Himalayas Remote / WFH Teknologi & IT Full Time

Information Security Incident Response Analyst

NTT Limited

United Kingdom Gaji dirahasiakan Diposting 1 hari lalu
Lokasi United Kingdom
Gaji Gaji dirahasiakan
Tipe Kerja Full Time · Remote
Negara Inggris

Deskripsi Pekerjaan

Informasi lengkap tentang posisi dan persyaratan

Ringkasan Yukerja

Lowongan Information Security Incident Response Analyst di NTT Limited kami kurasi dari Himalayas (kategori Teknologi & IT). Posisi ini ditandai sebagai remote — pastikan timezone dan syarat lokasi kandidat di deskripsi resmi. Yukerja.com bukan pemberi kerja — lamaran diproses di situs sumber resmi.

Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Job Description Summary

The Information Security Incident Response Analyst supports clients during security incidents by performing technical investigations, analyzing digital forensic evidence, and assisting with containment and remediation activities. This role focuses on identifying indicators of compromise, reconstructing attacker activity, and communicating clear, actionable findings.

The analyst works as part of a global DFIR team, handling a variety of incident types across diverse environments. They contribute to process improvements, maintain strong client communication, and continue building advanced DFIR skills through hands‑on investigations and internal project work.

Job Description

Key Responsibilities

  • Investigates security incidents by performing host, disk, memory, network, and cloud forensic analysis under established processes and guidance.
  • Analyzes artifacts across Windows, Linux, and macOS systems, helping reconstruct timelines and determine root cause.
  • Supports clients through containment and recovery efforts by providing technical recommendations and clear communication.
  • Participates in the team’s on‑call rotation for urgent incident response needs.
  • Completes internal and client tasks such as tabletop exercises, IR readiness assessments, basic forensic reviews, and environment hardening support.
  • Identifies observable gaps and risks within client environments and recommends improvements to strengthen security posture.
  • Produces accurate documentation—including investigation notes, status updates, and final reports.
  • Collaborates with global DFIR and other teams and stays current on threats, attacker techniques, and emerging forensic tools.

Knowledge and Attributes

  • Solid understanding of digital forensics fundamentals, including host‑based analysis across major operating systems.
  • Working knowledge of network forensics, cloud log analysis (e.g., Azure, AWS, GCP), and common forensic tools.
  • Ability to clearly communicate technical findings to both technical and non‑technical audiences.
  • Strong analytical and problem‑solving skills, especially during time‑sensitive investigations.
  • Motivated to continuously learn deeper DFIR techniques and methodologies.

Required Experience

  • Proven experience in incident response and digital forensics, with capability in host‑based, image, and log analysis.
  • Experience using SIEM, EDR, IDS/IPS, and other security tools to triage, investigate, and respond to incidents.
  • Ability to perform network analysis using tools such as Wireshark, tcpdump, and other tools.
  • Experience in cybersecurity operations, consulting, DFIR services, or related technical security roles.

Academic Qualifications, Certifications

  • Bachelor’s degree or equivalent experience in Information Technology, Computer Science, Cybersecurity, or a related discipline (preferred).
  • Relevant certifications such as:
    • SANS GIAC Security Essentials (GSEC) or equivalent preferred.
    • SANS GIAC Certified Intrusion Analyst (GCIA) or equivalent preferred.
    • SANS GIAC Certified Incident Handler (GCIH) or equivalent preferred.
    • GICSP – GIAC Global Industrial Cyber Security Professional
    • GRID – GIAC Response and Industrial Defense
    • GCIP – GIAC Critical Infrastructure Protection
    • ISA/IEC 62443 Cybersecurity Certificates (ISA/IEC 62443 Cybersecurity Fundamentals, etc.)
    • IC32/IC33/IC34
    • Any additional DFIR‑related certifications.

Additional UK‑Specific Role Requirements

UK Security Clearance

  • Active UK Security Clearance is required to deliver services within sensitive or regulated client environments.

Operational Technology (OT) Incident Response & Digital Forensics

  • Background and hands‑on experience in OT environments.
  • Experience investigating ICS/SCADA systems and industrial sectors such as manufacturing, energy, utilities, or critical infrastructure.
  • Ability to collect and analyze OT forensic artifacts, interpret OT protocols and system behavior, and assess the impact of cyber incidents on physical processes.
  • Experience with any of the following tools: Claroty CTD, Nozomi Guardian, Dragos Platform, Tenable.ot and/or Forescout/SCADAfence.

Workplace type:

Remote Working

About NTT DATA
NTT DATA is a $30+ billion business and technology services leader, serving 75% of the Fortune

Global 100. We are committed to accelerating client success and positively impacting society through

responsible innovation. We are one of the world’s leading AI and digital infrastructure providers, with

unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and

application services. Our consulting and industry solutions help organizations and society move

confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more

than 70 countries. We also offer clients access to a robust ecosystem of innovation centers as well as

established and start-up partners. NTT DATA is part of NTT Group, which invests over $3 billion each

year in R&D.


Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.


Third parties fraudulently posing as NTT DATA recruiters

NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters whether in writing or by phone in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an @nttdata.com email address. If you suspect any fraudulent activity, please contact us.

Originally posted on Himalayas

Disclaimer: Yukerja.com adalah agregator lowongan kerja, bukan pemberi kerja. Lowongan ini diagregasi dari Himalayas. Proses lamaran dilakukan di situs resmi perusahaan atau portal sumber. Kami tidak bertanggung jawab atas keakuratan informasi lowongan.

Tips Melamar Information Security Incident Response Analyst

  1. Baca deskripsi lengkap dan pastikan skill Anda match sebelum melamar ke NTT Limited.
  2. Sesuaikan CV dan cover letter dengan kata kunci dari job description — terutama untuk kategori Teknologi & IT.
  3. Klik Lamar Sekarang untuk diarahkan ke Himalayas. Proses rekrutmen sepenuhnya di situs sumber.
  4. Siapkan portfolio atau LinkedIn yang update jika diminta di tahap screening.
  5. Waspadai permintaan transfer uang — lowongan resmi tidak memungut biaya.

Artikel terkait: CV ATS · Blog Karir & Tips