Senior Manager: Compliance and Data ProtectionAbout the job Senior Manager: Compliance and Data ProtectionKey purpose:Compliance and Data Protection Management is a global position that supports the NTT business by way of protecting NTTs brand, warranting compliance to its regulatory and contractual obligations.
A critical component of this role is to ensure strategic and operational alignment to the global objectives of the Chief Security Office (CSO) and NTT Holdings.
This role is accountable for the preparation, monitoring and implementation of controls for successful completion and maintenance of various compliance programs, including ISO27001, SOC etc.
in line with the NTT Ltd Information Security Management System (ISMS), ensuring that information security is effectively managed in all services and business functions within region.Duties and responsibilities:Monitor the development, evaluation and implementation of cybersecurity controls and ensure protection of company and allied assets and informationSupport and review customer and vendor contracts to understand and communicate compliance requirements.Consultant with business and technical leadership to ensure that data, processes and technology are designed for data protection and complianceMonitor investigations and documentation of cybersecurity compliance issues and incidentsReview information security risk findings and non-compliance with business leaders and proposes solutions to mitigate risksSelect, develop and evaluate a team to ensure the efficient operation of the functionContribute to the Group ISMS content development, maintenance and maturityAdvise and report to the CSO on all ISMS operational controls, processes and compliance statusImplement and Monitor information security operational requirements and information security design criteria and templatesReview the security policy with the relevant 3rd parties ensuring that ISM service requirements are met and that integration into access management and security reporting occursLog major service requests for ISM transition and ensure that service activation, knowledge transfer and change management processes take placeManage the prevention and resolution of security breaches and ensure incident and problem management processes are initiated.Perform baseline security reviews and monitor operational security activities according to the policyDevelop, scope and discuss security service audit schedules, review access authorisation and perform the required access controls and penetration testing to identify security weaknessesDocument improvement in service design and ensure that the required security plan is developed and reviewedExperience:Demonstrable experience gained within the Technology Information Security IndustryDemonstrable experience leading and coaching a teamRequired Qualifications and CertificationsRelevant bachelors degree, such as a Computer Science degree or equivalentSecurity certifications ISO27001 Lead Auditor; CISA, CRISC or equivalentKnowledge, skills and attributes:Relevant knowledge of information security management and policiesSound understanding of security operational processes and controlsDemonstrable understanding of complex inter-relationships in an overall system or processMaintain up-to-date knowledge of security threats, countermeasures, security tools, and network technologiesRelevant knowledge of technological advances within the information security arenaRelevant solution and service knowledgeGood interpersonal and consultative skills with the ability to map business needs to technology solutions Ability to discuss and report technology and information security risk with non-technology and executive business stakeholdersAbility to display analytical thinking and a proactive approachTeam player with the ability to display consistent client focus and orientationAbility to develop, define and articulate ISM strategiesGood strategic thinking and decision-making abilitiesGood interpersonal skills with the ability to develop strong business relationshipsAbility to plan and organize, with good project management skills
#J-18808-Ljbffr