Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.
The Senior Information Security Governance, Risk and Compliance (GRC) Specialist is an advanced subject matter expert, responsible for playing a crucial part in overseeing the organization's information security program, with a focus on governance, risk management, compliance, security awareness, and policy management.
This role involves leading risk assessments, developing security policies, ensuring alignment with industry standards and regulations, and fostering a culture of security awareness among employees.
This role may be required to guidance and support to junior members of the GRC team.
- Leads risk assessments and gap analyses to identify vulnerabilities and recommends risk mitigation strategies.
- Develops and maintains security policies, standards, and procedures.
- Collaborates with legal and compliance teams to ensure adherence to regulatory requirements.
- Provides guidance and support to junior GRC team members.
- Assists in the creation and delivery of security awareness and training programs.
- Participates in security incident response activities as needed.
- Contributes to the continuous improvement of the information security program.
- Assists in policy management and refinement.
- Performs any other related task as required.
- Advanced understanding of information security frameworks and standards.
- Advanced proficiency in conducting risk assessments, analyzing security controls, and policy management.
- Excellent communication and interpersonal skills for collaborating with various stakeholders.
- Strong project management skills for handling security initiatives.
- Advanced familiarity with legal and compliance aspects related to information security.
- Bachelor’s degree or equivalent in Information Technology or Computer Science degree or related field.
- Security certifications such as CISA, CRISC, COBIT, IIA or equivalent preferred.
- Certifications such as Lead audit/Implementer - ISO 27001, SOC TSP preferred.
- Advanced experience in information security, including GRC-related roles.
- Advanced experience in leading risk assessments, compliance efforts, security awareness initiatives, and policy management.
Workplace type:
On-site WorkingAbout NTT DATA
NTT DATA is a $30+ billion business and technology services leader, serving 75% of the Fortune Global 100. We are committed to accelerating client success and positively impacting society through responsible innovation. We are one of the world’s leading AI and digital infrastructure providers, with unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and application services. Our consulting and industry solutions help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more than 50 countries. We also offer clients access to a robust ecosystem of innovation centers as well as established and start-up partners. NTT DATA is part of NTT Group, which invests over $3 billion each year in R&D.
Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
Third parties fraudulently posing as NTT DATA recruiters
NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters—whether in writing or by phone—in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an @nttdata.com email address. If you suspect any fraudulent activity, please contact us.