GRC Specialist - REMOTE

Req ID: 246186

NTT DATA Services strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a GRC Specialist - REMOTE to join our team in Port Washington, New York (US-NY), United States (US).

GRC Specialist

Job Responsibilities Include:

• Collaborate with internal stakeholders to update policies and procedures in accordance with direction from management HITRUST requirements.
• Lead HITRUST, SOC 1 and SOC 2 audit engagements and be responsible for ongoing independent audit management of related requirements.
• Collaborate with internal stakeholders for the timely completion of compliance requirements during the year, including staff security & privacy training, independent third-party testing (e.g., penetration testing), quarterly access reviews, disaster recovery testing, and more.
• Perform ongoing vendor due diligence as part of our third-party risk management program.
• Coordinate the incoming due diligence, information security and other regulatory compliance reviews from current and prospective customers.
• Support risk assessments and assist with developing and tracking risk mitigation strategies.
• Support the cross-functional Data Incident Team by coordinating with appropriate stakeholders to investigate and document reported data incidents through to resolution.
• Monitor and report on the effectiveness of security controls and compliance initiatives.

Basic Qualifications:

• Minimum 4 years of experience with HITRUST certification and SOC 2 reports.
• 4 years of experience with security frameworks (including NIST and CIS), networking concepts and protocols, and network security methodologies.
• Experience implementing security controls.
• Experience with HIPAA security & privacy requirements.
• Experience collaborating with internal stakeholders and external assessors.
• Bachelor's degree in computer science, Information Systems, Information Security/Assurance or related field.

Preferred Skills:

• Professional certifications in Information Security (such as CISA, CISM, CRISC, CISSP, CRISC etc.).
• Previous audit or consulting experience.

Location & Travel:

Remote position for candidates currently in the Eastern Time Zone of the United States.

Where required by law, NTT DATA provides a reasonable range of compensation for specific roles. The pay range for this remote role is $82,000 to $125,000. This range reflects the minimum and maximum target compensation for the position across all US locations. Actual compensation will depend on several factors, including the candidate's actual work location, relevant experience, technical skills, and other qualifications. This position may also be eligible for incentive compensation based on individual and/or company performance.

This position is eligible for company benefits including medical, dental, and vision insurance with an employer contribution, flexible spending or health savings account, life and AD&D insurance, short- and long-term disability coverage, paid time off, employee assistance, participation in a 401k program with company match, and additional voluntary or legally required benefits.

About NTT DATA Services

NTT DATA Services is a recognized leader in IT and business services, including cloud, data and applications, headquartered in Texas. As part of NTT DATA, a $30 billion trusted global innovator with a combined global reach of over 80 countries, we help clients transform through business and technology consulting, industry and digital solutions, applications development and management, managed edge-to-cloud infrastructure services, BPO, systems integration and global data centers. We are committed to our clients' long-term success. Visit nttdata.com or LinkedIn to learn more.

NTT DATA Services is an equal opportunity employer and considers all applicants without regarding to race, color, religion, citizenship, national origin, ancestry, age, sex, sexual orientation, gender identity, genetic information, physical or mental disability, veteran or marital status, or any other characteristic protected by law. We are committed to creating a diverse and inclusive environment for all employees. If you need assistance or an accommodation due to a disability, please inform your recruiter so that we may connect you with the appropriate team.

INDHCLSMC