Security Platform Engineer - JHB at NTT Ltd.

Key Responsibilities:

• Works as part of Platform and Content Engineering handling tunings, stake holder requests, escalations, reporting, trainings.
• Administers the organization's security tools to gather security logs from environment.
• Performs lifecycle management of the supported security tools/technologies, Break-fix, Patching, Live update.
• Adheres to SOPs and notify stake holders on log flow/log format issues.
• Documents best practices.
• Identifies opportunities to make automations which will help the incident response team.
• Performs security incident handling and response from several vectors including End Point Protection and Enterprise Detection and response tools, attack analysis, malware analysis, network forensics, computer forensics, and a broad range of skills in LAN technologies, Windows and Linux O/S’s, and general security infrastructure.
• Carries out agreed maintenance tasks.
• Ensures usage of knowledge articles in incident diagnosis and resolution and assist with updating as and when required.
• Performs defined tasks to monitor service delivery against service level agreements and maintains records of relevant information.
• Investigates causes of incidents and seeks resolution.
• Escalates unresolved incidents and follow up until incident is resolved.
• Provides service recovery, following resolution of incidents.
• Documents and closes resolved incidents according to agreed procedures.
• Investigates and identifies root cause of incidents and assist with the implementation of agreed remedies and preventative measures.
• Maintains knowledge of specific specialisms, provides detailed advice regarding their application.
• Ensures efficient and comprehensive resolution of incidents, including ensuring that repairs are carried out by coordinating product requests, working with other team members.
• Logs all such incidents in a timely manner with the required level of detail with all the necessary.
• Cooperates with all stakeholders including client IT environments, vendors and carriers to expedite diagnosis of errors and problems and to identify a resolution.

Knowledge and Attributes:

• Seasoned working knowledge on implementation and monitoring of security tools/technologies.
• Seasoned knowledge on security architecture, worked across different security technologies.
• Customer service orientated and pro-active thinking.
• Problem solver who is highly driven and self-organized.
• Great attention to detail.
• Good analytical and logical thinking.
• Excellent spoken and written communication skills.
• Team player with the ability to work well with others and in group with colleagues and stakeholders.

Academic Qualifications and Certifications:

• Bachelor's degree or equivalent in Information Technology or related field.
• Relevant level of Networking certifications such as CCNA, CCNP etc. preferred.
• Relevant level of Security certifications such as AZ-500, SC-200, Security+, CEH, CISSP, CISM etc. will be added advantage.

Required Experience:

• Seasoned experience in Security technologies (Cisco ISE.).
• Seasoned experience in technical support to clients.
• Seasoned experience in diagnosis and troubleshooting.
• Seasoned experience providing remote support in Security Technologies.
• Seasoned experience in handling security incidents end to end.
• Knowledge on networking, Linux and security concepts.
• Seasoned experience in configuring/managing security controls such as Firewall, IDS/IPS, EDR, NDR, UTM, Proxy, SOAR, HoneyPots and other security tools.
• Knowledge on log collection mechanism such as Syslog, Log file, DB API.
• Knowledge in security architecture.
• Seasoned experience in Security engineering.