Manager: Security Incident and Vulnerability

**Manager: Security Incident and Vulnerability Management**

In a constantly changing world, we work together with our people, clients and communities to enable them to fulfill their potential to do great things. We believe that by bringing everyone together, we can solve problems using innovative technology that can create a world that is sustainable and secure. At NTT, we encourage you to remain continuously curious, as that is what keeps you fast, flexible and relevant. No two days will be the same but that is what will help you grow and realize your full potential.

The power is in your hands to do great things. It’s time to lead the change, be the authentic you, to solve difficult challenges, to set the pace of change and to unleash your potential.

**Want to be a part of our team?**

Based in Sydney, the Manager: Security Incident and Vulnerability Management is a senior role responsible for overseeing and leading an aspect of NTT's information security services.
- The Security Incident Manager is the leader and coordinator of the CSIRT function within NTT ANZ. They are responsible for overseeing the entire incident response process, from identification and containment to recovery and improvement. They also communicate with the senior management, stakeholders, and external parties, such as law enforcement or regulators, as needed.
- The security incident manager requires strong leadership, communication, and decision-making skills, as well as a broad knowledge of our client's IT environments, policies, and procedures.**Working at NTT**
- Being the central point of contact to drive all in scope cyber incidents to resolution
- Being the primary point of contact and coordinating NTT's response to client managed incidents managed by the CSIRT Team
- Create and present incident reports
- Keep incidents status up to date with key stakeholders through regular updates
- Oversee all aspects of incident management process from evaluation to resolution
- Maintain daily communication with analyst team
- Drive incidents to a conclusion based on SLAs and criticality level
- Coordinate the activities of analysts and parties external to the CSIRT Team involved in incident response
- Define improvement over incident playbooks
- Prepare weekly and monthly incident status reports
- Monitor intelligence sources to maintain situational awareness of cyber threat landscape

**What will make you a good fit for the role?**
- Familiarity with risk management and controls frameworks, cyber kill chain and NIST Incident response life cycle
- Experience in managing cyber incidents, ideally in an outsourced SOC
- Proven experience in security operation and monitoring
- Working knowledge about SIEM architecture
- Working knowledge of Microsoft Sentinel, Splunk, Elastic Stack, or industry equivalent at a user level
- Being able to work with a diverse set of stakeholders within NTT and our client's from technical through board level.
- Strong report writing and communication skills
- Strong written and verbal communication in English
- Understanding crisis management, business continuity and disaster recovery procedures
- Ability to understand technical topics dealing with technical teams and explain and present them to management level executives
- Being able to handle multiple competing priorities in a fast-paced environment to proceed high priority tasks to a resolution
- Relevant certifications such as CGIH, CISM
- Understanding of security governance, risk and compliance
- Familiarity with related publications such as: NIST 800-61 (incident handling), NIST 800-30 (risk assessment), NIST 800-52 (controls)
- **Ideally with current AGSVA clearance or ability to obtain one**

For more information about this or other opportunities, please contact Karen Aldrich. Please quote our job reference number 609673.

**About us**

NTT Ltd. is a global ICT provider, employing more than 40,000 people in a diverse and dynamic workplace, and delivering services in over 200 countries and regions. We partner with organizations around the world to shape and achieve outcomes through intelligent technology solutions. For us, intelligent means data driven, connected, digital, and secure.

NTT is proud to be an equal opportunity employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, color, sex, religion, national origin, disability, pregnancy, marital status, sexual orientation, gender reassignment, veteran status, or other protected category.