Information Security Risk Assessment Analyst
- Full-time
Job Description
NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.
We are currently seeking a Information Security Risk Assessment Analyst to join our team in Montreal, Quebec (CA-QC), Canada (CA).
Job Responsibilities Include:
- Contacting system owners/vendors for assigned systems to gather relevant background material about the system/application and setting up interviews for information gathering.
- Conducting remote/in-person interviews with system owners/vendors to get all the required information for assessment and to identify any gaps.
- Reviewing system-related material including specifications, diagrams, requirements, and test plans to ensure security-related standards are followed.
- Reviewing results with system owners/vendors and Senior Security Architecture Analysts, as needed. - Conducting security assessments using available documentation.
- Creating comprehensive security architecture assessment reports that clearly identify root-cause and remediation strategies.
- Developing and establishing global security standards and processes.
- Evaluating new and emerging products and technologies while making recommendations concerning the introduction of new technologies
Basic Qualifications:
- 5+ years of experience in Security Architecture Assessment.
- Minimum of one professional certification amongst CISSP, SSCP, and CISM with good standing will be an added advantage.
- Bachelor’s degree in Information Systems Security or Computer Science
Preferred Skills:
- Excellent verbal and written communications skills, including presentations to clients and senior technical resources.
- Ability to manage expectations and handle high-pressure situations with tight deadlines.
- Experience in an information security (application and/or infrastructure) role in an enterprise environment.
- Ability to explain common application vulnerabilities and remediation strategies to developers.
- Ability to explain technology risks; including XSS, CSRF, Injection attacks introduced by application vulnerabilities to a system’s Business Owner.
- Ability to quickly adapt to changing priorities and demands.
- Excellent security knowledge (access control) of one or more applicable security technologies or platforms including SSO (Single Sign-On) technologies like SAML2.0 and Kerberos.
- Excellent knowledge of information security processes, response procedures, and various attack methods used for information theft or network intrusion.
- Excellent analytical and problem-solving skills.
- Excellent knowledge of network technologies as they pertain to communications, computer system environments, and related infrastructures.
- Excellent research ability and knowledge update on the security trends and attacks, following OWASP top 10 security understanding.
#INDFSINS
#L1-NAM
About NTT DATA
NTT DATA is a $30 billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long term success. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure and connectivity. We are one of the leading providers of digital and AI infrastructure in the world. NTT DATA is a part of NTT Group, which invests over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. Visit us at us.nttdata.com
NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https://us.nttdata.com/en/contact-us. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here. If you'd like more information on your EEO rights under the law, please click here. For Pay Transparency information, please click here.
ApplyListen to the story of Employee Voice
Annette Barnabas
Business Analysis Associate DirectorIndia
Read more
Vanathi Asok
Director – Project and Application ServicesIndia
Read more
Swathi Sujir
Business Operations SupervisorIndia
Read more
Apply Back to search resultsCreate a job alert for this search
Information Security Risk Assessment Analyst • Montreal, Quebec, Canada
Enterprise Risk Appetite & Assessment Specialist
Security and IAM Analyst
Security Compliance Analyst (ISO 27001 & SOC 2)
Senior Information Security Architect
Senior Information Security Architect – Cloud & Risk
Senior Information Security Engineer
Cyber Security Analyst
Cyber Defense Analyst: 24/7 SOC, Incident Response
Security Analyst
Risk Analyst - Capital Markets - Infotek Consulting Services Inc.
Information Technology Security Analyst
Security Analyst - Threat Detection & Endpoint Protection
SCADA Security & Compliance Analyst
Analyste en sécurité de l'information – Quart de nuit (100 % télétravail) - Hitachi Cyber
Tier I SOC Analyst
Data Security Analyst
Analyste sécurité réseau – ZTNA / SASE (Zero Trust & Accès sécurisé)
