Principal Security Consultant

At NTT we believe that by using innovative technology we can solve global challenges and create a world that is sustainable and secure. We are looking for curious people, from diverse backgrounds, that are keen to work in a fast-paced and agile environment.

At NTT we trust our employees to do the right thing, even when no one is watching, which is why we offer flexibility in the workplace. The majority of our roles are hybrid, meaning we encourage a balance of working from home and our local office. Ask our recruitment team if this is a hybrid role.

**Want to be a part of our team?**

**Working at NTT**

**Key Roles and Responsibilities**:

- Take ownership of the information security management system.
- Oversee the development of policies, processes, standards and guidelines to standardise security management throughout the organisation.
- Conduct risk assessments to ensure new and existing information technology systems and networks meet the organisation’s information assurance and security requirements.
- Use quantitative and/or qualitative approaches based on the organisation’s information assurance and security requirements as defined by our ISMS and risk management processes.
- Conducts threat and vulnerability assessments and determines deviations from acceptable configurations or policies.
- Identify level of risk and recommend the appropriate mitigation countermeasures and/or solutions in operational and non-operational situations.
- Consults with stakeholders to guide functional and security requirements.
- Translates these functional and security requirements into guidance to stakeholders about the applicability of information systems to meet business objectives.
- Respond to security breaches to mitigate immediate and potential threats.
- Use mitigation, preparedness, response and recovery approaches to minimise business disruptions & commercial consequences.
- Investigate and analyse relevant response activities and evaluates the effectiveness of and improvements to existing practices.

**Knowledge, Skills and Attributes**:

- In-depth Knowledge and understanding of IT industry environment and business needs
- Solid understanding of information technology and information security
- Solid understanding of security risks and preventative controls
- excellent understanding of security operational processes and controls
- An intelligent, articulate and persuasive leader who is able to communicate security-related concepts to a broad range of technical and non-technical staff
- Service consulting aptitude, focusing on the business, service and sales aspects
- Excellent verbal and written communication skills
- Demonstrate impeccable attention to detail are able to translate internal customer requirements into solutions
- Maintain up-to-date knowledge of security threats, countermeasures, security tools, and network technologies
- High level of drive and ability to work under pressure
- Ability to build and maintain cross-functional relationships with a variety of stakeholders

**Academic Qualifications and Certifications**:

- An IT related or Engineering tertiary qualification will be highly regarded
- Industry relevant certifications such as CISSP, CISM, CEH, GSEC or CompTIA Security+

**Required Experience**:

- Significant level of experience in the Technology Information Security Industry or relevant experience in similar role within a related environment
- Experience with security architecture design principles
- Experience with industry compliance and standards such as ISO 27000, PCI:DSS, NIST, HIPAA or others
- Significant experience with security tools and techniques to cover SANS Top 25, OWASP or others
- Experience working in a multi-team environment across multiple geographies

**What will make you a good fit for the role?**

**Equal opportunity employer**

NTT is proud to be an equal opportunity employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, color, sex, religion, national origin, disability, pregnancy, marital status, sexual orientation, gender reassignment, veteran status, or other protected category.