Senior Vice President, Information Security
Texas, United States of America
Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.
Your day at NTT DATA
The Global Chief Information Security Officer (CISO) is a seasoned executive responsible for establishing and maintaining a robust information, cyber and technology security program within a complex global environment.The CISO serves as a strategic partner to the executive leadership team, aligning security initiatives with business objectives while mitigating risk and ensuring regulatory compliance. This individual possesses a unique blend of technical expertise, business acumen, leadership and communication skills to navigate the evolving threat landscape and protect the organization’s critical infrastructure, information and assets around the globe.
This role will have dual solid line reporting to the CEO of NTT Global Data Centers and the CISO of NTT Data Services, Inc.
What you'll be doing
Strategic Leadership:
- Develop, implement, champion and consistently improve a comprehensive information, cyber and technology security strategy and programs that align with the organization’s overall business goals, risk appetite, and regulatory requirements.
- Provide strategic guidance to the executive leadership team on information security matters, emerging threats, and industry best practices.
- Foster a culture of security awareness and accountability throughout the organization, establishing & executing education, training, and continuous improvement, providing leadership and guidance to all staff members worldwide.
- Oversee that information security programs are being followed as intended and per formal governance.
- Partner with stakeholders to raise awareness for security strategy and policy
Governance, Rick Management & Compliance:
- Establish and consistently improve Security Policies and Procedures to fulfill the information, cyber and technology security strategy and required standards throughout the organization in compliance with legal requirements
- Modify and maintain a robust risk management framework to identify, assess, and mitigate information security risks across the enterprise.
- Ensure compliance with relevant cybersecurity regulations and industry standards, such as HIPAA, CIS 18, NIST Cybersecurity Framework, SOC2, and PCI DSS.
- Oversee regular security audits, risk assessments, vulnerability scans, and penetration tests to identify vulnerabilities and track remediation efforts.
- Evaluate and manage third-party vendors and partners to ensure they meet the organization’s security standards and contractual obligations.
- Conduct regular security assessments of third-party vendors and implement appropriate risk mitigation strategies.
- Manage and participate in audit and compliance related activities
- Consistently assess and communicate all security risks associated with all purchase and practices of the company
Security Architecture, Operations and Engineering:
- Participate in business technology planning and contribute to the future vision of technology and systems
- Partner with the business and other Information Systems (IS) and Data Privacy organizations to drive coherent end to end architectures that feature security as “built-in” rather than “bolted-on.”
- Oversee the implementation, management and continuous improvement of security technologies and controls, including intrusion detection and prevention systems, firewalls, endpoint protection, data loss prevention, CASB, SASE, identity and access management solutions, etc.
- Oversee the operation of all security controls and cultivate a “bias for action and recovery” while maintaining cyber safety during outages.
Incident Response, Digital Forensics and Recovery:
- Develop, implement, and consistently improve comprehensive incident response and disaster recovery plans to minimize the impact of security breaches and ensure business continuity.
- Lead the investigation and resolution of security incidents, coordinating with internal and external stakeholders, including law enforcement and regulatory agencies, as needed.
- Creatively and independently provide resolution to security incidents in a cost-effective manner while minimizing impact to the business overall
- Design the organization, its policies and programs for as much resiliency as possible, preparing for rapid assessment, remediation and recovery of any possible future cybersecurity events.
Team Management and Collaboration:
- Build and lead a high-performing information security team, providing mentorship, coaching, and professional development opportunities.
- Collaborate effectively with IS, Legal, HR, GRC, Data Center Operations and other departments to achieve security objectives and foster a shared responsibility for information security.
- Manage security budget and resource allocation, ensuring optimal utilization and return on investment
Emerging Technologies and Innovation:
- Stay abreast of emerging technologies, cyber threats, and industry trends to proactively identify and address potential risks.
- Evaluate and recommend innovative security solutions to enhance the organization’s security posture.
KNOWLEDGE, SKILLS AND ABILITIES
Leadership Aspects:
- Focuses on translating corporate objectives into strategic business plans for the Information Security business area based on in depth knowledge of the organization and of market and competitive trends
- Visionary and influential leader inspires efforts and promotes new ideas/concepts and values streams; influences long term strategy
- Strategic decisions have medium to long term impact on operations.
- Interacts internally and externally with executives and senior leads, requiring negotiation skills over extremely critical matters
Technology Aspects:
- Excellent knowledge of technology environments, including information security, building security, and information security defense solutions.
- Substantial exposure to data processing, hardware platforms, enterprise software applications, and outsourced systems
- Good understanding of computer systems characteristics, features, and integration capabilities
Business / Management Aspects:
- Considerable knowledge of business theory, business processes, management, budgeting, and business office operations.
- Demonstrated record of success in establishing, running and improving comprehensive information, cyber and technology programs at global organizations
- Established a positive working relationship with a diverse range of stakeholders with needs varying in complexity, including the executive leadership team, business unit leaders, key partners/vendors, the workforce, and clients.
- Excellent understanding of project management principles.
- In-depth knowledge of applicable laws and regulations as they relate to security
- Prepares people for unidentified challenges/uncertainty.
- Sets organizational wide policies and approves its implementation.
- Erroneous decisions in such a role may impact viability of organization.
- Sets and is accountable for financial plans and goals.
EDUCATION & EXPERIENCE
- Bachelor's degree or equivalent in this field. Master’s degree preferred.
- 10+ years of relevant experience in management at large, complex, & high growth organizations
- Substantially vast strategic planning experience.
- Substantially vast experience as a people and resource manager.
- Substantial demonstrated experience presenting Investments opportunities, strategies, and outcomes to executive/senior leadership stakeholders, showcasing an ability to convey complex matters clearly and persuasively.
- Has enhanced the technology strategy and performance for a multi-million-dollar organization through strong leadership, visionary technology strategy, and effective execution
- Preferably served as the most senior leader responsible for all aspects of the organization’s information technology and systems
- Effectively met the related business objectives of the organization as approved by the CEO and board of directors and established solid relationships with each member of the executive leadership team
- Experience in planning and executing security policies and standards development.
- Experience with systems design and development from business requirements analysis through to day-to-day management.
WORK CONDITIONS AND REQUIREMENTS
- This position is expected to be remote for the foreseeable future with an occasional need to be onsite in a shared work environment.
- Must be able to accommodate calls in global time zones
- Travel will be required, up to 50%.
This is a remote position that requires reliable internet connection and electricity. A monthly stipend is provided to cover expenses associated with working remotely and use of a personal mobile device.
NTT Global Data Centers Americas, Inc. offers competitive compensation based on experience, education, and location. Base salary for this position is $280,000.00 - $400,000.00.
All regular full-time employees are eligible for an annual bonus; payout is dependent upon individual and company performance.
Employees receive paid time-off, medical, dental, and vision benefits, life and supplemental insurance, short-term and long-term disability, flexible spending account, and 401k retirement plan to create a rich Total Rewards package.
Workplace type:
Remote WorkingAbout NTT DATA
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
Job Profile
Annual bonus Competitive compensation Diversity and Inclusion Flexible Spending Account Global impact Growth Opportunities Life and supplemental insurance Medical, dental, and vision benefits Vision Benefits
Tasks- Conduct security assessments
- Continuous Improvement
- Develop security strategy
- Evaluate third-party vendors
- Implementation
- Implement security technologies
- Manage risk and compliance
- Negotiation
- Oversee security programs
- Project management
- Provide strategic guidance
- Reporting
- Risk Management
- Team Management
- Training
Budgeting Business Acumen CIS 18 Collaboration Communication Compliance Continuous Improvement Cybersecurity Data Center Operations Data centers Data privacy Design Engineering Execution Governance Hardware HIPAA Incident Response Information security Infrastructure Leadership Mentorship Negotiation NIST Cybersecurity Framework Operations Organizational PCI DSS Project Management Regulatory Compliance Resource Allocation Risk Management Risk mitigation Security Security Architecture Security audits Security policies Security Technologies SOC2 Strategic planning Team Management Third-party vendor management Training and awareness Vulnerability Management
EducationArchitecture Bachelor's degree Engineering Information Technology
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9