Job Description

We're a business with a global reach that empowers local teams, and we undertake hugely exciting work that is genuinely changing the world. Our advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects.


Our inclusive work environment prioritises mutual respect, accountability, and continuous learning for all our people. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation. We are also proud to share that we have a range of Inclusion Networks such as: the Women's Business Network, Cultural and Ethnicity Network, LGBTQ+ & Allies Network, Neurodiversity Network and the Parent Network.


For more information on Diversity, Equity and Inclusion please click here: Creating Inclusion Together at NTT DATA UK | NTT DATA





Conduct

security gap analysis

for applications and infrastructure. Define and document

security requirements

for new systems and integrations. Define and document security functional specification for new systems and integrations. Define and document identity and access controls specification for authentication and authorization. Collaborate with

Tech Risk, Architecture, and Project Management teams

to ensure compliance with internal and external security standards. Review and validate

design documents

for adherence to security best practices. Provide

recommendations for remediation

and risk mitigation strategies. Support

security testing plans

and assist in vendor assessments.
Solid track records on security controls design and architecture. Experience with secure design principles and threat modelling. Sound knowledge and experience on authentication and authorization controls design (e.g. OAuth, OIDC, SAML, JWT, B2B, B2C, MFA, CSRF, PKCE, etc.). Proven experience in

information security consulting

within financial services or regulated environments. Strong knowledge of

risk management frameworks

(ISO 27001, NIST, etc.). Expertise in

application security, network security, and cloud security

. Familiarity with

regulatory compliance

(e.g., GDPR, FCA guidelines). Ability to work collaboratively with

cross-functional teams

and external vendors. Excellent communication and documentation skills.

Preferred Qualifications

CISSP, CISM, or equivalent certifications. Prior involvement in

digital transformation or post-trade systems

projects.

We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options.


You can find more information about NTT DATA UK & Ireland here: https://uk.nttdata.com/


We are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a proud Disability Confident Committed Employer - we are committed to creating a diverse and inclusive workforce. We actively collaborate with individuals who have disabilities and long-term health conditions which have an effect on their ability to do normal daily activities, ensuring that barriers are eliminated when it comes to employment opportunities. In line with our commitment, we guarantee an interview to applicants who declare to us, during the application process, that they have a disability and meet the minimum requirements for the role. If you require any reasonable adjustments during the recruitment process, please let us know. Join us in building a truly diverse and empowered team.

Job Title: Security Consultant

Location:

London (Hybrid)

Contract Type:

External Consultant (3-4 months engagement)

Role Overview

The Security Consultant will provide expert guidance and hands-on support during the

analysis and design phase

of critical technology projects. This role ensures that security requirements are embedded into system architecture and operational processes, mitigating risks and aligning with regulatory standards.