Cybersecurity Engineer

• Work closely with enterprise architects, other functional-area architects, engineering, and security specialists to ensure adequate security solutions and controls are in place
• Assess and understand NTT DATA Services’ current security posture and future architecture, providing a viable solution path to bridge the gap
• Assess and understand the current and planned security posture for platforms (e.g. servers, databases, web servers), providing recommendations for improvement and risk reduction
• Provide security subject matter expertise on cloud control implementation for enterprise-scale projects
• Serve as a security expert in application development, database design, network and/or platform (operating system) efforts
• Design security configuration standards, procedures, and guidelines for platforms
• Design and implement mechanisms for assessing bi-modal compliance with the standards, procedures, and guidelines
• Identify and execute on opportunities to automate cloud security controls
• Design and build controls to address security risks and events as identified
• Define clear, concise, and executable standard operating procedures and documentation for any implemented solutions for formal operational handoff
• Recognize, adopt, and instill industry leading practices in security engineering throughout the organization
• Provide subject matter expertise on, and conduct in-depth security reviews of, new OS, database, middleware, etc. solutions
• Identify and propose process improvements and identify opportunities for new processes and procedures to reduce risk
• Support security incident response as required
• Researches, designs, and advocates new technologies and security products
• Contributes to the development and maintenance of the information security strategy
• Evaluates and develops secure solutions, based on approved security architectures
• Analyzes business impact and exposure, based on emerging security threats, vulnerabilities and risks
• Communicates security risks and solutions to business partners and IT staff
• Embrace a culture of continuous service improvement and service excellence
• Stay up to date on security industry trends

• Several years of experience in the Information Security space
• Strong experience in CrowdStrike (at least one of these tools: EDR, CSPM, Next-Gen SIEM, Identity protection)
• Knowledge of Qualys (at least one of these tools: VMDR, Container Security, Policy Audit)
• Knowledge of Proofpoint, Cosmos, Cribl, Clutch, Zscaler, TheHive (Automation tools)
• Strong experience with security strategy
• Strong experience in migrating enterprise companies from traditional data center infrastructure, application and data designs to hybrid or fully-cloud enabled practices
• Strong experience with cloud provider ecosystems, including Amazon AWS, Microsoft Azure, and OpenStack
• Strong experience with a broad range of security technologies, including NextGen Firewalls, DLP, NAC, IDS/ IPS, IdAM, Certificate Management, SIEM, Endpoint Protection, Anti-malware, vulnerability management
• Strong experience with multiple relational database platforms, including MSSQL, Oracle, MySQL
• Strong oral, written, and presentation abilities
• Some experience with Unix/Linux and Windows system administration/Cloud Access Security Brokers (CASB) as well as Linux OS troubleshooting, NoSQL database platforms, including Mongo, Cassandra
• Some experience with logging and alerting platforms, including SIEM integration
• Knowledge of incident response methodologies and technologies

• Well-rounded background in network, host, database, and application security
• Experience implementing security controls in a bi-modal IT environment
• Experience driving a culture of security awareness
• Experience administering network devices, databases, and/or web application servers
• Professional IT Accreditations (CISM, CCSA, CCSE, JNCIA, CCNA, CISSP, CCIE Security)

Comprehensive, locally competitive benefits package