Associate Information Security Analyst @ NTT DATA

Your day at NTT DATA
The Associate Information Security Services Analyst is an entry subject matter expert, responsible for supporting with the design and implementation of security systems to protect the organization's computer networks from cyber-attacks, and to help set and maintain security standards.This role assists with monitoring the organization's computer networks for security issues, installs security software, and documents any security issues or breaches found.The Associate Information Security Services Analyst is responsible for supporting with the planning, implementation, and management of information security measures to safeguard the organization's digital assets and systems and contributes to maintaining a secure and compliant environment.

Key responsibilities:

• Assists with monitoring security alerts and events from various sources.
• Assists with investigating potential threats and escalates incidents as necessary.
• Assists in the implementation and monitoring of security controls, including firewalls, intrusion detection systems, and access controls.
• Assists with performing regular vulnerability assessments, analyses scan results, and assists in prioritising and remediating identified vulnerabilities.
• Supports the incident response team in investigating security incidents, documenting findings, and participating in remediation efforts.
• Assists in ensuring compliance with industry standards (for example, GDPR, ISO 27001) by conducting assessments and implementing necessary controls.
• Installs security measures and operates software to protect systems and information infrastructure, including firewalls and data encryption programs
• Documents security breaches and assess the damage they cause.
• Works with the security team to perform tests and uncover network vulnerabilities.
• Fixes detected vulnerabilities to maintain a high-security standard.
• Develops organizational best practices for IT security.
• Supports with penetration testing and upgrading of systems to unable security software.
• Installs and upgrades antivirus software and assists with testing and evaluating new technology.
• Assists with the installation of security software and understands information security management.
• Researches security enhancements and makes recommendations to management.
• Stays abreast of information technology trends and security standards.
• Contributes to security awareness initiatives by creating training materials, conducting workshops, and educating employees about best security practices.
• Maintains accurate records of security incidents, assessments, and actions taken for reporting and audit purposes.
• Assists in the management and maintenance of security tools, including antivirus software, encryption tools, and security information and event management (SIEM) systems.
• Participates in risk assessments to identify potential security threats, vulnerabilities, and associated risks to the organization.
• Collaborates with cross-functional teams, IT, and other teams to ensure security measures are integrated into the organization's processes and projects.
• Performs any other related task as required.

To thrive in this role, you need to have:

• Good communication skills to effectively convey technical information to non-technical stakeholders.
• Good analytical thinking and problem-solving skills to prevent hacking on a network.
• Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
• Understands firewalls, proxies, SIEM, antivirus, and IDPS concepts.
• Understands patch management with the ability to deploy patches in a timely manner whilst understanding business impact.
• Some proficiency with MAC and OS.
• Familiarity with security frameworks, standards, and regulations (for example, NIST, CIS, GDPR).
• Basic understanding of network and system architecture, protocols, and security controls.
• Ability to analyze security incidents and assess potential risks.
• Ability to work both independently and collaboratively in a fast-paced environment.

Academic qualifications and certifications:

• Bachelor's degree or equivalent in information security, cybersecurity, computer science, or related.
• Security certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM) are advantageous.

Required experience:

• Entry level demonstrated experience in information security or cybersecurity, or related roles.
• Entry level demonstrated experience working in a global IT organization.
• Entry level demonstrated experience with computer network penetration testing and techniques.
• Entry level demonstrated experience with security assessment and vulnerability scanning tools