Compliance & IT Security Advisor

Req ID: 372240 

NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a Compliance & IT Security Advisor to join our team in Remote, Wilayah Persekutuan Kuala Lumpur (MY-14), Malaysia (MY).

Key Responsibilities

🔐 Security Compliance

• Implement, and maintain security compliance frameworks (e.g., Data Trustmark, ISO/IEC 27001, GDPR, PDPA) in accordance with company policies.
• Monitor adherence to internal security policies and procedures.
• Conduct regular audits and assessments to identify gaps and recommend corrective actions.

📄 Contractual and Regulatory Review

• Review client contracts and vendor agreements to ensure cybersecurity and risk-related clauses are appropriately addressed.
• Collaborate with legal and procurement teams to negotiate and validate security terms.

🧩 Risk Management

• Identify, assess, and document information security risks across the organization.
• Maintain a risk register and track mitigation efforts.
• Support business units in implementing risk controls and monitoring effectiveness.

🗣️ Stakeholder Engagement

• Serve as the focal point for client queries related to cybersecurity and compliance.
• Coordinate responses to client audits, due diligence requests, and security questionnaires.
• Communicate risk and compliance status to senior management and relevant stakeholders.

🧪 Incident Response and Reporting

• Support the development and execution of incident response plans.
• Ensure timely reporting of security incidents to regulators and clients as required.
• Participate in post-incident reviews and implement lessons learned.

📚 Training and Awareness

• Promote a culture of security and compliance through training and awareness programs.
• Ensure employees understand their responsibilities in maintaining compliance.

📊 Monitoring and Reporting

• Track compliance metrics and prepare reports for internal and external stakeholders.
• Stay updated on emerging threats, regulatory changes, and industry best practices.

Job requirements or relevant experience:

• 3 to 8+ years of experience) in one or more of the following areas:

1. information security risk management;
2. IT / cybersecurity governance and compliance; or
3. technology risk, audit, or controls assurance

• Bachelor’s degree in Information Security, Computer Science, Information Systems, Risk Management, Law, or a related discipline
• Prior experience in regulated industries (e.g. financial services, technology, healthcare, telecommunications) is highly desirable
• Proven experience in

1. Designing, implementing, or operating information security frameworks
2. Conducting risk assessments, control reviews, and remediation tracking
3. Supporting or leading internal and external audits

About NTT DATA

NTT DATA is a $30 billion business and technology services leader, serving 75% of the Fortune Global 100. We are committed to accelerating client success and positively impacting society through responsible innovation. We are one of the world's leading AI and digital infrastructure providers, with unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and application services. our consulting and Industry solutions help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more than 50 countries. We also offer clients access to a robust ecosystem of innovation centers as well as established and start-up partners. NTT DATA is a part of NTT Group, which invests over $3 billion each year in R&D.

Whenever possible, we hire locally to NTT DATA offices or client sites. This ensures we can provide timely and effective support tailored to each client’s needs. While many positions offer remote or hybrid work options, these arrangements are subject to change based on client requirements. For employees near an NTT DATA office or client site, in-office attendance may be required for meetings or events, depending on business needs. At NTT DATA, we are committed to staying flexible and meeting the evolving needs of both our clients and employees. NTT DATA recruiters will never ask for payment or banking information and will only use @nttdata.com and @talent.nttdataservices.com email addresses. If you are requested to provide payment or disclose banking information, please submit a contact us form, https://us.nttdata.com/en/contact-us.

NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https://us.nttdata.com/en/contact-us. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here. If you'd like more information on your EEO rights under the law, please click here. For Pay Transparency information, please click here.