Security Risk Assessment Analyst

This job is no longer active. View similar jobs.

POST DATE 9/15/2016
END DATE 11/2/2016

NTT Data Inc Jersey City, NJ

Jersey City, NJ
AJE Ref #
Job Classification
Full Time
Job Type
Company Ref #
Entry Level (0 - 2 years)



Security Risk Assessment Analyst
3 months plus extensions
Jersey City, NJ

Interested candidates, please send resumes to

Project Responsibility: The objective of this project is to a) create an Enterprise wide access management assessment process for information systems b) establish an InfoSec and Enterprise Architecture risk assessment for policy, process, and standards (which include security architecture requirements) c) document access management assessment process for control self-assessment and test procedures for applications and platforms.

Primary Responsibility:
Risk assess access control on Client systems, perform role engineering, govern access control and recertification processes for Client assets, manage privilege accounts controls and standards.
Review access control methodology and continuously monitor the control effectiveness among Client assets.
Perform Risk assessment to measure the risk level, control gap, introduce preventive control and report risks to management on Client assets

Additional Responsibilities: Analyze, design, risk assess and govern Security Access Profiles ( \\"SAP*), Privilege Account Management; Identify security violations and inefficiencies and report risks to the management; Implement security improvements by assessing current situation; evaluating trends; anticipating requirements based on internal threats

Create access management process
Create documentation for risk assessment related to policy, process, and standards (standards include security architecture requirements) document the requirements for expectation, RACI, metrics, frequency and scope

Create Control Self-Assessment (CSA) questionnaire spreadsheet including controls testing procedures for the above standards

Prepare manual assessment for 10 significant risk applications for roll-out.
Kick-off meeting and provide training material complete response to questionnaire
Review and analyze response
Execute test with application owner and collect evidence
Identify and confirm gaps
Develop remediation plans

The Company is an equal opportunity employer and makes employment decisions on the basis of merit and business needs. The Company will consider all qualified applicants for employment without regard to race, color, religious creed, citizenship, national origin, ancestry, age, sex, sexual orientation, genetic information, physical or mental disability, veteran or marital status, or any other class protected by law. To comply with applicable laws ensuring equal employment opportunities to qualified individuals with a disability, the Company will make reasonable accommodations for the known physical or mental limitations of an otherwise qualified individual with a disability who is an applicant or an employee unless undue hardship to the Company would result.