CrawlJobs Logo
NTT DATA Logo NTT DATA · IT - Administration

Client Information Security Manager (ISM)

United States, Plano · Job Posted June 17, 2026
Apply Position
Job Link Share

Job Description

The NTT DATA Services Information Security Manager (ISM) oversees and coordinates the information security services that NTT DATA provides to the customer. This is an individual contributor role in which the ISM acts as a trusted information security partner with the customer and works collaboratively to understand, anticipate and recommend risk mitigation while promoting the overall information security protection for the customer’s information assets. ISM partners with the client to align information security with the customer’s business strategy, security policies and regulatory and compliance requirements resulting in increased protection and reduced risk. In this role, the ISM works with stakeholders and teams across the organization to help deliver information security services.

Job Responsibility

  • Ensure the delivery of information security services to the customer is in compliance with the contract and any applicable standards and regulatory requirements (e.g., PCI, SOX)
  • Collaborate with the client in the definition and implementation of information security policies, strategies, procedures and configurations in order to ensure confidentiality, integrity and availability of client’s environment and data
  • Participate with the customer in the strategic design process to translate security and business requirements into processes and systems
  • Evaluate new / emerging security products and technologies and make recommendations to customer leadership in regards to the security posture impact on the organization
  • Identify, review and recommend information security improvements as they relate to the achievement of the customer’s business goals and objectives
  • Manage and drive remediation efforts related to information security
  • remediation may be from incidents, penetration tests, vulnerability scans, internal/external audits and Critical Practice assessments
  • Identify information security weaknesses and/or gaps in the customer’s current operations and work with the customer to bring information security operations up to standards
  • Participate and represent IT Security in Delivery/Operational meetings
  • conduct an information security operational review meeting with account (e.g., Customer Delivery Executive) and customer (e.g., CISO) key stakeholders with topics including information security status and performance
  • Review service management reports to ensure tickets (i.e., incidents, problems, requests, changes) related to information security, are being acknowledged, worked and Service Level Agreements are being met
  • provide direction on ticket remediation and ensure remediation is complete
  • Conduct an ongoing security awareness program for NTT DATA personnel supporting the customer ensuring individuals understand and are compliant with the relevant information security obligations in support of the customer
  • program should address relevant security topics and adequately provide guidance on security policies and supporting documentation
  • Cultivate trusted partner relationships with account and customer
  • keep consistent and open dialogue to uncover issues, challenges, risks
  • Maintain an information security strategy (forward looking roadmap), for your customer, aligning services / portfolio components to the strategy

Requirements

  • 12+ years of relevant experience
  • Strong knowledge of standards / regulations impacting information security (e.g., NIST, ISO, PCI)
  • Experience with information security internal & external audits, contract compliance, and quality initiatives
  • Significant experience in identifying and utilizing a global risk based management model.

Nice to have

  • At least one of the following certifications: CISSP, CISM, SSCP, CEH, or CSSLP
  • Undergraduate or graduate degree
  • Security/Consulting industry experience working in a customer facing role with customer security relationship management experience at the senior level
  • Familiarity with information security technologies and issues on multiple platforms
  • Experience working with network perimeter security technologies such as firewalls, intrusion detection/prevention systems and content filtering technologies
  • Working knowledge of security monitoring technologies and processes such as monitoring architectures, log aggregation, SOC/SIEM capabilities and Incident Response
  • Significant experience in application and integration of globally accepted security standards
  • Advanced knowledge of Information Technology and Infrastructure configurations that will protect systems from unauthorized access and software invasion
NTT DATA - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Client Information Security Manager (ISM)

8 matching positions

New

Manager-Information Security

Skill Set : Information Security Total Experience : 9.00 to 15.00 Years No of ...
Location
Location
India , Noida
Salary
Salary:
Not provided
techmahindra.com Logo
Tech Mahindra
Expiration Date
June 30, 2026
Flip Icon
Requirements
Requirements
  • B.E. / B.Tech / B.Sc/ M.Tech with relevant experience and managerial knowledge of handling audits and teams for audit of network, systems, processes and procedures. With experience of having managed deliverables and teams with Exposure to IT infrastructure technologies in the areas of Network/System/Security domain. Customer & internal Security audits / assessments. Desirable certifications (Any of the following): CISA/CISM, CISSP, CCNA, CPISI, ISO 27001, ISO 22301
  • Information Security awareness campaign, internal implementation of ISMS / BCMS, conducting internal/compliance audits, executing Security improvement plan, Incident management, Business Continuity management and preparing for client & external audits
  • Leading/heading information security vertical within the function, Leading, managing Teams and/or multiple Locations for achieving, maintaining and improving the existent posture on Information Security awareness campaign, internal implementation, maintenance and improvement of ISMS and BCMS, managing and conducting internal/compliance audits, leading and executing Security improvement plan, Leading Incident management, Business Continuity management, maintenance and reporting of applicable dashboards and leading teams for client & external audits
Job Responsibility
Job Responsibility
  • Customer & internal Security audits / assessments
  • Information Security awareness campaign, internal implementation of ISMS / BCMS, conducting internal/compliance audits, executing Security improvement plan, Incident management, Business Continuity management and preparing for client & external audits
  • Leading/heading information security vertical within the function, Leading, managing Teams and/or multiple Locations for achieving, maintaining and improving the existent posture on Information Security awareness campaign, internal implementation, maintenance and improvement of ISMS and BCMS, managing and conducting internal/compliance audits, leading and executing Security improvement plan, Leading Incident management, Business Continuity management, maintenance and reporting of applicable dashboards and leading teams for client & external audits
  • Fulltime
Read More
Arrow Right

Information Security Manager

As a leading professional services firm, we are seeking a highly skilled Informa...
Location
Location
Salary
Salary:
Not provided
ogier.com Logo
Ogier
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in information security management, business continuity planning and risk management, ideally within a professional services or legal firm environment
  • Experience supporting and/or maintaining ISO 27001 certification and managing an ISMS
  • Strong knowledge of business impact assessments, disaster recovery, RTOs/RPOs, and system criticality mapping
  • Excellent communication and interpersonal skills, with the ability to deliver effective training and collaborate across global teams
  • Analytical and detail-oriented, with a proactive approach to risk identification and mitigation
  • Professional certifications such as CISSP, CISM, ISO 27001 Lead Implementer/Auditor, CBCP, or equivalent are desirable
Job Responsibility
Job Responsibility
  • Lead the development, update and ongoing management of the firm’s Business Continuity Plans (BCP), ensuring it remains current and effective across all jurisdictions
  • Organise and conduct BCP tests with local business continuity groups, including documentation, reporting and follow-up of test outcomes
  • Provide business continuity training and run targeted group business continuity sessions for employees
  • Undertake Business Impact Assessments (BIAs) with various teams to ensure understanding and documentation of Recovery Time Objectives (RTOs), Recovery Point Objectives (RPOs), system criticality and dependencies, supporting disaster recovery planning
  • Manage and complete information security assessments and Due Diligence Questionnaires (DDQs) received from clients
  • Support outgoing third party assessments, onboarding and risk reviews, including working directly with third parties to address security requirements
  • Oversee third party risk management from a security perspective, ensuring risks are documented, reported and mitigated as appropriate
  • Support the firm’s ongoing ISO 27001 certification and framework, including continuous improvement of the ISMS (Information Security Management System)
  • Develop and maintain the firm’s information security policies and procedures in line with industry best practice and regulatory requirements across all jurisdictions
  • Undertake clause-based auditing, policy reviews and control monitoring as part of the ISO 27001 role
Read More
Arrow Right

Information Security Manager

As a leading professional services firm, we are seeking a highly skilled Informa...
Location
Location
Hong Kong , Hong Kong
Salary
Salary:
Not provided
ogier.com Logo
Ogier
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in information security management, business continuity planning and risk management, ideally within a professional services or legal firm environment
  • Experience supporting and/or maintaining ISO 27001 certification and managing an ISMS
  • Strong knowledge of business impact assessments, disaster recovery, RTOs/RPOs, and system criticality mapping
  • Excellent communication and interpersonal skills, with the ability to deliver effective training and collaborate across global teams
  • Analytical and detail-oriented, with a proactive approach to risk identification and mitigation
  • Professional certifications such as CISSP, CISM, ISO 27001 Lead Implementer/Auditor, CBCP, or equivalent are desirable
Job Responsibility
Job Responsibility
  • Lead the development, update and ongoing management of the firm’s Business Continuity Plans (BCP), ensuring it remains current and effective across all jurisdictions
  • Organise and conduct BCP tests with local business continuity groups, including documentation, reporting and follow-up of test outcomes
  • Provide business continuity training and run targeted group business continuity sessions for employees
  • Undertake Business Impact Assessments (BIAs) with various teams to ensure understanding and documentation of Recovery Time Objectives (RTOs), Recovery Point Objectives (RPOs), system criticality and dependencies, supporting disaster recovery planning
  • Manage and complete information security assessments and Due Diligence Questionnaires (DDQs) received from clients
  • Support outgoing third party assessments, onboarding and risk reviews, including working directly with third parties to address security requirements
  • Oversee third party risk management from a security perspective, ensuring risks are documented, reported and mitigated as appropriate
  • Support the firm’s ongoing ISO 27001 certification and framework, including continuous improvement of the ISMS (Information Security Management System)
  • Develop and maintain the firm’s information security policies and procedures in line with industry best practice and regulatory requirements across all jurisdictions
  • Undertake clause-based auditing, policy reviews and control monitoring as part of the ISO 27001 role
  • Fulltime
Read More
Arrow Right

Information Security & Compliance Engineer (ISO 27001)

We need a dynamic, technically literate security professional with a strong IT b...
Location
Location
Singapore , Singapore
Salary
Salary:
7000.00 - 9000.00 SGD / Month
https://www.randstad.com Logo
Randstad
Expiration Date
July 12, 2026
Flip Icon
Requirements
Requirements
  • Minimum 5 years of experience in information security, successfully balancing technical IT operations with governance
  • Direct experience serving as an ISO27001 ISMS management representative and coordinating assurance audits like SOC1/SOC2
  • Ability to confidently interpret cloud security logs, SIEM alerts, EDR findings, and vulnerability scans
  • You should understand cloud architectures (AWS/Alibaba Cloud preferred) and core security domains (IAM, encryption, network security)
  • ISO27001, ISMS management representative, cloud security logs, SIEM alerts, EDR findings, vulnerability scans, AWS, Alibaba Cloud, SOC1/SOC2, SIEM, DLP, EDR, ISO/IEC 27001, CISSP, CISA, IT Security, security compliance, CISM, CCSP, ISO 27001 Lead Imp
  • Associate Degree/Diploma
Job Responsibility
Job Responsibility
  • Lead the international ISMS framework as the primary representative, keeping all risk registers and policies sharp to guarantee seamless passes for ISO 27001, SOC 1/2, and OSPAR
  • Spot technical vulnerabilities stemming from audits or business scaling, then spearhead proof-of-concepts for advanced tools (like SIEM, PAM, and EDR) to validate them before infrastructure deployment
  • Steer the monitoring ecosystem by decoding complex alerts, threat intelligence, and vulnerability data from SIEM, EDR, and DLP tools into tactical defense strategies
  • Command emergency response efforts from simulated exercises to full post-incident reviews, while scheduling routine penetration tests and vulnerability assessments
  • Team up with DevOps, R&D, and Infrastructure squads to weave secure-by-design principles right into the DNA of the product platforms
  • Act as the technical authority on security, handling high-stakes client questionnaires and reviewing contract clauses to help close business deals
Read More
Arrow Right

Information Security Consultant

PGI is seeking experienced Information Security Consultants to join our contract...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
pgitl.com Logo
Protection Group International
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven people and relationship management skills
  • Demonstrable experience providing Information Assurance consultancy
  • Experience in or knowledge of the PCI DSS standard, NIST CSF, DORA, GDPR/DPA
  • ISO 27001 Lead Auditor, ISO 27001 Lead Implementer, Business Continuity or Cloud Security accreditations are highly desirable
  • Experience in conducting risk assessments and forming risk management policies
  • Excellent verbal and written communication skills, with the ability to present to clients and business stakeholders
  • A positive approach to problem-solving and possesses the ability to work smart and collaboratively to prioritise and set deadlines
Job Responsibility
Job Responsibility
  • Engaging confidently with clients relating to solving Information Security Governance, Risk, and Compliance problems
  • Providing hands-on compliance and consultancy services across a range of requirements for clients, such as ISO 27001, business continuity, data protection, DORA, or other regulatory compliance needs, including IASME Cyber Essentials
  • Support colleagues in delivery by also assisting with: Information Security Management System (ISMS) design and implementation
  • GDPR gap assessments and implementation support
  • PCI DSS scoping, gap assessments, implementation guidance, and compliance reporting
  • Maturity Assessments
  • Third-party / supplier assurance reviews
  • Providing expertise to enhance our international capacity-building offer and value
  • Contribute towards the maintenance of PGI’s own accreditations, including ISO 27001, ISO 9001 and business continuity as well as compliance with data protection regulations
  • Maintaining your own continuing professional development, keeping up to date with security industry trends and best practices
Read More
Arrow Right

Information Security Process & Compliance Engineer

The Information Security Process & Compliance Engineer is responsible for implem...
Location
Location
Belarus
Salary
Salary:
Not provided
coherentsolutions.com Logo
Coherent Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 1+ years in the IT industry, specializing in information security or students of relevant universities
  • Experience with core ISMS processes such as risk management, incident management, conducting audits, metrics, compliance reviews, etc.
  • Basic knowledge of modern InfoSec standards, best practices, frameworks such as the ISO 27001 series, NIST, etc.
  • Basic knowledge of system technologies (AD, DHCP, DNS, SMB, etc.), network technologies (LAN/WAN, TCP/IP and other network protocols)
  • Basic understanding of security technologies and concepts such as SIEM, NGFW, patching, vulnerability assessment, antivirus/EDR, etc.
  • Team player with proven ability to work with people - resolving conflicts, willing to engage in constructive discussion
  • Ability to carry out personal daily and weekly planning
  • Willingness to learn and discover new areas in the field of Information Security
  • Level of English - from B1 (spoken/written)
Job Responsibility
Job Responsibility
  • Implementing and maintaining the company Information Security Management System (ISMS) in accordance with the requirements of Information Security best practice and standards (primarily ISO 27001), as well as Client requirements
  • Supports InfoSec processes, including compliance management, risk management, incident management, audits, measurement, and other related activities
  • Develop relationships with and collaborate with other functional IT groups, including business units, network/system administrators, and DevOps teams
What we offer
What we offer
  • Technical and non-technical training for professional and personal growth
  • Internal conferences and meetups to learn from industry experts
  • Support and mentorship from an experienced employee to help you professional grow and development
  • Internal startup incubator
  • Health insurance
  • English courses
  • Sports activities to promote a healthy lifestyle
  • Flexible work options, including remote and hybrid opportunities
  • Referral program for bringing in new talent
  • Work anniversary program and additional vacation days
Read More
Arrow Right
New

Ts Cross Technology Systems Integration Specialist

The Collaboration Technical Services (TS) Systems Integration Specialist is a se...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Seasoned understanding and appreciation of technical design and business principles
  • Seasoned project fundamental and administration ability
  • Seasoned project skills which are demonstrated in the execution of installations and other assignments
  • Excellent customer engagement skills
  • Demonstrate relevant domain specialist knowledge
  • Excellent verbal communication skills
  • Client focused and displays a proactive approach to solving problems
  • Ability to work under pressure
  • Ability to coach, mentor and provide guidance to team members
  • Bachelor's degree or equivalent in Information Technology or Computing or a related field
Job Responsibility
Job Responsibility
  • Interacts with clients on site and remote to meet complex requirements of a solution
  • Escalates unresolved problems and issues to the relevant third parties
  • Responds to escalated client requests
  • Escalates complex problems to the relevant third parties
  • Writes reports and proposals and completes and maintains project documentation
  • Assists with the documentation of standard operating procedures relating to installations and fixes
  • Acts as coach and mentor to more junior Implementation Engineers and Technicians
  • Assumes responsibility for the coordination of the activities of the junior Engineers, in line with performance targets
  • Included in higher complexity design work, with input to the design expected
  • Expected to take ownership of relevant technologies according to domain or specialization
  • Fulltime
Read More
Arrow Right

Intern - Governance, Risk & Compliance

Location
Location
Ireland , Dublin
Salary
Salary:
Not provided
waystone.com Logo
Waystone Governance Ltd.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Takes ownership and responsibility for own actions, performance, and development
  • Effectively manages own workflow, time and priorities with very minimal oversight
  • Demonstrates trustworthiness and understands the need for confidentiality
  • Proficient in using Microsoft Excel and Word
  • Fluency in spoken and written English
  • Demonstrable interest in cybersecurity, data protection and AI governance frameworks
  • Knowledge of incident response, digital investigation or eDiscovery processes and tools would be advantageous
  • Knowledge of key cyber security standards and frameworks such as NIST, ISO 27001, NIS2, OWASP etc. would be advantageous
  • Knowledge of IT Audit processes would be advantageous
  • Bachelor's degree in Information Security, Computer Science and/or related field, or equivalent work experience
Job Responsibility
Job Responsibility
  • Client billable GRC, digital resilience and assurance, cyber security, incident response, incident investigation and eDiscovery work
  • Documentation creation and updates for cyber, governance, risk and compliance
  • Policy reviews and template development
  • Reviewing internal processes and assisting with client baseline assessments for standards and frameworks such as NIS2, CyFun, ISO 27001, GDPR, NIST, EU AI Act
  • Assisting in various compliance activities regarding information security management systems and ISO 27001, ISO27701 and ISO42001 certifications
  • Carrying out vendor due diligence and security risk assessments
  • Assisting with the planning and delivery of incident response tabletop exercises
  • Managing Waystone Compliance Solutions’ own internal ISMS
  • Supporting the WCS Data Protection and Cyber teams where required
  • Assisting and supporting Waystone’s internal security team with core IT projects, if required
Read More
Arrow Right