CrawlJobs Logo
NTT DATA Logo NTT DATA · IT - Administration

Senior Information Security Governance, Risk and Compliance Specialist

· Job Posted March 01, 2026
Apply Position
Job Link Share

Job Description

The Senior Information Security Governance, Risk and Compliance (GRC) Specialist will oversee the organization's information security program, focusing on governance, risk management, compliance, and policy management. The role requires advanced experience in information security, leading risk assessments, and developing security policies. A bachelor's degree in Information Technology or Computer Science is required, along with relevant security certifications. This position is on-site and offers an opportunity to make a significant impact in a leading technology services company.

Job Responsibility

  • Leads risk assessments and gap analyses to identify vulnerabilities and recommends risk mitigation strategies
  • Develops and maintains security policies, standards, and procedures
  • Collaborates with legal and compliance teams to ensure adherence to regulatory requirements
  • Provides guidance and support to junior GRC team members
  • Assists in the creation and delivery of security awareness and training programs
  • Participates in security incident response activities as needed
  • Contributes to the continuous improvement of the information security program
  • Assists in policy management and refinement
  • Performs any other related task as required

Requirements

  • Bachelor’s degree or equivalent in Information Technology or Computer Science degree or related field
  • Security certifications such as CISA, CRISC, COBIT, IIA or equivalent preferred
  • Certifications such as Lead audit/Implementer - ISO 27001, SOC TSP preferred
  • Advanced experience in information security, including GRC-related roles
  • Advanced experience in leading risk assessments, compliance efforts, security awareness initiatives, and policy management
  • Advanced understanding of information security frameworks and standards
  • Advanced proficiency in conducting risk assessments, analyzing security controls, and policy management
  • Excellent communication and interpersonal skills for collaborating with various stakeholders
  • Strong project management skills for handling security initiatives
  • Advanced familiarity with legal and compliance aspects related to information security
NTT DATA - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior Information Security Governance, Risk and Compliance Specialist

8 matching positions

Senior Information Security Specialist

As a Senior Information Security Specialist, you will play a critical role in pr...
Location
Location
United States , Clarksburg
Salary
Salary:
Not provided
imts.us Logo
Innovative Management & Technology Services
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field, or equivalent experience
  • Minimum 7 years of experience in information security, IT risk management, or related roles, preferably in federal or state government environments
  • Strong knowledge of federal cybersecurity frameworks including NIST SP 800-53, OWASP Top 10, DISA STIGs, and Common Criteria
  • Hands-on experience with networking concepts, system administration, and software development practices
  • Proficiency in using Splunk or comparable SIEM tools for security event monitoring, audit log analysis, and incident response
  • Experience working within Agile or Scaled Agile Framework (SAFe) teams and integrating security in fast-paced development environments
  • Excellent communication skills with the ability to convey complex security concepts to technical and non-technical audiences
  • Active Top Secret clearance is required
  • U.S. Citizenship is required
Job Responsibility
Job Responsibility
  • Lead comprehensive reviews of management, operational, personnel, and technical security controls to verify their effectiveness during all phases of the system lifecycle
  • Identify, evaluate, and mitigate technical and operational security risks, threats, vulnerabilities, and weaknesses across diverse information systems
  • Drive compliance efforts with government standards and industry best practices, including NIST, OWASP, Common Criteria, DISA, and SANS Institute guidelines
  • Collaborate within Agile development teams to integrate security throughout the software development lifecycle, supporting secure design, testing, and deployment
  • Utilize hands-on expertise in networking, system administration, and software development to analyze security impacts and recommend improvements
  • Oversee audit log reviews and system alerting using Splunk or similar SIEM platforms to detect, investigate, and respond to security incidents
  • Communicate security findings clearly and effectively to technical teams and leadership, fostering a culture of security awareness and continuous improvement
What we offer
What we offer
  • competitive compensation
  • excellent benefits including tuition reimbursement and employer-contributed 401K
  • referral bonuses
  • Fulltime
Read More
Arrow Right

Personnel Security Specialist - Senior

This position is contingent upon several items including, but not limited to, co...
Location
Location
United States , Huntsville
Salary
Salary:
90000.00 - 100000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active Top Secret US Government Clearance
  • US Citizenship
  • Bachelor's degree
  • 10 years of experience in federal law enforcement or 15 years of experience in the personnel security investigative or investigative analyst field
  • Alternative: Associate's degree with 12 years of experience in federal law enforcement or 17 years of experience in the personnel security investigative or investigative analyst field
  • Technical training/certification as an investigator and/or adjudicator is required
  • Computer skills required: MS Office Suite skills
  • Ability to work effectively and efficiently in a team environment and relate well to others
  • Ability to show initiative and commitment to the company's goals
  • Ability to readily adapt to changing requirements
Job Responsibility
Job Responsibility
  • Provides support for security assessment investigations, including background investigations, periodic reinvestigations, and security clearances
  • Independently develops various types of manuals, forms, instructions, and the like, to facilitate operation of the FBI Security Program
  • Participates in special projects such as planning the implementation of new or revised programs
  • Conducts exhaustive and extensive checks in accordance with the FISs, Federal guidelines, policies and procedures
  • Provides direct support and service to the administration of the FBI Security Program by participating in the direction, from inception to completion, of highly sensitive and complex security assessment investigations conducted by the FBI FO's and rendering appropriate adjudication recommendations
  • Requests, receives, scrutinizes and analyzes FBI Investigative files and related material
  • Conducts critical analysis of incoming material/correspondence outlining possible serious and/or very sensitive security concerns
  • Provides on-the-job training, instruction, guidance and advice to lower-level specialists
  • Prepares in-depth summaries of data obtained and determined to be pertinent or relevant to a case
  • Coordinates with FBI Divisions on foreign nexus/concerns to exploit intelligence for the purpose of making adjudicative determination recommendations
What we offer
What we offer
  • Health insurance
  • Dental insurance
  • Vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Fulltime
Read More
Arrow Right
New

Senior Information Assurance Specialist

This role is at Spirit AeroSystems, Inc., a wholly owned subsidiary of The Boein...
Location
Location
United States , Wichita
Salary
Salary:
102600.00 - 157300.00 USD / Year
boeing.com Logo
Boeing
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma or GED
  • 10+ years of related professional experience
  • Must be able to obtain a CISSP and/or CISM Certification within first 6 months of employment
  • Ability to obtain a U.S. Secret Security Clearance and Special Program Access (for which the U.S. Government requires U.S. Citizenship)
  • U.S. Citizenship required
Job Responsibility
Job Responsibility
  • Monitor laws, regulations, industry standards and best practices related to confidentiality, integrity and availability of information and ensure the implementation of these standards in the organization as required
  • Develop, maintain and interpret policies and procedures related to the protection of systems, networks, people, information and property
  • Perform compliance and assessment activities related to information security, data privacy, incident management and risk management
  • Collaboratively develop risk mitigation plans with subject matter experts and ensure accountability for these actions
  • Assess compliance, security, and control risks related to information systems and technical infrastructure
  • Develop training and education materials and promote information security awareness
  • Translate complex, technical concepts into business-relevant terms to facilitate effective decision making by non-technical personnel
  • Support audit activities - both internal and external, related to information security
  • May oversee and manage the DoD accreditation of secure operating systems and networks
  • Collaborate with federal oversight/regulatory agencies to ensure company/program compliance to DoD requirements
What we offer
What we offer
  • competitive base pay and variable compensation opportunities
  • health insurance
  • flexible spending accounts
  • health savings accounts
  • retirement savings plans
  • life and disability insurance programs
  • paid and unpaid time away from work
  • Kansas Aviation tax credit up to $5,000 per year for up to five years
  • generous company match to 401(k)
  • industry-leading tuition assistance program
  • Fulltime
Read More
Arrow Right
New

Senior Specialist Technology Governance

The Senior Specialist: Technology Governance plays a crucial role in ensuring th...
Location
Location
South Africa , Bellville
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
June 05, 2026
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in information technology, Computer Science, Engineering, Business, or a related field
  • Postgraduate qualification (advantageous but not mandatory)
  • COBIT (Foundation / Design & Implementation)
  • ITIL (Foundation or higher)
  • ISO (27001/ 20000-1) certification
  • Analytical & Critical Thinking: Ability to analyse complex governance, risk, and control scenarios and form sound professional judgements
  • Technology Governance Acumen: Strong working knowledge of technology governance frameworks, risk management, and compliance standards
  • Communication & Influence: Ability to engage credibly with senior stakeholders and translate technical assurance concepts into business‑relevant insights
  • Integrity & Independence: Demonstrates objectivity and professional judgement while maintaining effective working relationships
  • Continuous Improvement Mindset: Uses governance as an enabler of operational effectiveness and value delivery
Job Responsibility
Job Responsibility
  • Conduct governance reviews of technology services, programmes, and vendors
  • Apply established governance frameworks (COBIT, ISO 27001, ITIL) to assess control adherence
  • Identify and document key technology risks, control gaps, and operational vulnerabilities, and remediation plans
  • Partner with Risk and Compliance teams to define mitigation and remediation plans
  • Work closely with technology leaders, risk owners, and external auditors to align on control effectiveness and audit readiness
  • Promote awareness of governance, risk, and compliance principles across the organisation
  • Continuously review governance frameworks and propose improvements for efficiency and transparency
  • Support the implementation and continuous improvement of IT policies and control frameworks
  • Ensure all technology domains (infrastructure, applications, data, cybersecurity, and vendor management) have effective control coverage
  • Track and report control performance metrics and compliance scores
  • Fulltime
Read More
Arrow Right

Data and Credit Bureau Attributes Specialist Consumer Credit Risk

The Data & Credit Bureau Attributes Specialist (AVP) - Consumer Credit Risk is r...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in a relevant field (e.g., finance, risk management, information technology)
  • Experience in designing and implementing data governance frameworks that align with regulatory standards
  • Experience with data controls, summarization, and transformation in a credit risk context
  • Experience with modern data integration tools, cloud platforms, and emerging AI technologies
  • Experience in SAS, SAS/Stat, SQL
  • Strong financial management skills with experience managing large-scale data projects
Job Responsibility
Job Responsibility
  • Develop and enforce a governance framework that ensures the accuracy, security, and quality of data throughout its lifecycle
  • Oversee the transformation of raw and disparate data sets into actionable insights that support strategic and tactical decision-making within credit risk frameworks
  • Lead the end-to-end delivery process for building, testing, and deploying data pipelines
  • Ensure that all data driving regulatory reporting is accurate, timely, and adheres to compliance standards
  • Engage with senior stakeholders across Risk, IT, Compliance, and Business units
  • Lead innovation efforts that enhance the automation, scalability, and efficiency of data integration and controls
  • Fulltime
Read More
Arrow Right

Senior Data & Credit Bureau Attributes Specialist for Credit Risk

The Senior Data & Credit Bureau Attributes Specialist for Credit Risk is respons...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in a relevant field (e.g., finance, risk management, information technology)
  • 5-8 years of work experience in financial services or Management consulting or regulatory reporting role
  • Extensive experience in designing and implementing data governance frameworks that align with regulatory standards
  • Strong expertise in managing data used in decisioning systems, rules engines, and regulatory reporting
  • Demonstrated experience with modern data integration tools, cloud platforms, and emerging AI technologies
  • Experience in SAS, SAS/Stat, SQL is a must
  • Exceptional communication and presentation skills
  • Strong financial management skills with experience managing large-scale data projects
Job Responsibility
Job Responsibility
  • Develop and enforce a governance framework that ensures the accuracy, security, and quality of data throughout its lifecycle
  • Oversee the transformation of raw and disparate data sets into actionable insights that support both strategic and tactical decision-making within credit risk frameworks
  • Engage with senior stakeholders across Risk, IT, Compliance, and Business units to ensure that data strategies are aligned with organizational goals
  • Lead innovation efforts that enhance the automation, scalability, and efficiency of data integration and controls within the credit risk framework
What we offer
What we offer
  • Programs and services for your physical and mental well-being including access to telehealth options, health advocates, confidential counseling
  • Expanded Paid Parental Leave Policy
  • Access to an array of learning and development resources
  • Generous paid time off packages
  • Resources and tools to volunteer in the communities
  • Fulltime
Read More
Arrow Right

Assistant Vice President – Third Party Risk Oversight specialist - TPRO - Consumer Credit Risk

The AVP – Third party risk oversight role is responsible for owning and enhancin...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in Risk management, third-party risk, vendor risk/management or credit risk with a large financial institution
  • US banking regulatory expectations
  • Prior experience operating with consumer credit risk or closely related risk domains
  • Extensive background in managing critical suppliers and regulated third-party relationships
  • Experience active as a risk/process oversight owner or leading risk platforms, frameworks, or governance models
  • Bachelor’s degree in related fields
  • Working knowledge of Vendor relationship management / Vendor risk management/ TPRO
  • Growth mindset with ability to balance risk, compliance and business enablement
  • Excellent stakeholder management and executive communication skills
  • Ability to challenge vendors and internal partners constructively
Job Responsibility
Job Responsibility
  • Product ownership and strategy: Own the end-to-end product vision for third-party risk oversight tools, processes, and controls within consumer credit risk
  • Own the TPRO vision, roadmap, and backlog, ensuring alignment with Citi risk policies and enterprise standards
  • Translate regulatory guidance, Citi policies, and risk requirements into User stories, controls, and functional requirements into scalable risk oversight solutions
  • Prioritize initiatives based on risk severity, regulatory commitments and business impact
  • Third-party Risk oversight: Oversee risk assessment lifecycle for third-party vendors, including: Inherent risk assessments, Due diligence (financial, operations, cyber, data privacy, model risk), Ongoing monitoring and periodic reviews
  • Ensure critical and high- risk vendors undergo enhanced oversight and governance
  • Maintain a risk-tiered vendor inventory aligned with consumer credit risk exposure
  • Supplier and contract management: Ensure supplier contracts meet regulatory, risk and control standard, including: SLAs, KPI, audit and access rights, data protection, information security, confidentiality, BCP/DR (business continuity planning/ Disaster recover), subcontractor and fourth-party controls
  • Track contract milestones, renewals, terminations and renegotiations
  • Proactively identify contracts nearing expirations and drive timely renewals or exit strategies
  • Fulltime
Read More
Arrow Right

Sox Compliance Specialist

We are seeking a SOX Compliance Lead to drive effective governance, support seni...
Location
Location
India , Pune
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5 to 7 years of experience in SOX compliance, IT controls, internal audit, or risk management roles
  • Strong working knowledge of SOX principles, particularly IT General Controls (ITGC)
  • Familiarity with User Access Management processes, including Joiner, Leaver and periodic access review activities
  • Strong understanding of IT environments, applications, access management and cybersecurity controls
  • Experienced in managing audit cycles end-to-end, including evidence preparation, walkthroughs and remediation
  • Knowledgeable in information security standards such as ISO 27001, CSA Cloud Controls Matrix and related frameworks
  • Skilled in operating across cloud and on-premises environments, including data centre operations
  • Relevant degree in IT, Computer Science, Information Security, Engineering or Audit
  • Certifications such as CSOXi, CISM, CISA, CRISC or CDPSE (preferred but not mandatory)
  • Strong analytical, organizational, problem-solving and prioritisation capabilities
Job Responsibility
Job Responsibility
  • Support senior management in defining and refining control objectives aligned with SOX requirements
  • Lead the implementation of SOX controls across the VCI environment to ensure compliance and operational effectiveness
  • Monitor compliance status, track deviations, and drive continuous adherence to control frameworks
  • Manage remediation activities for identified control deficiencies, ensuring timely closure and improved control maturity
  • Execute SOX controls and maintain readiness for internal and external audits
  • Act as the primary point of contact during SOX audits, coordinating smoothly with internal and external auditors
  • Lead and support transformation initiatives, enabling process optimisation and control automation where applicable
What we offer
What we offer
  • Opportunity to work on global SOX and IT control transformation initiatives
  • Exposure to complex technology landscapes across cloud and on-prem environments
  • Collaboration with international audit, risk and technology teams
  • Scope to enhance your governance, compliance and audit leadership skills
  • A dynamic environment that encourages innovation, learning and continuous improvement
  • Fulltime
Read More
Arrow Right