Security Risk Assessment Analyst
NTT DATA
NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.
We are currently seeking a Security Risk Assessment Analyst to join our team in Montreal, Quebec (CA-QC), Canada (CA).
Job Responsibilities Include:
- Contacting system owners/vendors for assigned systems to gather relevant background material about the system/application and setting up interviews for information gathering.
- Conducting remote/in-person interviews with system owners/vendors to get all the required information for assessment and to identify any gaps.
- Reviewing system-related material including specifications, diagrams, requirements, and test plans to ensure security-related standards are followed.
- Reviewing results with system owners/vendors and Senior Security Architecture Analysts, as needed. - Conducting security assessments using available documentation.
- Creating comprehensive security architecture assessment reports that clearly identify root-cause and remediation strategies.
- Developing and establishing global security standards and processes.
- Evaluating new and emerging products and technologies while making recommendations concerning the introduction of new technologies
Basic Qualifications:
- 3+ years of experience in Security Architecture Assessment.
- Bachelor's degree in Information Systems Security or Computer Science
Preferred Skills:
- Minimum of one professional certification amongst CISSP, SSCP, and CISM with good standing will be an added advantage.
- Excellent verbal and written communications skills, including presentations to clients and senior technical resources.
- Ability to manage expectations and handle high-pressure situations with tight deadlines.
- Experience in an information security (application and/or infrastructure) role in an enterprise environment.
- Ability to explain common application vulnerabilities and remediation strategies to developers.
- Ability to explain technology risks; including XSS, CSRF, Injection attacks introduced by application vulnerabilities to a system's Business Owner.
- Ability to quickly adapt to changing priorities and demands.
- Excellent security knowledge (access control) of one or more applicable security technologies or platforms including SSO (Single Sign-On) technologies like SAML2.0 and Kerberos.
- Excellent knowledge of information security processes, response procedures, and various attack methods used for information theft or network intrusion.
- Excellent analytical and problem-solving skills.
- Excellent knowledge of network technologies as they pertain to communications, computer system environments, and related infrastructures.
- Excellent research ability and knowledge update on the security trends and attacks, following OWASP top 10 security understanding.
#INDFSINS
#L1-NAM
About NTT DATA
NTT DATA is a $30 billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long term success. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies.Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure and connectivity. We are one of the leading providers of digital and AI infrastructure in the world. NTT DATA is a part of NTT Group, which invests over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. Visit us at us.nttdata.com
NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https://us.nttdata.com/en/contact-us . This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here . If you'd like more information on your EEO rights under the law, please click here . For Pay Transparency information, please click here .
How to apply
To apply for this job you need to authorize on our website. If you don't have an account yet, please register.
Post a resume