Security and Risk Management

Apply now »

Date: Jul 16, 2026

Location: Chennai, TN, IN

Company: NTT DATA Services

Req ID: 377464 

NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a Security and Risk Management to join our team in Chennai, Tamil Nādu (IN-TN), India (IN).

 

 

Vulnerability Management & Remediation Governance (Qualys Guard)

  • Manage the end-to-end Vulnerability Management lifecycle including vulnerability identification, assessment, prioritization, remediation tracking, validation, and reporting.
  • Analyse vulnerability scan results and assess risk based on severity, asset criticality, exploitability, and business impact.
  • Coordinate with Infrastructure, Application, Cloud, and Security teams to drive timely remediation of identified vulnerabilities.
  • Monitor remediation SLAs and track closure of vulnerabilities across the enterprise environment.
  • Perform vulnerability trend analysis and provide actionable recommendations to improve the organization's security posture.
  • Manage and administer ServiceNow Vulnerability Response (VR) processes, workflows, and remediation tracking.
  • Develop and maintain vulnerability dashboards, executive reports, and security metrics.

Configuration Compliance & Secure Baseline Management (Qualys Guard)

  • Manage configuration assessment activities and monitor compliance against CIS Benchmark standards.
  • Govern and maintain Secure Configuration Documents (SCDs) and security baseline standards.
  • Track configuration compliance exceptions and facilitate periodic reviews with technology and business stakeholders.
  • Drive remediation of non-compliant security configurations and monitor closure activities.

Security Governance & Risk Management (One Trust)

  • Support and maintain Information Security Governance programs aligned with ISO 27001 and industry best practices.
  • Support risk assessments and enterprise risk management initiatives.
  • Support risk registers, exception registers.
  • Manage security exceptions and risk acceptance processes.
  • Prepare security dashboards, risk posture reports, and management presentations.
  • Review and maintain security policies, standards, procedures, and operational controls.

Network Security (Zscaler proxy)

  • Manage and optimize Zscaler Internet Access (ZIA) security policies and controls.
  • Enforce web filtering, application control
  • Investigate user web access issues, policy violations, and traffic anomalies.
  • Analyse security logs to identify suspicious activities and security risks.

Cloud Security Posture Management (CSPM)

  • Monitor and assess cloud security posture across cloud environments.
  • Identify cloud security misconfigurations, compliance gaps, and security risks.
  • Work with Cloud and Infrastructure teams to drive remediation and risk reduction activities.
  • Support implementation and monitoring of cloud security best practices and governance controls.
  • Track cloud security findings, exceptions, and remediation status through regular reporting.

 

Application Security (Burp Suite)

  • Conduct internal web application security assessments (SAST and DAST) and vulnerability reviews. Familiar with SDLC process.
  • Identify, validate, and report application security vulnerabilities, including OWASP Top 10 Vulnerabilities.
  • Assess the vulnerabilities identified and rate the findings based on risk of exploitability.
  • Validate remediation effectiveness through re-testing and verification activities.

Compliance & Reporting

  • Maintain security records and compliance documentation.
  • Ensure adherence to organizational, regulatory, and security compliance requirements.
  • Prepare executive-level reports, compliance dashboards, and security metrics.
  • Track and report security compliance status, vulnerabilities, risks, and exceptions.

Stakeholder Management & Security Operations Support

  • Collaborate with Infrastructure, Security Operations, Application, Cloud, and Business teams to drive risk reduction initiatives.
  • Facilitate remediation discussions and security review meetings with stakeholders.

 

 

About NTT DATA

NTT DATA is a $30 billion business and technology services leader, serving 75% of the Fortune Global 100. We are committed to accelerating client success and positively impacting society through responsible innovation. We are one of the world's leading AI and digital infrastructure providers, with unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and application services. our consulting and Industry solutions help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more than 50 countries. We also offer clients access to a robust ecosystem of innovation centers as well as established and start-up partners. NTT DATA is a part of NTT Group, which invests over $3 billion each year in R&D.

Whenever possible, we hire locally to NTT DATA offices or client sites. This ensures we can provide timely and effective support tailored to each client’s needs. While many positions offer remote or hybrid work options, these arrangements are subject to change based on client requirements. For employees near an NTT DATA office or client site, in-office attendance may be required for meetings or events, depending on business needs. At NTT DATA, we are committed to staying flexible and meeting the evolving needs of both our clients and employees. NTT DATA recruiters will never ask for payment or banking information and will only use @nttdata.com, @nttdatafed.com and @talent.nttdataservices.com email addresses. If you are requested to provide payment or disclose banking information, please submit a contact us form, https://us.nttdata.com/en/contact-us.

NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https://us.nttdata.com/en/contact-usThis contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here. If you'd like more information on your EEO rights under the law, please click here. For Pay Transparency information, please click here.


Job Segment: Manager, Consulting, Information Security, Management, Technology

Apply now »