Security Analysis Specialist Advisor

Req ID: 372151 

NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a Security Analysis Specialist Advisor to join our team in Noida, Uttar Pradesh (IN-UP), India (IN).

The Information Technology and Security Compliance Professional is responsible for ensuring effective management of IT Security Audit and Compliance program requirements. The Information Technology and Security Compliance Professional will participate with the client and internal technical teams to drive strategic design process improvements and will translate contractual and regulatory requirements into controls, processes, and systems. The Information Technology and Security Compliance Professional is responsible for ensuring alignment and delivery of contractual obligations and client requirements related to IT Security Audit and Compliance functions.

The Information Technology and Security Compliance Professional will:

• Develop and maintain an effective audit and compliance program strategy based on client requirements
  • Evaluate, interpret, and ensure clarity of contractual audit and compliance obligations and client objectives
  • Implement and drive governance, risk, and compliance approach to promote ongoing audit readiness and to contribute toward effective IT security hygiene and management of risk
• Participate in audit lifecycle including internal/external audits and assessments
  • Provide oversight and guidance for internal/external audits and assessments
  • Drive recurring internal assessment of controls environment to ensure compliance with information security policies and established security controls; facilitate remediation
  • Maintain annual audit calendar for supported client
  • Maintain IT security controls library and documentation repository for supported client 
  • Coordinate the collection of audit evidence and provide timely responses to support audits and/or assessments from internal/external auditors/assessors
  • Drive and monitor remediation efforts related to internal/external audit exceptions, findings, and other relevant scope
• Coordinate and perform recurring logical access reviews and drive post-review actions

• Work with technology teams and internal and external support staff to:
  • Communicate and clarify audit evidence and/or compliance requirements
  • Socialize audit schedules and manage timelines and due dates
  • Develop, contribute, and/or improve process, policy, and procedure documentation
  • Track, maintain, and report on audit program requirements
• Maintain alignment with contractual Service Level Agreements related to Audit & Compliance program including support tickets, remediation, and other key measures.
• Collaborate as part of a cross-functional team to evaluate audit and compliance scope to enable effective onboarding of new clients to the compliance program portfolio.
• Drive governance and lead effort to enable automation of key Compliance activities via GRC platform including building expertise to fully leverage toolset.

Required Skills & Experience:

• Ability to self-manage work schedule to ensure timely delivery of audit and compliance services
• Ability to drive IT teams and escalate where necessary to ensure timely delivery of audit and compliance services
• Solid critical thinking and problem-solving skills
• Ability to manage competing priorities and comfortable to work through ambiguity
• Minimum 2 years of hands-on information technology operations experience and a strong knowledge of IT security standards and best practices
• Minimum of 2 years recent audit experience spanning at least two full cycles of any two of the following: SSAE16 SOC1 Type 2, SSAE16 SOC2 Type 2, SOX, PCI-DSS, HIPPA, ISO/IEC 27001:2005, or similar
• Strong understanding and application of IT Security frameworks such as: PCI DSS, ISO/IEC 27001:2005, CIS, HIPAA, NIST 800-53 etc.
• Strong understanding of IT general controls
• Ability to work within a fast-paced environment within an ITO organization
• Strong interpersonal relationship building and business acumen

Desired Skills / Certs:

• Strong oral and written communications
• Experience working in a matrixed cross-functional environment within a service organization
• Experience in a client-facing role
• One or more of the following professional certifications: CISA, CISSP, CISM, CRISC, CGEIT, ITIL, GSNA, GRCP, etc.

About NTT DATA

NTT DATA is a $30 billion business and technology services leader, serving 75% of the Fortune Global 100. We are committed to accelerating client success and positively impacting society through responsible innovation. We are one of the world's leading AI and digital infrastructure providers, with unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and application services. our consulting and Industry solutions help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more than 50 countries. We also offer clients access to a robust ecosystem of innovation centers as well as established and start-up partners. NTT DATA is a part of NTT Group, which invests over $3 billion each year in R&D.

Whenever possible, we hire locally to NTT DATA offices or client sites. This ensures we can provide timely and effective support tailored to each client’s needs. While many positions offer remote or hybrid work options, these arrangements are subject to change based on client requirements. For employees near an NTT DATA office or client site, in-office attendance may be required for meetings or events, depending on business needs. At NTT DATA, we are committed to staying flexible and meeting the evolving needs of both our clients and employees. NTT DATA recruiters will never ask for payment or banking information and will only use @nttdata.com and @talent.nttdataservices.com email addresses. If you are requested to provide payment or disclose banking information, please submit a contact us form, https://us.nttdata.com/en/contact-us.

NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https://us.nttdata.com/en/contact-us. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here. If you'd like more information on your EEO rights under the law, please click here. For Pay Transparency information, please click here.