Principal Security Analyst at NTT Ltd.

Key Roles and Responsibilities:

• Planning, designing, and deploying security solutions.
• Collaborating with solutions architects.
• Maintaining and supporting complex security environments.
• Troubleshooting and resolving complex security issues.
• Assesses the risk of new vulnerabilities and zero-day threats and report recommendations.
• Customer engagement is conducted at a high professional level, with presence required on major incident bridges for the most complex technical engagements. Must demonstrate the ability to delegate lower complexity tasks to engineers and technicians.
• Provide quality assurance to team members.
• The individual demonstrates excellent administration ability in the form of proposal and report writing, and general project documentation development.
• The principal analyst is expected to take leadership for relevant technologies according to his/her specialisation.
• The individual displays a good understanding of business principles. At this level, individuals own high complexity design work, with guidance to the design expected. Mentorship of engineers is expected.
• Work overtime as required.
• Assist with standby as required
• Performing other tasks as defined, planned, and approved by leadership
• Monitors the external environment to gather intelligence on emerging threats, vulnerabilities, and technology.
• Creates reports and technology roadmaps and shares knowledge and insights with others.
• Work independently, with general direction from the client, stakeholders, team lead, or senior manager, to perform operational tasks to resolve all escalated incidents/requests in a timely manner within the agreed SLA.
• Timely and consistent updates of tickets with resolution tasks performed.
• Proactively identify, investigate, analyse issues and errors prior to or when they occur and log all such incidents in a timely manner. Capture all required and relevant information for immediate resolution.
• Provide forth level support to all escalated incidents, requests and identify the root cause of incidents and problems, respond to tickets where third line engineer teams were unable to fix the problem.
• Share such knowledge, to resolve issues, document them, and push the knowledge down to other engineers.
• Communicate with other teams and clients for extending support. Act as emergency support contact as needed, for critical client and business-impacting issues.
• Support, track, and document change implementation
• Proactively identify, contribute, implement, and work with automation teams for effort optimization and automating routine tasks
• Performs quality audits, covering process, service experience, ticket updates, etc as required.

Knowledge, Skills, and Attributes:

• Excellent proficiency in change management process with an ability to plan, monitor and execute changes with clear identification of risks and mitigation plans to be captured into the change record
• Deep technical skills in relevant functions
• Excellent client service orientation and passion for achieving or exceeding expectations
• Excellent written and verbal communication skills
• Ability to communicate and work across different cultures and social groups
• Ability to plan activities and projects well in advance, and considers possible changing circumstances
• Ability to maintain a positive outlook at work
• Ability to work well in a pressurized environment
• Ability to work hard and put in longer hours when it is necessary
• Ability to apply active listening techniques such as paraphrasing the message to confirm understanding.
• Successful leader traits
• Problem solving skills with the ability to interpret and analyse data
• Security Frameworks, Standards and Best Practices:
• Experienced in multiple domains of cybersecurity
• Recognised subject matter expert
• Certifications (beneficial)
• Up to date and relevant ITIL certification
• CISSP, CEH, CISSP-ISSAP, TOGAF, CASP+
• Microsoft Azure certified Architect

Required Experience

• Minimum of 5 years information security related experience
• Experience in security architecture methodologies, tools and enablers.
• Hands-on experience with implementation and monitoring of various IT Security solutions.
• Excellent understanding of IT operational processes and controls including project deployments.
• Excellent understanding of regulatory requirements facing the IT environment (PCI DSS, POPIA, GDPR).
• Must be persuasive and be able to communicate cybersecurity related concepts to a broad range of technical and non-technical staff.
• Be able to map business needs to technology solutions.
• Solid understanding of security risks and preventative controls.
• Understand IaaS/PaaS/SaaS security deployments, native cloud security tools
• CASB/CSPM/CWPP capabilities.
• Substantial managed services experience
• Excellent knowledge and experience in ticketing tools, preferably 4Me /Service Now
• Worked in multiple large Global Enterprise client outsourcing projects
• Vendor management experience

Additional Job Description

• Standard career level descriptor for job level:
• Have specialised security expertise in on-premises and cloud hosted architecture.
• Works on significant issues
• Exercises independent judgment in methods, techniques and evaluation criteria to obtain results
• May supervise the activities of others
• #Dimensiondatacareers
• What will make you a good fit for the role?

Technical Knowledge:

• SIEM/SOC technologies (Azure Sentinel)
• Vulnerability Management
• Threat/risk analysis
• Firewall/IPS/IDS
• XDR Endpoint protection
• Penetration testing
• Ethical Hacking
• Azure Cloud security