Senior Information Security Incident Response Lead

Senior Information Security Incident Response Lead page is loaded

Senior Information Security Incident Response Lead

Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it's a place where you can grow, belong and thrive.

We are seeking an experienced Senior Incident Response Specialist to lead and execute advanced cybersecurity investigations. This is not an entry-level SOC role. You will be responsible for detecting, analyzing, and responding to security incidents, proactively hunting for threats, conducting forensic investigations, and contributing to vulnerability management through red teaming or penetration testing where applicable. Strong proficiency with EDR solutions, SIEM log platforms, incident case management tools, and forensic analysis tools is essential.

Key Responsibilities

• Lead and manage complex security incidents, acting as a key contact for stakeholders.
• Perform deep analysis of security alerts to identify, mitigate, and remediate threats.
• Conduct forensic investigations on compromised hosts, networks, and cloud environments.
• Proactively hunt for adversarial activity and anomalous behaviors across large datasets.
• Analyze malware samples (basic level) to determine functionality, impact, and mitigation strategies.
• Develop and refine detection rules, improving alert fidelity and response workflows.
• Contribute to threat intelligence gathering, analyzing attack patterns, and enhancing defensive strategies.
• Participate in red teaming or penetration testing activities to identify and remediate vulnerabilities.
• Provide strategic recommendations for improving the organization's security posture.
• Create detailed incident reports, threat intelligence assessments, and executive summaries.
• Mentor and provide guidance to junior analysts, fostering continuous improvement in IR methodologies.

Qualifications & Requirements

Education & Experience:

• Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field.
• Minimum of 5 years of experience in cybersecurity, with at least 2 years in incident response, threat hunting, or forensic analysis.

Technical Expertise:

• Extensive experience responding to targeted attacks from APT groups, cybercriminals, and nation-state actors.
• Strong forensic analysis skills across Windows, Linux, and macOS systems.
• Expertise in network forensics, traffic analysis, and packet inspection (Wireshark, Zeek).
• Proficiency in SIEM platforms (Splunk, Sentinel, QRadar) and EDR solutions (CrowdStrike, Microsoft Defender ATP).
• Knowledge of malware analysis techniques, including static and dynamic analysis.
• Familiarity with cloud security investigations (AWS, Azure, GCP).
• Strong scripting skills in Python, PowerShell, or similar languages for automation.
• Understanding of security architecture, authentication mechanisms, and enterprise IT operations is a plus.
• Experience with vulnerability management, red teaming, or penetration testing is a plus.
• Familiarity with MITRE ATT&CK framework and various cyber threat intelligence methodologies.

Preferred Certifications:

• GIAC (GCFA, GNFA, GCIH, GCIA, GREM)
• CISSP (Certified Information Systems Security Professional)
• CEH (Certified Ethical Hacker)
• OSCP (Offensive Security Certified Professional)
• Cloud Security Certifications (AWS Security Specialty, Microsoft Azure Security)

Key Competencies:

• Strong analytical and problem-solving skills in high-pressure situations.
• Ability to manage multiple investigations efficiently while meeting deadlines.
• Excellent verbal and written communication skills, with the ability to convey technical details to varied audiences.
• Strong team collaboration and leadership skills, with a proactive approach to knowledge sharing.
• Ability to work in a fast-paced environment and adapt to evolving threats and challenges.

Workplace type :

About NTT DATA
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.