Associate Information Security Analyst at NTT Ltd

Key responsibilities:

• Assists with monitoring security alerts and events from various sources.
• Assists with investigating potential threats and escalates incidents as necessary.
• Assists in the implementation and monitoring of security controls, including firewalls, intrusion detection systems, and access controls.
• Assists with performing regular vulnerability assessments, analyses scan results, and assists in prioritising and remediating identified vulnerabilities.
• Supports the incident response team in investigating security incidents, documenting findings, and participating in remediation efforts.
• Assists in ensuring compliance with industry standards (for example, GDPR, ISO 27001) by conducting assessments and implementing necessary controls.
• Installs security measures and operates software to protect systems and information infrastructure, including firewalls and data encryption programs
• Documents security breaches and assess the damage they cause.
• Works with the security team to perform tests and uncover network vulnerabilities.
• Fixes detected vulnerabilities to maintain a high-security standard.
• Develops organizational best practices for IT security.
• Supports with penetration testing and upgrading of systems to unable security software.
• Installs and upgrades antivirus software and assists with testing and evaluating new technology.
• Assists with the installation of security software and understands information security management.
• Researches security enhancements and makes recommendations to management.
• Stays abreast of information technology trends and security standards.
• Contributes to security awareness initiatives by creating training materials, conducting workshops, and educating employees about best security practices.
• Maintains accurate records of security incidents, assessments, and actions taken for reporting and audit purposes.
• Assists in the management and maintenance of security tools, including antivirus software, encryption tools, and security information and event management (SIEM) systems.
• Participates in risk assessments to identify potential security threats, vulnerabilities, and associated risks to the organization.
• Collaborates with cross-functional teams, IT, and other teams to ensure security measures are integrated into the organization's processes and projects.
• Performs any other related task as required.

To thrive in this role, you need to have:

• Good communication skills to effectively convey technical information to non-technical stakeholders.
• Good analytical thinking and problem-solving skills to prevent hacking on a network.
• Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
• Understands firewalls, proxies, SIEM, antivirus, and IDPS concepts.
• Understands patch management with the ability to deploy patches in a timely manner whilst understanding business impact.
• Some proficiency with MAC and OS.
• Familiarity with security frameworks, standards, and regulations (for example, NIST, CIS, GDPR).
• Basic understanding of network and system architecture, protocols, and security controls.
• Ability to analyze security incidents and assess potential risks.
• Ability to work both independently and collaboratively in a fast-paced environment.

Academic qualifications and certifications:

• Bachelor's degree or equivalent in information security, cybersecurity, computer science, or related.
• Security certifications such as CompTIA Security+ are advantageous