Information Security Risk Assessment Analyst

NTT DATA Services
Montreal, QC, CA
Full-time

NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a Information Security Risk Assessment Analyst to join our team in Montreal, Quebec (CA-QC), Canada (CA).

Job Responsibilities Include :

  • Contacting system owners / vendors for assigned systems to gather relevant background material about the system / application and setting up interviews for information gathering.
  • Conducting remote / in-person interviews with system owners / vendors to get all the required information for assessment and to identify any gaps.
  • Reviewing system-related material including specifications, diagrams, requirements, and test plans to ensure security-related standards are followed.
  • Reviewing results with system owners / vendors and Senior Security Architecture Analysts, as needed. - Conducting security assessments using available documentation.
  • Creating comprehensive security architecture assessment reports that clearly identify root-cause and remediation strategies.
  • Developing and establishing global security standards and processes.
  • Evaluating new and emerging products and technologies while making recommendations concerning the introduction of new technologies

Basic Qualifications :

  • 3+ years of experience in Security Architecture Assessment.
  • Bachelor’s degree in Information Systems Security or Computer Science

Preferred Skills :

  • Minimum of one professional certification amongst CISSP, SSCP, and CISM with good standing will be an added advantage.
  • Excellent verbal and written communications skills, including presentations to clients and senior technical resources.
  • Ability to manage expectations and handle high-pressure situations with tight deadlines.
  • Experience in an information security (application and / or infrastructure) role in an enterprise environment.
  • Ability to explain common application vulnerabilities and remediation strategies to developers.
  • Ability to explain technology risks; including XSS, CSRF, Injection attacks introduced by application vulnerabilities to a system’s Business Owner.
  • Ability to quickly adapt to changing priorities and demands.
  • Excellent security knowledge (access control) of one or more applicable security technologies or platforms including SSO (Single Sign-On) technologies like SAML2.0 and Kerberos.
  • Excellent knowledge of information security processes, response procedures, and various attack methods used for information theft or network intrusion.
  • Excellent analytical and problem-solving skills.
  • Excellent knowledge of network technologies as they pertain to communications, computer system environments, and related infrastructures.
  • Excellent research ability and knowledge update on the security trends and attacks, following OWASP top 10 security understanding.

INDFSINS

L1-NAM

About NTT DATA

NTT DATA is a $30 billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long term success.

As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies.

Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure and connectivity.

We are one of the leading providers of digital and AI infrastructure in the world. NTT DATA is a part of NTT Group, which invests over $3.

6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. Visit us at us.nttdata.com

NTT DATA is an equal opportunity employer and considers all applicants without regarding to race, color, religion, citizenship, national origin, ancestry, age, sex, sexual orientation, gender identity, genetic information, physical or mental disability, veteran or marital status, or any other characteristic protected by law.

We are committed to creating a diverse and inclusive environment for all employees. If you need assistance or an accommodation due to a disability, please inform your recruiter so that we may connect you with the appropriate team.

6 days ago
Related jobs
NTT DATA
Montreal, Quebec

Information Security Risk Assessment Analyst. Excellent knowledge of information security processes, response procedures, and various attack methods used for information theft or network intrusion. Conducting remote/in-person interviews with system owners/vendors to get all the required information ...

NTT DATA Services
Montreal, Quebec

Information Security Risk Assessment Analyst. Excellent knowledge of information security processes, response procedures, and various attack methods used for information theft or network intrusion. Conducting remote/in-person interviews with system owners/vendors to get all the required information ...

NTT DATA
Montreal, Quebec

Security Risk Assessment Analyst. Excellent knowledge of information security processes, response procedures, and various attack methods used for information theft or network intrusion. Conducting remote/in-person interviews with system owners/vendors to get all the required information for assessme...

NTT DATA Services
Montreal, Quebec

Security Risk Assessment Analyst. Excellent knowledge of information security processes, response procedures, and various attack methods used for information theft or network intrusion. Conducting remote/in-person interviews with system owners/vendors to get all the required information for assessme...

Morgan Stanley
Montreal, Quebec

We're seeking someone to join our Incident Response team as an Analyst in the Cyber Data Risk & Resilience department to detect and manage the reporting of information security incidents supporting all Firm Business Units. Information Security Analyst (Hybrid). This is a Cybersecurity Ops II positio...

Hitachi Cyber
Blainville, Quebec

Rejoins l'équipe dynamique et innovante de systèmes de sécurité Hitachi en tant qu'analyste en sécurité de l'information et fais progresser ta carrière en cybersécurité vers de nouveaux sommets. Nos analystes de la sécurité de l'information travaillent depuis deux bureaux, l'un au Canada et l'autre ...

Jobber
Canada
Remote

Our Security Analyst, GRC, focuses on the governance side of security and is not a technical security operations position requiring specific technical certifications or experience. This is an excellent opportunity to gain hands-on experience in the field of information security while working closely...

Hitachi Cyber
Blainville, Quebec

Information Security Analyst and take your cybersecurity career to new heights. Relevant du chef d'équipe des Analystes, l’analyste Sr. As a global leader in information security solutions, we're at the forefront of protecting organizations from ever-evolving cyber threats. Analyst plays a key role ...

CN
Montreal, Quebec

The Expert, Information Security Third Party Risk Management implements the governance, risk, and compliance capabilities required to bring Information Security risks involving third party suppliers, solutions, subsidiaries, and customers to acceptable levels required to enable to enable the organiz...

CBC/Radio-Canada
Montreal, Quebec

Perform hands-on gap or risk assessments to identify significant information security risks (including applications, systems, data centres, infrastructure and vendor security risk assessments) to determine the organizational risk posture. In this role, you will be responsible for certain deliverable...