Security Controls Advisor - SME

Make an impact with NTT DATA Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

The Security Consultant is a seasoned level role, responsible for translating clients’ cybersecurity requirements and customizing and implementing security solutions into specific systems, applications and product designs. This role identifies and develops the security solutions for clients using company products, outsourced technology solutions and technical tools. It consults with clients regarding secure product configuration, deployment, and security patches to minimize security vulnerabilities and provides comprehensive scanning, penetration testing, vulnerability assessments, monitoring services and source code analysis and delivers detailed results to clients. The role guides and supports clients in the development and implementation of product security controls.

• Works on strategic projects that ensure the efficient and effective reaction to security breaches to mitigate immediate and potential threats.
• Uses mitigation, preparedness, response and recovery approaches to minimize business disruptions and commercial consequences.
• Offers detailed technical support investigation and analysis response activities and evaluates the effectiveness of and improvements to existing practices.
• Conducts regular threat and vulnerability assessments and determines deviations from acceptable configurations or policies.
• Participates in the assessment of the level of risk and supports the development of appropriate mitigation countermeasures in operational and non-operational situations.
• Analyzes evidence to support network vulnerability mitigation.
• Supports peers in the management and implementation of the information security management system.
• Participates in the implementation of policies, processes and guidelines to ensure the standardization of security management throughout the organization.
• Applies tactics, techniques, and procedures to a full range of tools and processes related to administrative, criminal, and counterintelligence gathering (e.g., in-depth case analyses, continuous monitoring, malware analysis, clear documentation).
• Proactively searches through our critical infrastructure, systems and networks to detect and isolate advanced threats that may cause harm to our organization.
• Uses both manual approaches and automated tools to identify, analyze, and report events and supports the development of countermeasures to proactively protect against these threats in the future.

• Strong understanding of information technology and information security
• Solid understanding of security risks and preventative controls
• Excellent understanding of security operational processes and controls
• Service consulting aptitude, focusing on the business, service and sales aspects
• Excellent verbal and written communication skills
• Demonstrate impeccable attention to detail and ability to translate internal customer requirements into solutions
• Maintain up‑to‑date knowledge of security threats, countermeasures, security tools, and network technologies
• High level of drive and ability to work under pressure
• Ability to build and maintain cross‑functional relationships with a variety of stakeholders
• Understanding of relevant laws, regulations, and compliance frameworks affecting the technology sector
• Good ability to assess and manage cybersecurity risks at both organizational and project levels
• Good knowledge of security frameworks and standards like NIST, ISO/IEC 27001, CIS, etc.

• Bachelor's degree or equivalent in Information Technology, Computer Science, Engineering, or related field
• Industry relevant certifications such as CISSP, CISM, CEH, GSEC or CompTIA Security+ essential

• Seasoned demonstrable experience in the Information Technology Security Industry or relevant experience in a similar role within a related environment
• Seasoned experience with security architecture design principles
• Seasoned experience with industry compliance and standards such as ISO 27000, PCI DSS, NIST, HIPAA or others
• Seasoned experience with security tools and techniques to cover SANS Top 25, OWASP or others
• Seasoned experience working in a multi‑team environment across multiple geographies

On‑site Working

NTT DATA is a $30+ billion business and technology services leader, serving 75% of the Fortune Global 100. We are committed to accelerating client success and positively impacting society through responsible innovation. We are one of the world’s leading AI and digital infrastructure providers, with unmatched capabilities in enterprise‑scale AI, cloud, security, connectivity, data centers and application services. Our consulting and industry solutions help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more than 50 countries. We also offer clients access to a robust ecosystem of innovation centers as well as established and start‑up partners. NTT DATA is part of NTT Group, which invests over $3 billion each year in R&D.

NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.