IT Security Policy & Compliance Analyst - (Remote)
pittsburgh, PA, US
NTT DATA
NTT DATA helps clients transform through consulting, industry solutions, business process services, IT modernization and managed services.Req ID: 274265
NTT DATA Services strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.
We are currently seeking a IT Security Policy & Compliance Analyst - (Remote) to join our team in pittsburgh, Pennsylvania (US-PA), United States (US).
The ideal candidate will have outstanding research, writing, and presentation skills, a desire to tackle complex problems, and strive to complete assignments timely with minimal oversight. This position will join a team of analysts that drive visibility and understanding of information security compliance and policy as well as influence strategic decision making across the enterprise.
Key Responsibilities:
- Coordinate responses to internal and external cybersecurity audits as well as customer security questionnaires
- Play a major role in the implementation of Information Security Management System (ISMS) frameworks, such as ISO 27001 and SOC 2
- Maintain all documentation related to the compliance program to support audits, potential litigation, and charting maturity of the overall program
- Monitor the legal, regulatory, and compliance landscape to proactively identify cybersecurity related issues that may impact Thermo Fisher
- Lead development, maintenance, and revision of policies, standards, procedures, work instructions, and guidelines of security programs and related activities
- Partner with internal teams to ensure policies meet the needs and goals of CIS
- Review and supervise action plans developed by risk owners and ensure plans are completed appropriately.
- Process policy exception requests and ad-hoc risk analyses
Education:
- 3+ years of related work experience
- Bachelor’s Degree in Risk Management, Information Assurance, Information Security, Cybersecurity, IT, Law or Data Privacy or related field. Equivalent work experience is accepted.
- Certifications not required, but encouraged: CRISC, CISSP or CISA
Experience:
- Experience drafting corporate policies or working in document management
- Experience providing analysis of laws and regulations as they apply to a specific business or market segment
- Ability to explain legal, technical and compliance topics to a broad audience
- General understanding of cybersecurity technologies and controls with the ability to bridge the gap between regulatory and technical concepts
Knowledge, Skills, Abilities:
- Customer service mentality
- Attention to detail, organizational skills, time management
- Excellent verbal and written communication skills
- Eagerness to learn
- Ability to work both independently and as part of a team
About NTT DATA Services
NTT DATA Services is a recognized leader in IT and business services, including cloud, data and applications, headquartered in Texas. As part of NTT DATA, a $30 billion trusted global innovator with a combined global reach of over 80 countries, we help clients transform through business and technology consulting, industry and digital solutions, applications development and management, managed edge-to-cloud infrastructure services, BPO, systems integration and global data centers. We are committed to our clients’ long-term success. Visit nttdata.com or LinkedIn to learn more.
NTT DATA Services is an equal opportunity employer and considers all applicants without regarding to race, color, religion, citizenship, national origin, ancestry, age, sex, sexual orientation, gender identity, genetic information, physical or mental disability, veteran or marital status, or any other characteristic protected by law. We are committed to creating a diverse and inclusive environment for all employees. If you need assistance or an accommodation due to a disability, please inform your recruiter so that we may connect you with the appropriate team.
INDHCLSMC
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits CISA CISSP Cloud Compliance CRISC ISMS ISO 27001 Privacy Risk management SOC SOC 2
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs