Job
Description
Req ID: 337179
NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now. We are currently seeking a Security Analysis Sr. Specialist Advisor to join our team in Noida, Uttar Pradesh (IN-UP), India (IN). Role Overview
The NTT DATA Services Information Security Manager (ISM) oversees and coordinates the information security services that NTT DATA provides to the customer. This is an individual contributor role in which the ISM acts as a trusted information security partner with the customer and works collaboratively to understand, anticipate and recommend risk mitigation while promoting the overall information security protection for the customers information assets. ISM partners with the client to align information security with the customers business strategy, security policies and regulatory and compliance requirements resulting in increased protection and reduced risk. In this role, the ISM works with stakeholders and teams across the organization to help deliver information security services. Role Responsibilities
The responsibilities of the ISM include:
Ensure the delivery of information security services to the customer is in compliance with the contract and any applicable standards and regulatory requirements (e.g., PCI, SOX) Collaborate with the client in the definition and implementation of information security policies, strategies, procedures and configurations in order to ensure confidentiality, integrity and availability of clients environment and data Participate with the customer in the strategic design process to translate security and business requirements into processes and systems Evaluate new / emerging security products and technologies and make recommendations to customer leadership in regards to the security posture impact on the organizationIdentify, review and recommend information security improvements as they relate to the achievement of the customers business goals and objectives Manage and drive remediation efforts related to information security; remediation may be from incidents, penetration tests, vulnerability scans, internal/external audits and Critical Practice assessmentsIdentify information security weaknesses and/or gaps in the customers current operations and work with the customer to bring information security operations up to standardsParticipate and represent IT Security in Delivery/Operational meetings; conduct an information security operational review meeting with account (e.g., Customer Delivery Executive) and customer (e.g., CISO) key stakeholders with topics including information security status and performanceReview service management reports to ensure tickets (i.e., incidents, problems, requests, changes) related to information security, are being acknowledged, worked and Service Level Agreements are being met; provide direction on ticket remediation and ensure remediation is completeConduct an ongoing security awareness program for NTT DATA personnel supporting the customer ensuring individuals understand and are compliant with the relevant information security obligations in support of the customer; program should address relevant security topics and adequately provide guidance on security policies and supporting documentationCultivate trusted partner relationships with account and customer; keep consistent and open dialogue to uncover issues, challenges, risksMaintain an information security strategy (forward looking roadmap), for your customer, aligning services / portfolio components to the strategy
Required Qualifications
8+ years of relevant experience Strong knowledge of standards / regulations impacting information security (e.g., NIST, ISO, PCI)) Experience with information security internal & external audits, contract compliance, and quality initiatives Significant experience in identifying and utilizing a global risk based management model.
Preferences
At least one of the following certificationsCISSP, CISM, SSCP, CEH, or CSSLP Undergraduate or graduate degree Security/Consulting industry experience working in a customer facing role with customer security relationship management experience at the senior levelFamiliarity with information security technologies and issues on multiple platformsExperience working with network perimeter security technologies such as firewalls, intrusion detection/prevention systems and content filtering technologiesWorking knowledge of security monitoring technologies and processes such as monitoring architectures, log aggregation, SOC/SIEM capabilities and Incident ResponseSignificant experience in application and integration of globally accepted security standardsAdvanced knowledge of Information Technology and Infrastructure configurations that will protect systems from unauthorized access and software invasion
