Security Specialist - Remote position in Canada

Req ID: 353992 

NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a Security Specialist - Remote position in Canada to join our team in Toronto, Ontario (CA-ON), Canada (CA).

This is a fully remote position in Canada

Job Summary

We are seeking a highly experienced and knowledgeable Information Security Analyst to serve as the primary Subject Matter Expert (SME) for our security design assessment process and Security Risk Assessments (SRAs). This pivotal role involves leading the evaluation of security risks associated with new and changing technology solutions across the organization. The ideal candidate will possess in-depth knowledge of Client’s specific policies, practices, and technology landscape, combined with leading industry information security practices and frameworks. This position requires significant collaboration with various IT and business stakeholders to ensure robust security posture and compliance with regulatory requirements.

Key Responsibilities

• Security Design Assessments & SRAs: Act as the primary SME for conducting comprehensive Security Risk Assessments (SRAs) for new and evolving technology solutions and projects. This includes reviewing solution designs, identifying potential vulnerabilities, and proposing effective mitigation strategies.
• Stakeholder Collaboration: Collaborate extensively with IT project teams, business groups, IT solution and enterprise architects, and senior management throughout the project lifecycle. Present SRA findings and recommendations for formal review and approval.
• Policy & Standards Development: Contribute significant experience and expertise to the ongoing development and maturity of Client’s Information Security’s program, processes, procedures, and standards.
• Framework Implementation: Support the development and interpretation of key information security frameworks, including the ISO 27001 Information Security Management System (ISMS) and NIST 800-53 controls.
• Risk Methodology: Lead the development and coordination of Harmonized Threat and Risk Assessments (HTRAs).
• Information Classification: Provide expertise in the interpretation and application of information classification and protection standards, specifically Client security procedure .
• Cyber Security Compliance: Ensure alignment and compliance with the Cyber Security Program requirements, specifically related to the N290.7 standard set by the Canadian Nuclear Safety Commission (CNSC).

Qualifications & Experience

• Bachelor’s degree in Computer Science, Information Security, or related field or relevant work experience. Relevant certifications such as CISSP, CISM, CRISC are highly desirable.]
• 5+ years of demonstrated experience in information security, with a strong focus on risk management, security architecture reviews, and threat assessments.
• Proven experience in developing, implementing, and maturing information security programs based on industry standards such as ISO 27001, NIST 800-53, and ISO 27005.
• In-depth, working knowledge of the client's specific operational environment, internal policies, and technology landscape is a significant asset.
• Strong understanding of regulatory requirements within the nuclear energy sector (specifically CNSC requirements and N290.7 compliance).
• Excellent communication skills, both written and verbal, with the ability to translate complex technical risks into business context for senior management review.
• Strong interpersonal skills and the ability to build consensus and collaborate effectively across diverse teams.

 About NTT DATA

NTT DATA is a $30+ billion business and technology services leader, serving 75% of the Fortune Global 100. We are committed to accelerating client success and positively impacting society through responsible innovation. We are one of the world’s leading AI and digital infrastructure providers, with unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and application services.  Our consulting and industry solutions help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more than 50 countries. We also offer clients access to a robust ecosystem of innovation centers as well as established and start-up partners. NTT DATA is part of NTT Group, which invests over $3 billion each year in R&D.

Whenever possible, we hire locally to NTT DATA offices or client sites. This ensures we can provide timely and effective support tailored to each client’s needs. While many positions offer remote or hybrid work options, these arrangements are subject to change based on client requirements. For employees near an NTT DATA office or client site, in-office attendance may be required for meetings or events, depending on business needs. At NTT DATA, we are committed to staying flexible and meeting the evolving needs of both our clients and employees. NTT DATA recruiters will never ask for payment or banking information and will only use @nttdata.com and @talent.nttdataservices.com email addresses. If you are requested to provide payment or disclose banking information, please submit a contact us form, https://us.nttdata.com/en/contact-us.

NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https://us.nttdata.com/en/contact-us. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here. If you'd like more information on your EEO rights under the law, please click here. For Pay Transparency information, please click here.