black
• ZScalar
• McAfee
• Palo Alto
• Squid Proxy
• Beyond Trust
• Vectra
• Tetration
• Barracuda WAF
• Forescout NAC
• Fortinet FortiGate
• Azure Information Protection
• BT Anti-DDoS
• Cisco ACI (micro segmentation)

What will make you a good fit for the role? Join our growing global team and accelerate your career with us. Apply today.



Equal opportunity employer NTT is proud to be an equal opportunity employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, color, sex, religion, national origin, disability, pregnancy, marital status, sexual orientation, gender reassignment, veteran status, or other protected category.