CrawlJobs Logo

Information Security Advisor

nttdata.com Logo

NTT DATA

Location Icon

Location:
United States , Merrifield

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Employment contract

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

The Senior SOC Analyst is a key member of the 24/7/365 Security Operations Center, which serves as the escalation point for advanced investigations, incident response, and proactive threat hunting. This role conducts higher-level analysis than other analysts on the team. A senior SOC analyst performs deep forensic investigations, correlates multi-source threat intelligence information, and guides containment and remediation strategies. The Senior SOC Analyst identifies and mitigates advanced threats across enterprise IT endpoints, cloud environments, and OT systems. They leverage frameworks like the MITRE ATT&CK framework and others to detect, disrupt, and prevent malicious activity from occurring in the enterprise environment. They work closely with the SOC manager and leads. They mentor junior staff, assist to refine SOC processes, and ensures the organization maintains a strong cybersecurity posture. They collaborate with engineers, threat intelligence and forensics teams to enhance detection capabilities, improve incident response readiness, and deliver actionable security insights to leadership.

Job Responsibility:

  • Lead advanced incident detection, investigation, and analysis efforts
  • Coordinate and direct complex incident response activities
  • Conduct proactive threat hunting to identify emerging risks
  • Work with forensic teams to ensure proper forensic collection, preservation, and analysis of digital evidence
  • Develop and enhance SOC processes, playbooks, and detection capabilities
  • Perform threat intelligence collection, analysis, and dissemination
  • Mentor and train SOC analysts to improve investigative capabilities and analytical thought process
  • Collaborate with stakeholders to strengthen overall cybersecurity posture
  • Maintain documentation and reporting for SOC operations

Requirements:

  • Master’s degree in Information Technology, Cybersecurity, Data Science, Information Systems, or Computer Science
  • Education Equivalency: One-and-one-half (1.5) years of additional experience can substitute for one (1) year of a typical degree program
  • Minimum 8 years of experience in Information Technology (IT) and/or Information Security (IS)
  • DoD 8140 certification for their respective area or the ability to obtain certification within six (6) months of onboarding
  • Active Secret or higher security clearance holder and must be eligible for a Top-Secret clearance if requested

Additional Information:

Job Posted:
May 04, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
NTT DATA - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Information Security Advisor

VP, Information Security Officer (ISO), Markets, Taiwan

The Chief Information Security Office (CISO) is home to deeply talented colleagu...
Location
Location
Taiwan , Taipei
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of relevant experience in Information & Cybersecurity space or related domains such as risk management, auditing, consulting & advisory services
  • One or more of IS/Cybersecurity industry standard certifications (e.g. CISA, CISSP, CISM, SANS GIAC, CEH, CRISC, CCSP,SSCP, CompTIA Security+ etc.) are mandatory
  • Strong understanding of Information security domains with hands on experience of performing application security risk assessments covering controls such as Identity & Access Management, API Security, Cloud/SaaS Security, Cryptography, Sensitive Data protection, Audit Logging/Monitoring, Secure SDLC controls
  • Sound knowledge of Network Security controls (including Firewalls, IDS/IPS) and Application Vulnerability Assessments/Source code & component vulnerability scanning related controls
  • Good understanding of Markets Business and Applications such as such as trading platforms, order management systems, risk management systems, pricing engines etc. is an advantage
  • Hold relevant professional certificates recognized by local authorities
  • Sound knowledge of IS/Cybersecurity related local regulatory, and compliance requirements in the financial services industry and Securities & Futures Markets
  • Understanding of policy compliance and how it relates to risk
  • Extensive knowledge of information security risk assessment methodologies/industry standards
  • Demonstrated ability to take ownership and follow up on issues
Job Responsibility
Job Responsibility
  • Act as a Trusted Security Advisor to business and technology teams, guiding them on IS/Cyber risks
  • Appropriately assess risks when business decisions are made, demonstrating consideration for the firm's reputation and safeguarding Citigroup, its clients and assets
  • Drive compliance with applicable Information & Cybersecurity laws, rules and regulations, adhering to relevant Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency
  • Serve as the local point of contact of all information security matters, including management, governance, compliance, and third-party risk management
  • Manage local audit and regulatory engagements impacting CISO
  • Drive country-specific control implementations or special programs, where deemed necessary based on risk assessments or local regulatory requirements
  • Work with business & technology management to drive the information security program and govern risk management activities including CSRA (Cybersecurity Risk Appetite) reporting
  • Work with the internal Applications Development function to facilitate improvements in both architectural and application security posture
  • Provide strategic risk guidance for business and technology projects, including the evaluation and recommendation of security controls and corrective actions to mitigate/remediate risks
  • Manage security incidents and events to protect corporate IT assets, including intellectual property, regulated data and the company's reputation
What we offer
What we offer
  • Extensive on-the-job training and exposure to senior leaders
  • Access to telehealth options, health advocates, confidential counseling
  • Expanded Paid Parental Leave Policy
  • Access to an array of learning and development resources
  • Generous paid time off packages
  • Resources and tools to volunteer in the communities
  • Fulltime
Read More
Arrow Right

Senior Information System Security Officer

We are seeking a highly skilled and mission-driven Senior Information Systems Se...
Location
Location
United States , Clarksburg
Salary
Salary:
Not provided
imts.us Logo
Innovative Management & Technology Services
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or a related field (or equivalent combination of education and experience)
  • 8+ years of progressive experience in information systems security, with at least 3 years in a senior-level or lead ISSO role supporting federal or state government agencies
  • Strong working knowledge of: NIST 800-53, RMF, FISMA, OWASP Top 10, and SANS Institute standards
  • SAFe Agile environments and integrating security in Agile workflows
  • Networking, Linux/Windows system administration, and secure software development practices
  • Cloud platforms (AWS, Azure, GCP) and related security tools (e.g., AWS Security Hub, Azure Defender)
  • Experience in managing security documentation, participating in audits, and working with compliance frameworks
  • Relevant certifications such as CISSP, CISM, Security+, CEH, or equivalent
  • Active Top Secret clearance is required
  • U.S. Citizenship is required
Job Responsibility
Job Responsibility
  • Lead the implementation and maintenance of system security controls in compliance with federal cybersecurity frameworks, including NIST SP 800-53, RMF, OWASP, DISA STIGs, and Common Criteria
  • Oversee the full lifecycle of Authorization to Operate (ATO) processes, including preparation of System Security Plans (SSPs), Security Assessment Reports (SARs), POA&Ms, and risk assessments
  • Serve as a senior security advisor and liaison to system owners, developers, DevOps engineers, and government stakeholders
  • Participate in technical reviews of system architecture and ensure secure design of virtualized and software-defined infrastructures
  • Support integration of security controls into CI/CD pipelines using DevSecOps principles and tools (e.g., Jenkins, GitLab CI, SonarQube, Snyk)
  • Provide security engineering support for modern cloud environments, including AWS, Azure, or Google Cloud Platform, and assess cloud-native security capabilities
  • Conduct vulnerability assessments, interpret scan results from tools like Tenable, Nessus, Splunk, or Qualys, and lead remediation efforts
  • Mentor junior ISSOs and analysts on security policies, best practices, and tool usage
  • Ensure continuous monitoring activities are aligned with organizational risk tolerance and compliance goals
What we offer
What we offer
  • competitive compensation
  • excellent benefits including tuition reimbursement and employer-contributed 401K
  • referral bonuses
  • Fulltime
Read More
Arrow Right

Information Security Officer

The Information Security Technology Lead Analyst is a senior level professional ...
Location
Location
United Kingdom , Belfast
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven relevant experience
  • Advanced proficiency with Microsoft Office tools and software
  • Consistently demonstrates clear and concise written and verbal communication
  • Established influencing and relationship management capabilities that contribute to strategic alignment and execution
  • Proven analytical skills and a strong sense of curiosity, with the ability to uncover the root causes and understand the true nature of complex security and risk issues
  • Familiarity with enterprise technologies including cloud platforms, APIs, identity management, and data protection practices
  • Demonstrated knowledge of secure design principles and security frameworks.
Job Responsibility
Job Responsibility
  • Identify opportunities to automate and standardize information security controls and for the supported groups
  • Support technical and business teams to resolve any vulnerabilities or issues detected in an application or infrastructure
  • Act as a trusted advisor to business and technology teams, providing pragmatic guidance on cybersecurity risks, controls, and requirements
  • Translate technical security concepts into business-relevant language to inform leadership decisions and drive action
  • Reduce risk by analyzing the root cause of issues, their impact, and required corrective actions
  • Direct the development and delivery of secure solutions by coordinating with business and technical contacts
  • Participate in information security assessments across applications, infrastructure, and business processes, ensuring that non-compliant items are addressed in coordination with relevant stakeholders
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency
  • Contribute to the growth of less technical colleagues through knowledge-sharing, contextual guidance, and translating complex security concepts into practical understanding.
What we offer
What we offer
  • Competitive base salary (which is annually reviewed)
  • 27 days annual leave (plus bank holidays)
  • A discretional annual performance related bonus
  • Private Medical Care & Life Insurance
  • Employee Assistance Program
  • Pension Plan
  • Paid Parental Leave
  • Special discounts for employees, family, and friends
  • Access to an array of learning and development resources.
  • Fulltime
Read More
Arrow Right

Senior Information Security Consultant (QSA)

PGI is a global consultancy that helps organisations build digital resilience. W...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
pgitl.com Logo
Protection Group International
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven relationship management skills and experience in Information Assurance consultancy
  • Qualified Security Assessor (QSA) experience with valid PCI-DSS QSA accreditation with a minimum of 2 years of experience performing PCI DSS compliance consultancy
  • Familiarity with PCI DSS and NIST CSF
  • Experience in conducting risk assessments, cyber security maturity evaluations, and remediation strategies
  • Strong communication skills, able to present to clients and senior stakeholders
  • A collaborative, solutions-oriented mindset with excellent time-management skills
Job Responsibility
Job Responsibility
  • Provide expert guidance to clients, supporting both pre-sales and delivery, and establishing trusted advisor relationships to drive compliance and security improvements
  • Lead and deliver hands-on PCI DSS compliance consultancy, performing assessments, gap analyses, and remediation strategies tailored to client needs
  • Act as a subject matter expert in PCI DSS compliance and Governance, Risk, and Compliance (GRC), advising clients on regulatory compliance, risk management, and information security best practices
  • Contribute to PGI’s consultancy growth by aligning services with emerging trends and industry standards. Drive PGI’s accreditations and assist with maintaining ISO 27001, PCI DSS and data protection compliance
  • Mentor junior team members, contribute to the recruitment process, and oversee third-party relationships to ensure project profitability and delivery quality
  • Stay ahead of industry trends, emerging security threats, and best practices to maintain professional growth and continuously improve PGI’s consultancy offerings
Read More
Arrow Right

IT Internal Audit Advisor

Bright Vision Technologies is a forward-thinking software development company de...
Location
Location
United States , Reston, VA or Washington, DC
Salary
Salary:
Not provided
bvteck.com Logo
Bright Vision Technologies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6 years of experience in IT Audit, IT Risk Management, or Information Security
  • Excellent understanding of cloud technologies, such as Amazon Web Services
  • Exposure to cyber security
  • Strong project management skills
  • Prior experience leading IT Audits and coaching and providing feedback to audit staff
  • Excellent written and verbal communication skills
  • Critical thinking skills
  • Strong data analytics skills and knowledge of related tools and languages (e.g., Tableau, Python, Power BI, R)
  • Fulltime
Read More
Arrow Right

Security Consultant

BluBiz Solutions is currently seeking an experienced Security Consultant to prov...
Location
Location
Australia , Melbourne
Salary
Salary:
Not provided
blubiz.com.au Logo
BluBiz Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years of relevant IT, Assurance, Risk Management, or Cybersecurity support experience
  • Experience in Implementation of information security industry standards (ISO27001, PCIDSS) and other best practice frameworks for Enterprise clients
  • Proven experience in conducting security assessments such as VAPT evaluation, and documentation of client environment, infrastructure, processes, and operations
  • Ability to influence technical and management leaders to achieve the best Cyber Security outcomes
  • Extensive knowledge of security frameworks such as TOGAF, ISO-27001, NIST, HIPPA and PCI
  • Demonstrate the ability to translate business needs into architecture requirements
  • Strong business and risk analysis skills to drive security outcomes
  • Experience in architecting enterprise network and security solutions
  • Experience in working with one or multiple vendor solutions such as Cisco, Fortinet, Palo Alto
  • Strong client-facing skills with the ability to build relationships
Job Responsibility
Job Responsibility
  • Provide consultancy to clients on information security and architectural decisions
  • Be a trusted advisor and lead for delivery of cybersecurity and risk consulting client engagements that will include governance, risk and compliance reviews
  • Assist in driving growth of Cybersecurity and Risk practice through building solutions, and leading proposal development
  • Develop and deliver security strategy, architecture, and design for BluBiz clients
  • Deliver technical presentations tailored for technical and non-technical audiences from IT manager, executive and C-Level
  • Develop high-level and detailed security requirements relating to new opportunities
  • Prepare overall solution design, architecture, and implementation plan
  • Provide technical leadership to enterprise customers through a range of presales support functions including, supporting product evaluations, pre-sales technical consultation, post-sales support advocacy, and proactive needs analysis
  • Assist with networking and security solutions, product plans and roadmaps
Read More
Arrow Right

Info Security Full Stack Engineer

The Info Security Tech Sr Analyst is an intermediate level position responsible ...
Location
Location
India , Pune; Mumbai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Knowledge of 3rd party supplier controls and risk assessment for applications is preferred
  • At least 3+ years’ demonstrated performance as a technical SME in a highly regulated environment with 8+ years of experience as a developer
  • Experience with technical documentation, API specifications, architectural diagrams etc.
  • Experience in the design and implementation of compliance programs and projects
  • Strong written and oral communication skills, attention to detail and ability to deliver high quality materials, results oriented
  • Role model for and driver of a culture of ethics, learning and accountability
  • Positive, can-do attitude, action and results-oriented, decisive, and willing to take control of a situation when required
  • trusted advisor with sound judgment even when operating under pressure or significant stress
  • Exceptional candidates who do not meet all criteria may be considered for the role based on skills, ability to learn and positive, do what it takes attitude to drive success
  • Technical skills: HTML, CSS, JSAngular v13 (preferred),SharePoint development, SharePoint Workflow development
Job Responsibility
Job Responsibility
  • Developing and configuring solutions based on business needs and inputs
  • Develop tools and solutions to integrate risk management applications with other Citi systems
  • Test planning, coordination, and tracking including unit testing, integration testing, and User Acceptance
  • Ensuring that appropriate governance and oversight rules are implemented and adhered to
  • Drive quality in work, documentation and reporting
  • Provide feedback to improve efficiency, to simplify existing solutions as part of continuous improvement
  • Be a partner for Internal Teams looking to introduce new capabilities within their business
  • Assist with regulatory requests
  • Collaborate with senior Citi management across business and functional lines in case of need as each introduce new capabilities, to keep SaaS activity within our risk tolerance
  • Drive continuous improvement efforts for quality and efficiency
  • Fulltime
Read More
Arrow Right

Security Governance Analyst

As a Technology Security Governance Analyst, you will support and manage element...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
fortnumandmason.com Logo
Fortnum & Mason
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience of security and compliance standards frameworks such as ISO 27001, ISO 22301, GDPR, PCI-DSS, NIST, and ACPO guidelines
  • Understanding of UK legal frameworks including the Data Protection Act and Computer Misuse Act
  • Understanding of Microsoft infrastructure including Windows Server Administrator, Active Directory AAD Administrator, Group Policy, and Microsoft 365 services and Azure Cloud resource management
  • Microsoft SQL Server
  • PowerShell scripting
  • Identity & Access Management (IAM), Expertise in Microsoft Entra ID (formerly Azure AD), role-based access control (RBAC), and multi-factor authentication (MFA)
  • Cloud Security, Experience securing Azure environments, including Microsoft Defender for Cloud, Sentinel, and compliance frameworks like PCIDSS
  • Threat Protection & Incident Response: Ability to identify vulnerabilities, implement threat protection, and respond to security incidents
  • Patch Management & Endpoint Security: Understanding of patching, importance of regular updates, patching, and endpoint protection across Windows and Azure environments
  • Familiarity with backup and disaster recovery tools and practices
Job Responsibility
Job Responsibility
  • Own and manage the process for third party information security assurance to ensure that ongoing security assessments are undertaken and that contractual agreements reflect information security requirements
  • Support information security awareness throughout the organisation including managing phishing awareness campaigns and delivering and supporting training and awareness to specific user groups
  • Support management and investigation of any information security incidents including ensuring that incident logs are maintained, and any actions / lessons learned are addressed
  • Support Fortnum & Masons PCI compliance program including ensuring evidence of compliance is collated and maintained and undertaking audit checks within stores
  • Manage the process for Information Security Risk Management to ensure that all information security risks are owned and documented and remediated to an agreed and accepted level
  • Support the process for project engagements to ensure that Information Security requirements are defined for each project, Architectural design documents are reviewed to ensure appropriate controls are in place and testing and acceptance processes are in place to ensure that agreed controls have been implemented
  • Serve as a hands-on Security Analyst, proactively identifying opportunities for improvement and delivering security enhancements to our systems
  • Collaborate with partners to ensure the security of the Cisco Meraki network, taking an initiative-taking stance in mitigating risks and initiative-taking patch management
  • Assist with internal and external vulnerability assessments, working with security partners to maintain PCIDSS compliance, overcome security challenges, and drive continuous improvements align to the NIST framework/ISO271002 standards
  • Report and review our secure device imaging using Microsoft Intune & Autopilot, ensuring a standardized, scalable, and resilient setup for retail, hospitality POS, and all corporate end user devices
What we offer
What we offer
  • A generous store and restaurant discount of up to 40%
  • 25 days holidays (excluded bank holidays) and an extra day off for your birthday
  • A fantastic subsidised staff restaurant which uses Fortnum’s ingredients
  • A range of opportunities to develop and grow personally and professionally
  • Excellent pension scheme
  • Fulltime
Read More
Arrow Right