Share this Job

Cybersecurity Consultant (GRC - PCI DSS) - REMOTE U.S.

Apply now »

Date: Jan 12, 2023

Location: Charlotte, NC, US

Company: NTT DATA Services

NTT DATA Services strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.


We are currently seeking a Cybersecurity Consultant to join our team in the United States (US).


In this digital age, cybersecurity threats are increasing in frequency and potency, and data is a target for increasingly sophisticated bad actors and data breaches.  NTT DATA's Cyber Resilience Consulting organization has a proven track record of delivering high-impact governance, risk, and compliance results for our clients to keep their business running efficiently, effectively, and securely.  


***This is a virtual/REMOTE U.S. based role (preferred locations central or eastern time zones) which will require up to 25% (variable) travel.


As a Consultant in the Cyber Resilience GRC practice, you will have the following responsibilities:
- Develop comprehensive and customized strategies to align NTT DATA’s GRC capabilities with our customer’s business strategy, security policies, and regulatory/compliance landscape resulting in increased protection and reduced risk for the client
- Perform risk identification, and data and business control gap analysis
- Identify the risks and controls related to data movement and transformations between and within systems and processes, as well detail the various characteristics of the controls (such as who owns the control, how often it is performed, etc.)
- Assemble and inventory existing business process documentation (procedures and data), including architecture, system mappings, data flows, and other available artifacts
- Analyze available artifacts and perform a gap analysis of what is missing or incomplete
- Help to define success criteria for compliance across business process data documentation
- Work toward mutual goals and objectives across strategic partners and/or customers to build awareness and support of overall strategic benefits of a solution
- Collaborate directly with clients in the definition and implementation of governance, risk, and compliance (GRC) policies, strategies, procedures and settings to ensure confidentiality, integrity, and security of client’s environment and sensitive data
- Drive faster adoption, increased utilization, and greater proficiency of governance, risk, and compliance (GRC) initiatives to increase benefit realization, value creation, ROI, and achieve the desired business results and outcomes for clients
- Manage change readiness, adoption baseline, measurement, and monitoring to assess effectiveness of Cyber Resilience activities
- Assist with development of collateral, tools and templates for the Cyber Resilience Consulting Practice
- Build internal network for career growth


Skills and Experience Basic Requirements:
- 7+ years work experience delivering governance, risk, and compliance (GRC) services to various industry leading frameworks including NIST CSF, HIPAA, NIST 800-53, ISO27001/2, COBIT, and PCI DSS
- 4+ years of experience leading information security assessments for assessment of moderate to large sized organizations including conducting document reviews and interviews against compliance requirements and best-practices, developing recommendations for remediating risk and compliance gaps, writing deliverable reports and maintaining report templates
- 3+ years IT Security experience in a professional services environment or consulting firm working in a customer facing role 
- 3+ years experience defining project work plans, resource needs, timeline, and budget for consulting engagements 
- 2+ Years performing PCI DSS Assessments
- 2+ years experience driving new business by preparing project proposals, cost estimates, and participating in sales and proposal presentations
- Experience building relationships with client senior leadership through extensive interaction to ensure service-levels are being met


Skills and Experience Preferences: 
- Any of the following certifications: PCIP, CISSP, CISA, CISM, CRISK, C|CISO, HCISPP, Certified Ethical Hacker (C|EH), Offensive Security Certified Professional (OSCP)
- PCI DSS QSA experience
- Vulnerability scanning/pen testing and application penetration testing experience
- Technical writing experience 
- Undergraduate degree






About NTT DATA Services

NTT DATA Services is a global business and IT services provider specializing in digital, cloud and automation across a comprehensive portfolio of consulting, applications, infrastructure and business process services. We are part of the NTT family of companies, a partner to 85 % of the Fortune 100.


NTT DATA Services is an equal opportunity employer and considers all applicants without regarding to race, color, religion, citizenship, national origin, ancestry, age, sex, sexual orientation, gender identity, genetic information, physical or mental disability, veteran or marital status, or any other characteristic protected by law. We are committed to creating a diverse and inclusive environment for all employees. If you need assistance or an accommodation due to a disability, please inform your recruiter so that we may connect you with the appropriate team.


For Colorado Candidates
In compliance with the Colorado Equal Pay Transparency Rules, NTT DATA provides a reasonable range of compensation for roles that may be hired in Colorado. For a candidate in the state of Colorado only, the starting pay range for this role is $100,000-$188,000. Actual compensation will depend on a number of factors, including actual work location, relevant experience (internal or external), technical skills, and other qualifications.  The candidate may also be eligible for incentive compensation based on personal and/or company performance.  This position is eligible for company benefits including medical, dental, and vision insurance with an employer contribution, flexible spending or health savings account, life and AD&D insurance, short and long term disability coverage, paid time off, employee assistance, participation in a 401k program with company match, and additional voluntary or legally-required benefits.





Nearest Major Market: Charlotte

Job Segment: Technical Writer, Consulting, Information Security, Technology