About the Company
NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now
Asegúrese de presentar su candidatura con toda la información solicitada, tal como se expone en la descripción del puesto a continuación.
About the Role:
At NTT DATA we are looking for professionals specialized in: IT Risk Manager Analyst – Compliance & Controls to join an international project of great relevance.
Key Responsibilities:
* Information Risk Assessment (IRM)
* Conduct systematic Risk Assessments to identify, analyze, and evaluate threats to digital assets.
* Ensure all risk management activities align framework.
* Document risk treatment plans and follow up on the implementation of mitigating actions.
* ISO 27001 Controls monitoring:
* Support the rollout and maintenance of Information Security controls based on ISO 27001 and Solvd Corporate Rules.
* Collaborate with IT teams to ensure controls (technical and organizational) are implemented effectively.
* Monitor the effectiveness of the control environment and suggest remediations for identified gaps.
* Collect evidence (design / effectiveness) when needed
Key Skills and Experience:
* Experience performing IT Risk Assessments in complex environments.
* 3–5 years of experience in Information Security, IT Audit, or IT Compliance.
* Hands-on experience with ISO 27001 (implementation, management, or auditing).
* Familiarity with international security standards, regulatory requirements (e.g., NIS2, GDPR) and industry best practices for IT Risk Management.
* Strong understanding of Risk Management methodologies (e.g., ISO 31000, ISO 27005).
* Knowledge of the ISO 27001:2022 control set (Annex A).
* Ability to interpret \"Corporate Rules\" and translate them into actionable risk managment tasks.
* Experience with GRC (Governance, Risk, and Compliance) software tools is a plus (Archer, others).
Education / Certifications (preferred):
* Degree in IT, Information Security, or related field.
* ISO 27001 Lead Implementer or Lead Auditor training is a plus.
We Offer:
* Opportunities for professional development and continuous training.
* An inclusive and multicultural work environment.
* Participation in innovative and challenging projects at an international level.
* Competitive benefits package. xpzdshu
If you are passionate about cybersecurity and ready to start your career in an international environment, we invite you to apply and join our team!