Previous Job
Previous
Information Security Manager (ISM)
Ref No.: 18-03927
Location: Silver Spring, Maryland
At NTT DATA, we know that with the right people on board, anything is possible. The quality, integrity, and commitment of our employees are key factors in our company's growth, market presence and our ability to help our clients stay a step ahead of the competition. By hiring the best people and helping them grow both professionally and personally, we ensure a bright future for NTT DATA and for the people who work here.

The responsibilities of the ISM include: - Ensure the delivery of information security services to the customer is in compliance with the contract and any applicable standards and regulatory requirements (e.g., PCI, SOX) - Collaborate with the client in the definition and implementation of information security policies, strategies, procedures and configurations in order to ensure confidentiality, integrity and availability of client’s environment and data - Participate with the customer in the strategic design process to translate security and business requirements into processes and systems - Evaluate new / emerging security products and technologies and make recommendations to customer leadership in regards to the security posture impact on the organization - Identify, review and recommend information security improvements as they relate to the achievement of the customer’s business goals and objectives - Participate in internal and external audits for the customer (e.g., PCI, SOX) and coordinate information security services activities - Manage and drive remediation efforts related to information security; remediation may be from incidents, penetration tests, vulnerability scans, internal/external audits and Critical Practice assessments - Identify information security weaknesses and/or gaps in the customer’s current operations and work with the customer to bring information security operations up to standards - Participate and represent IT Security in Delivery/Operational meetings; conduct an information security operational review meeting with account (e.g., Customer Delivery Executive) and customer (e.g., CISO) key stakeholders with topics including information security status and performance - Review service management reports to ensure tickets (i.e., incidents, problems, requests, changes) related to information security, are being acknowledged, worked and Service Level Agreements are being met; provide direction on ticket remediation and ensure remediation is complete - Cultivate trusted partner relationships with account and customer; keep consistent and open dialogue to uncover issues, challenges, risks - Maintain an information security strategy (forward looking roadmap), for your customer, aligning services / portfolio components to the strategy