Make an impact with NTT DATA, a company renowned for its technical excellence and leading innovations. We strive to make a difference for our clients and society while embracing diversity and inclusion in our workplace, creating an environment where individuals can grow, belong, and thrive.
The Information Security Governance, Risk and Compliance (GRC) Specialist is a seasoned subject matter expert responsible for supporting the organization's information security program. This includes assessing risks, implementing security controls, ensuring compliance, managing security awareness initiatives, and contributing to policy development. The role involves collaboration with internal teams to enhance security practices and maintain a strong security posture.
Key Responsibilities:
- Objective Definition: Determine the objectives for IT, defining the purpose of IT and how it will be fulfilled, to be included in any IT vision or mission statements, implemented using a strategic IT plan.
- Governance Framework Design: Design and implement the IT governance framework, including principles, policies, roles and responsibilities, and processes aligned with the organization’s governance responsibilities and strategic goals.
- Risk Management: Identify potential IT risks, assess their impact, and develop strategies for mitigation, ensuring compliance with relevant regulations and standards.
- Policy Development: Develop and implement IT policies that guide practices and compliance requirements, ensuring effective communication and adherence within the organization.
- Data Governance: Define data quality standards and ensure data integrity, coordinating with data stewards and other stakeholders as needed.
- Efficiency and Security Optimization: Collaborate with various teams to maximize the efficiency and security of the IT infrastructure.
Qualifications:
- Education: Bachelor's degree in Information Technology, Computer Science, or Business Administration is often required.
- Preferred Certifications:
- Certified in Risk and Information Systems Control (CRISC)
- Certified Information Security Manager (CISM)
- ITIL (Information Technology Infrastructure Library)
- Experience: Typically, 3-5 years of relevant work experience in IT governance, risk management, or related fields, with valuable experience in IT policies, compliance, and audit processes.
- Skills:
- Risk assessment and management
- Policy development and implementation
- Strong verbal and written communication skills
- Analytical thinking
- Attention to detail
- Leadership abilities
- Problem-solving aptitude
Equal Opportunity Employer:
NTT DATA is proud to provide an environment that is free from discrimination and harassment, committed to diversity and equal opportunities in hiring based on qualifications. Join our global team and accelerate your career with us.
