Information Security- Security Analysis Advisor

Role Overview
The NTT DATA Services Security Analysis Advisor works closely with the Information Security Manager (ISM) to ensure the seamless delivery of all information security services that NTT DATA provides to the customer.

Role Responsibilities (high level summary of key duties)

The responsibilities of the Security Analysis Advisor include:

1. Assess the Life Cycle Management of security architecture and report on expiring technologies, licenses and maintenance agreements.
2. Perform periodic comparisons between the CMDB and vulnerability scan as well as other asset inventory sources to ensure all NTT Data managed devices are properly configured for NTT Data security services (i.e., SIEM, Anti-Virus, Encryption, etc.,).
3. Collect, review, report external threat metrics and track its remediation (with SOM request to respective team)
4. Collect and analyze security reports/evidence and draw conclusions based on the tracking & trending.
5. Work with the ISM to distribute required reports to executive stakeholders/customers.
6. Work across various Security support teams to assemble required reports for weekly and monthly security operations client meetings.
7. Review, update and maintain Information Security policies and supporting documentation (e.g., standards, procedures and guidelines)
8. Monitor security incident tickets to ensure security events are being properly serviced and that associated SLAs are met.
9. Review and respond to Security Incidents, track and collaborate its timely resolution. Responsible for managing the queue for tracking, trending and aging of ticket. Proficient with ITSM tools (e.g., SOM, Remedy, etc.).
10. Collaborate with cross-functional teams and customer on security projects & tasks (patching, audit, etc.) and provide security guidance/recommendations wherever needed. Convene and coordinate internal meetings with stakeholders, attend and provide inputs in CAB/TCAB, SecOps meetings. Etc.

Required Qualifications:
5+ years of relevant experience
Proficient knowledge of MS Office tools such as Word, PowerPoint and Excel in order to analyze complex data sets and generate required reports.
Applied knowledge of risk management concepts
Experience with information security internal & external audits, contract compliance, and quality initiatives
Working knowledge of Security tools like Firewall, VPN, Antivirus, IPS/IDS, Content Filtering, etc. Knowledge of SIEM/SOC, Vulnerability Management, etc. Collect and analyze their reports for tracking and trending (trend chart) and distribution to executive stakeholders/customers. Maintain conclusive reports and statistics for each of the security services.

Preferences:
At least one of the following certifications: CISSP, CISM, SSCP or CEH
College degree or commensurate experience.
Customer relationship management experience.
Knowledge and application of Globally Accepted Information Security Principles
Strong knowledge of network security that pertains to communications, computer system environments and related infrastructures
Advanced verbal and written communications skills with the ability to communicate information to a variety of audiences
Organizational skills and ability to work on multiple projects and/or assignments simultaneously.
Demonstrated ability to coordinate cross-functional teams toward task completion

Role Overview
The NTT DATA Services Security Analysis Advisor works closely with the Information Security Manager (ISM) to ensure the seamless delivery of all information security services that NTT DATA provides to the customer.

Role Responsibilities (high level summary of key duties)

The responsibilities of the Security Analysis Advisor include:

1. Assess the Life Cycle Management of security architecture and report on expiring technologies, licenses and maintenance agreements.
2. Perform periodic comparisons between the CMDB and vulnerability scan as well as other asset inventory sources to ensure all NTT Data managed devices are properly configured for NTT Data security services (i.e., SIEM, Anti-Virus, Encryption, etc.,).
3. Collect, review, report external threat metrics and track its remediation (with SOM request to respective team)
4. Collect and analyze security reports/evidence and draw conclusions based on the tracking & trending.
5. Work with the ISM to distribute required reports to executive stakeholders/customers.
6. Work across various Security support teams to assemble required reports for weekly and monthly security operations client meetings.
7. Review, update and maintain Information Security policies and supporting documentation (e.g., standards, procedures and guidelines)
8. Monitor security incident tickets to ensure security events are being properly serviced and that associated SLAs are met.
9. Review and respond to Security Incidents, track and collaborate its timely resolution. Responsible for managing the queue for tracking, trending and aging of ticket. Proficient with ITSM tools (e.g., SOM, Remedy, etc.).
10. Collaborate with cross-functional teams and customer on security projects & tasks (patching, audit, etc.) and provide security guidance/recommendations wherever needed. Convene and coordinate internal meetings with stakeholders, attend and provide inputs in CAB/TCAB, SecOps meetings. Etc.

Required Qualifications:
5+ years of relevant experience
Proficient knowledge of MS Office tools such as Word, PowerPoint and Excel in order to analyze complex data sets and generate required reports.
Applied knowledge of risk management concepts
Experience with information security internal & external audits, contract compliance, and quality initiatives
Working knowledge of Security tools like Firewall, VPN, Antivirus, IPS/IDS, Content Filtering, etc. Knowledge of SIEM/SOC, Vulnerability Management, etc. Collect and analyze their reports for tracking and trending (trend chart) and distribution to executive stakeholders/customers. Maintain conclusive reports and statistics for each of the security services.

Preferences:
At least one of the following certifications: CISSP, CISM, SSCP or CEH
College degree or commensurate experience.
Customer relationship management experience.
Knowledge and application of Globally Accepted Information Security Principles
Strong knowledge of network security that pertains to communications, computer system environments and related infrastructures
Advanced verbal and written communications skills with the ability to communicate information to a variety of audiences
Organizational skills and ability to work on multiple projects and/or assignments simultaneously.
Demonstrated ability to coordinate cross-functional teams toward task completion