GTT

About GTT

GTT is a leading networking and security as a service provider for multinational organizations, simply and securely connecting people and machines to data and applications – anywhere in the world. We serve thousands of organizations, bringing together the right people, partners and technology to reduce the burden on IT teams and solve the most pressing networking and security challenges. Built on our top-ranked global Tier 1 network, GTT Envision is a single global technology platform to connect, orchestrate, virtualize and automate enterprise networks, enabling customers with consumable solutions to achieve business missions and meet ongoing demand when, where and how needed. Our portfolio includes SASE, SD-WAN, security, internet, voice and other connectivity options, complemented by a suite of professional services and exceptional sales and support teams in local markets around the globe. We partner with our customers to deliver Greater Technology Together. For more information, please visit www.gtt.net

Role Summary:

In this role, the employee will support the Information Security Team in executing security controls based on industry standards (ISO 27001, ISO 22301, SOC 2, NIST). The employee will manage several compliance programs that have been fully implemented and defined.

Job Scope/Supervision:

This role reports to the Manager of the Information Security team. As part of the role, the employee will work closely with other corporate teams that are involved in security compliance; such teams will include IT, HR, Cyber Security, and other support teams.

Duties and Responsibilities:

• Developing and initiating processes and running cross-functional projects
• Responsible for corporate compliance reporting
• Manage the organization of security training campaigns.
• Perform internal controls activities, be familiar with the internal security compliance process
• Make sure security compliance documents are up to date and complete (for example, Corporate Security policy set, Business Continuity Plan, Disaster Recovery Plan, incident management, and Records Management);
• Participate in internal audits, provide all required information to internal auditors and enable an accurate score for IT applications, and remediate issues if required;
• Be in touch with Information and Cybersecurity teams;
• Participate in IT risk assessment, vendors’ vetting, and control assessments.
• Manage Monthly Users Monitoring Review and Leavers Review;
• Identify vulnerabilities and document mitigation plans and/or security requirements for application development teams.

Required Experience/Qualifications:

• Broad understanding of information security, policies, and procedures
• IT skills and understanding of security compliance
• Knowledge of international standard (ITIL; ISO 27001; NIST; PCI DSS)
• 3 years of hands-on experience in an information security role

Desirable Experience/Qualifications:

ISO27001 internal audit;

Compyia Security +

CISA

Hours/Travel/Shift:

Normal 9 to 5 working hours.

5% travel

Remote

#LI-Remote

#LI-MS1