IT Security Policy & Compliance Analyst - (Remote)

Req ID: 274265 

NTT DATA Services strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a IT Security Policy & Compliance Analyst - (Remote) to join our team in pittsburgh, Pennsylvania (US-PA), United States (US).

The ideal candidate will have outstanding research, writing, and presentation skills, a desire to tackle complex problems, and strive to complete assignments timely with minimal oversight. This position will join a team of analysts that drive visibility and understanding of information security compliance and policy as well as influence strategic decision making across the enterprise.    

Key Responsibilities:          

• Coordinate responses to internal and external cybersecurity audits as well as customer security questionnaires      
• Play a major role in the implementation of Information Security Management System (ISMS) frameworks, such as ISO 27001 and SOC 2
• Maintain all documentation related to the compliance program to support audits, potential litigation, and charting maturity of the overall program      
• Monitor the legal, regulatory, and compliance landscape to proactively identify cybersecurity related issues that may impact Thermo Fisher      
• Lead development, maintenance, and revision of policies, standards, procedures, work instructions, and guidelines of security programs and related activities      
• Partner with internal teams to ensure policies meet the needs and goals of CIS      
• Review and supervise action plans developed by risk owners and ensure plans are completed appropriately.      
• Process policy exception requests and ad-hoc risk analyses

Education:        

• 3+ years of related work experience     
• Bachelor’s Degree in Risk Management, Information Assurance, Information Security, Cybersecurity, IT, Law or Data Privacy or related field.  Equivalent work experience is accepted.     
• Certifications not required, but encouraged: CRISC, CISSP or CISA  

Experience:       

• Experience drafting corporate policies or working in document management     
• Experience providing analysis of laws and regulations as they apply to a specific business or market segment      
• Ability to explain legal, technical and compliance topics to a broad audience      
• General understanding of cybersecurity technologies and controls with the ability to bridge the gap between regulatory and technical concepts    

Knowledge, Skills, Abilities:        

• Customer service mentality      
• Attention to detail, organizational skills, time management      
• Excellent verbal and written communication skills      
• Eagerness to learn      
• Ability to work both independently and as part of a team

About NTT DATA Services

NTT DATA Services is a recognized leader in IT and business services, including cloud, data and applications, headquartered in Texas. As part of NTT DATA, a $30 billion trusted global innovator with a combined global reach of over 80 countries, we help clients transform through business and technology consulting, industry and digital solutions, applications development and management, managed edge-to-cloud infrastructure services, BPO, systems integration and global data centers. We are committed to our clients’ long-term success. Visit nttdata.com or LinkedIn to learn more.

NTT DATA Services is an equal opportunity employer and considers all applicants without regarding to race, color, religion, citizenship, national origin, ancestry, age, sex, sexual orientation, gender identity, genetic information, physical or mental disability, veteran or marital status, or any other characteristic protected by law. We are committed to creating a diverse and inclusive environment for all employees. If you need assistance or an accommodation due to a disability, please inform your recruiter so that we may connect you with the appropriate team.

INDHCLSMC