NTT DATA Services strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a State Security Analyst to join our team in the United States (US).

This security analyst, working closely with other analysts, will be a key contributor in providing cyber security advisory services. These services include: evaluating the effectiveness of security programs, assessing risks, and vulnerabilities, identifying control gaps, reviewing vendor reports for consistency and accuracy, managing remediation efforts. The candidate may also conduct independent security and privacy assessments or contribute to activities and report/present findings to senior state staff.

• Analysis and comprehension of client's overall security program and posture
• Assessing technical compliance of systems against specified frameworks/requirements
• Contributing to the discovery, assessment, analysis, and management of network, and application vulnerabilities and remediation efforts
• Identifying and documenting detailed remediation recommendations
• Understanding relevant laws and regulations for security and privacy requirements
• Providing consultation and framework gap analysis of vendor deliverables to the client - such as system security plans, security control assessments, and information system risk assessments
• Drafting or recommending updates to policies, standards, procedures, and related security and privacy deliverables

• Minimum 8 years combined experience working with:
  • IT Audits and Assessments
  • Vulnerability management and/or assessing firewalls and networks, including VPN, DLP, IDS/IPS
  • CMS MARS-E and NIST Security and Privacy control frameworks
  • IT governance, risk, compliance (GRC), auditing, drafting security plans and conducting risk assessments
• Bachelors or Masters Degree
• Hold one or more security certifications such as CISA, CISM, CISSP

• Comprehensive understanding of security and privacy controls
• Exceptional analytical, communication, and collaboration skills
• Thorough understanding of NIST, MARS-E, CMS Certification Frameworks
• Ability to understand and translate technical jargon
• Advanced client and vendor relationship management
• Working knowledge of cloud security (AWS/Azure)