Cloud Compliance Manager - Austin, TX

Req ID: 335891 

NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a Cloud Compliance Manager - Austin, TX to join our team in Austin, Texas (US-TX), United States (US).

The Cloud Compliance Manager is a lead individual contributor role, who is responsible for ensuring that cloud-based systems and services comply with internal policies, industry standards, and government regulations. This role serves as a bridge between cloud engineering, cybersecurity, GRC (governance, risk, and compliance), and business stakeholders—providing strategic oversight, hands-on control implementation guidance, and audit readiness support. The ideal candidate has strong knowledge of cloud platforms (e.g., AWS, Azure, GCP), compliance frameworks (e.g., FedRAMP, SOC 2, ISO 27001, NIST), and experience in regulated environments such as finance, healthcare, or public sector.

Compliance Program Strategy:

• Develop and maintain an effective audit and compliance program strategy based on client requirements. Evaluate, interpret, and ensure clarity of contractual audit and compliance obligations and client objectives
• Implement and drive governance, risk, and compliance approach to promote ongoing audit readiness and to contribute toward effective IT security hygiene and management of risk Governance: Maintain and enforce cloud compliance requirements aligned to frameworks such as FedRAMP, NIST 800-53, SOC 2, ISO 27001, and/or GDPR
• Develop and/or drive update of cloud compliance policies, standards, and procedures
• Serve as the point of contact for internal/external audits, assessments, and regulatory inquiries
• Provide oversight and guidance for internal/external audits and assessments
• Drive recurring internal assessment of controls environment to ensure compliance with information security policies and established security controls; facilitate remediation
• Maintain annual audit calendar for supported client
• Maintain IT security controls library and documentation repository for supported client
• Coordinate the collection of audit evidence and provide timely response to support audits and/or assessments from internal/external auditors/assessors
• Drive and monitor remediation efforts related to internal/external audit exceptions, findings, and other relevant scope
• Coordinate and perform recurring logical access reviews and drive post-review actions
• Maintain alignment with contractual Service Level Agreements related to Audit & Compliance program including support tickets, remediation, and other key measures.

Risk Management:

• Conduct risk assessments, gap analyses, and control testing related to cloud operations and data security
• Maintain and monitor Plans of Action & Milestones (POA&Ms) and risk registers for cloud systems
• Track non-compliances and drive remediation efforts in coordination with system owners

Cross-Functional Collaboration:

• Collaborate with cloud engineers, architects, and DevOps to ensure compliant-by-design controls across cloud infrastructure and services
• Evaluate third-party tools and services for compliance risks and cloud vendor adherence (AWS and Azure)
• Liaise with Legal, Privacy, Security, and IT teams to interpret compliance obligations
• Work closely with project teams and vendors to ensure contractual and technical alignment with compliance requirements
• Educate internal teams on cloud compliance best practices through documentation, workshops, and consultation.

Required Skills & Experience: 
•    U.S. Citizenship required (due to federal client access)
•    Must have or be eligible to obtain DoD/DoE Public Trust or Clearance

•    Minimum of 5+ years hands-on experience with cloud architecture: AWS and Azure specifically
•    Minimum of 5 years of hands-on information technology operations experience and a strong knowledge of IT security standards and IT Security best practices, to include application of risk management concepts
•    Minimum of 2 years recent audit experience spanning at least 2 full cycles of any 2 of the following: SSAE18 SOC1 Type 2/SOC2 Type 2, SOX, PCI-DSS, HIPPA, ISO/IEC 27001, or equivalent
•    Must have knowledge and experience with applications of IT Security frameworks such as: PCI DSS, ISO/IEC 27001, CIS, NIST 800-53, NIST CSF, etc. 
•    Experience with FedRAMP, FISMA, or StateRAMP compliance

Desired Skills / Certs: 

•    Experience working in a matrixed cross-functional environment within a service organization
•    Experience in a client-facing role

•    Ability to drive IT teams to ensure timely delivery of audit and compliance services 
•    Strong oral and written communications 
•    Solid critical thinking and problem-solving skills

•    Ability to manage competing priorities and comfortable to work through ambiguity
•    Ability to work in a fast-paced environment within an ITO organization
•    Strong interpersonal relationship building and business acumen

•    One or more of the following professional certifications: CISA, CISSP, CISM, CRISC, CGEIT, ITIL and/or equivalent 

•    Undergraduate degree in Information Technology, Computer Science, or a related  - Graduate degree preferred

About NTT DATA

NTT DATA is a $30 billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long term success. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure and connectivity. We are one of the leading providers of digital and AI infrastructure in the world. NTT DATA is a part of NTT Group, which invests over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. Visit us at us.nttdata.com

Whenever possible, we hire locally to NTT DATA offices or client sites. This ensures we can provide timely and effective support tailored to each client’s needs. While many positions offer remote or hybrid work options, these arrangements are subject to change based on client requirements. For employees near an NTT DATA office or client site, in-office attendance may be required for meetings or events, depending on business needs. At NTT DATA, we are committed to staying flexible and meeting the evolving needs of both our clients and employees. NTT DATA recruiters will never ask for payment or banking information and will only use @nttdata.com and @talent.nttdataservices.com email addresses. If you are requested to provide payment or disclose banking information, please submit a contact us form, https://us.nttdata.com/en/contact-us.

NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https://us.nttdata.com/en/contact-us. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here. If you'd like more information on your EEO rights under the law, please click here. For Pay Transparency information, please click here.