Siem Admin

**Make an impact with NTT DATA**
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion - it’s a place where you can grow, belong and thrive.

**Your day at NTT DATA**

The Security Managed Services Engineer (L3) is a seasoned engineering role, responsible for providing a service to clients by proactively identifying and resolving technical incidents and problems.

Through pre-emptive service incident and resolution activities, as well as product reviews, operational improvements, operational practices, and quality assurance this role will maintain a high level of service to clients.

The primary objective of this role is to ensure zero missed service level agreement (SLA) conditions and is responsible for managing tickets of high complexity, conducts advanced and complicated tasks, aware of client's high level and low-level security architecture and provides resolution to a diverse range of complex problems.

This position uses considerable judgment and independent analysis within defined policies and practices and applies analytical thinking and deep technical expertise in achieving client outcomes, while coaching and mentoring junior team members across functions.

The Security Managed Services Engineer (L3) may also contribute to / support on project work as and when required.

**What you'll be doing**

**Key Responsibilities**:
**Deployment and Configuration**:
Deploy, configure, and maintain the SIEM infrastructure based on the organization's security requirements.

Ensure the SIEM system is properly integrated with various log sources, including servers, network devices, and security appliances

**System Maintenance**:
Perform regular updates and patches to the SIEM system to ensure optimal performance and security.

Monitor the health and performance of the SIEM infrastructure, addressing any issues that arise

**Log Management**:
Manage the collection, normalization, and storage of log data from various sources.

Ensure the integrity and availability of log data for analysis and compliance purposes

**Rule and Use Case Development**:
Develop and fine-tune correlation rules, alerts, and dashboards to detect and respond to security incidents.

Continuously improve detection capabilities by creating new use cases based on emerging threats

**Incident Response Support**:
Assist the SOC team in investigating and responding to security incidents by providing relevant log data and analysis.

Participate in post-incident reviews to identify gaps and improve the SIEM system

**Documentation and Reporting**:
Maintain comprehensive documentation of the SIEM infrastructure, including configurations, changes, and incident response procedures.

Generate regular reports on SIEM performance, incident trends, and compliance metrics

**Collaboration and Training**:
Work closely with other IT and security teams to ensure seamless integration and operation of the SIEM system.

Provide training and support to junior staff and other stakeholders on SIEM-related topics

**Qualifications**:

- ** Experience**:3+ years of experience in SIEM administration or a related field.

Hands-on experience with SIEM platforms such as Sentinel, Arcsight, Splunk etc.
- ** Technical Skills**:Proficiency in managing and configuring SIEM systems.

Strong understanding of network protocols, log management, and security best practices.

Experience with scripting languages (e.g., Python, PowerShell) for automation
- ** Soft Skills**:Excellent problem-solving and analytical skills.

Strong communication skills, both written and verbal.

Ability to work independently and as part of a team
- ** Education**:Bachelor’s degree in Computer Science, Information Security, or a related field is preferred.

Relevant certifications such as CISSP, CISM, or vendor-specific SIEM certifications are a plus

SIEM Admin certification is desirable

**Workplace type**:
On-site Working

**About NTT DATA**

**Equal Opportunity Employer