Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Analyste principal(e) - Contrôles et indicateurs de cybersécurité | Cybersecurity Controls & Metrics

NTT Data

Req ID: 381849

NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a Analyste principal(e) - Contrôles et indicateurs de cybersécurité | Cybersecurity Controls & Metrics to join our team in Montreal, Quebec (CA-QC), Canada (CA).

Analyste principal(e) – Contrôles et indicateurs de cybersécurité

Sommaire du poste

Nous recherchons un(e) Analyste principal(e) – Contrôles et indicateurs de cybersécurité expérimenté(e) pour contribuer à la définition, à la mesure et à l'amélioration de l'efficacité des contrôles technologiques et de cybersécurité à l'échelle de l'entreprise.

Dans ce rôle, vous collaborerez avec les équipes de cybersécurité, des technologies, de la gouvernance et des données afin de développer des indicateurs de contrôle pertinents, de mettre en place des cadres de production de rapports et de veiller à ce que les contrôles de cybersécurité soient mesurables, efficaces et conformes aux politiques organisationnelles.

Le ou la candidat(e) idéal(e) possède une solide expertise en cybersécurité, d'excellentes capacités analytiques et une expérience dans la définition d'indicateurs clés de contrôle (KCI), de mesures de performance et de rapports soutenant les initiatives de gouvernance, de gestion des risques et de conformité.

Principales responsabilités

  • Définir et documenter les indicateurs des contrôles technologiques et de cybersécurité, les méthodologies de mesure ainsi que les exigences en matière de production de rapports.
  • Collaborer avec les responsables des contrôles et les parties prenantes de l'entreprise afin de comprendre les objectifs des contrôles et de les traduire en indicateurs clés de contrôle (KCI) et en mesures de performance mesurables.
  • Travailler en partenariat avec les équipes des politiques technologiques et de la gouvernance afin d'intégrer les exigences de mesure dans la conception et la mise à jour des politiques.
  • Collaborer étroitement avec les équipes d'ingénierie des données et des outils afin d'automatiser la collecte, le calcul et la production des indicateurs de contrôle.
  • Concevoir et améliorer des tableaux de bord et des cadres de rapports fournissant des renseignements pertinents sur l'efficacité des contrôles et les risques opérationnels.
  • Analyser les données afin d'identifier les tendances, les écarts et les occasions d'amélioration continue.
  • Veiller à l'exactitude, à la cohérence et à l'alignement des indicateurs avec les exigences de gouvernance et de conformité de l'entreprise.
  • Soutenir l'évolution continue des capacités de mesure de la cybersécurité, des processus de production de rapports et des normes de gouvernance.
  • Établir et maintenir de solides relations avec les intervenants des équipes de cybersécurité, des technologies, de la gestion des risques et de la conformité.

Qualifications requises

  • Baccalauréat ou combinaison équivalente de formation et d'expérience professionnelle.
  • Au moins cinq (5) ans d'expérience en sécurité de l'information, cybersécurité, technologies de l'information ou dans un domaine connexe.
  • Au moins deux (2) ans d'expérience pratique dans la mise en œuvre ou le soutien de contrôles technologiques ou de cybersécurité.
  • Expérience dans la définition de mesures de cybersécurité, d'indicateurs clés de contrôle (KCI), d'indicateurs clés de risque (KRI) ou d'indicateurs de performance opérationnelle.
  • Excellentes aptitudes analytiques et capacité à interpréter les données et à formuler des recommandations concrètes.
  • Expérience de collaboration avec des équipes multidisciplinaires et aptitude à traduire les besoins d'affaires en résultats mesurables.
  • Excellentes habiletés en communication orale et écrite.
  • Solides compétences en organisation, en résolution de problèmes et en gestion des parties prenantes.
  • Capacité à gérer plusieurs priorités dans un environnement dynamique et en constante évolution.

Qualifications privilégiées

  • Expérience des programmes de gouvernance, de gestion des risques et de conformité (GRC) en cybersécurité.
  • Connaissance des cadres de contrôle technologique et de cybersécurité utilisés en entreprise.
  • Expérience des contrôles de sécurité infonuagique dans des environnements de nuage public (Microsoft Azure, Amazon Web Services [AWS] ou Google Cloud Platform [GCP]).
  • Connaissance des domaines de sécurité suivants :
    • Gestion des identités et des accès (IAM)
    • Protection des données
    • Sécurité des réseaux
    • Sécurité des applications
    • Sécurité des postes de travail (Endpoint Security)
    • Sécurité des infrastructures
  • Connaissance des processus de journalisation de sécurité, de surveillance, de détection des menaces et de réponse aux incidents.
  • Expérience des outils de production de rapports de sécurité, de tableaux de bord, d'intelligence d'affaires ou de visualisation de données.
  • Des certifications professionnelles telles que CISSP, CISM, Security+, CRISC, CGRC ou l'équivalent constituent un atout.

Compétences recherchées

  • Contrôles de cybersécurité
  • Gestion des risques technologiques
  • Gouvernance, gestion des risques et conformité (GRC)
  • Mesure de l'efficacité des contrôles
  • Indicateurs clés de contrôle (KCI)
  • Indicateurs clés de risque (KRI)
  • Indicateurs de cybersécurité et production de rapports
  • Analyse de données
  • Développement de tableaux de bord
  • Gestion des parties prenantes
  • Amélioration continue des processus
  • Sécurité infonuagique (Azure, AWS, GCP)

Pourquoi vous joindre à nous?

En tant que membre de notre équipe de cybersécurité, vous jouerez un rôle essentiel dans le renforcement de la sécurité de l'entreprise en développant des indicateurs significatifs qui favorisent une meilleure gestion des risques et une prise de décision éclairée.

Vous collaborerez avec des leaders en cybersécurité, en technologies et dans les secteurs d'affaires tout en contribuant à l'évolution des pratiques de gouvernance de la cybersécurité et des initiatives d'amélioration continue de l'organisation.

___________________________________________________________________________________________________________________________________________________________________________

Cybersecurity Controls & Metrics Analyst

Position Summary

We are seeking an experienced Cybersecurity Controls & Metrics Analyst to help define, measure, and enhance technology and cybersecurity control effectiveness across the enterprise. In this role, you will collaborate with security, technology, governance, and data teams to develop meaningful control metrics, establish reporting frameworks, and ensure cybersecurity controls are measurable, effective, and aligned with organizational policies.

The ideal candidate combines strong cybersecurity knowledge with analytical skills and experience developing key control indicators (KCIs), metrics, and reporting that support governance, risk management, and compliance initiatives.

Key Responsibilities

  • Define and document cybersecurity and technology control metrics, measurement methodologies, and reporting requirements.
  • Partner with control owners and business stakeholders to understand control objectives and translate them into measurable Key Control Indicators (KCIs) and performance metrics.
  • Collaborate with Technology Policy and Governance teams to ensure measurement requirements are incorporated into policy design and updates.
  • Work closely with data engineering and tooling teams to automate the collection, calculation, and reporting of control metrics.
  • Design and improve dashboards and reporting frameworks that provide meaningful insights into control effectiveness and operational risk.
  • Analyze data to identify trends, gaps, and opportunities for continuous improvement.
  • Ensure metrics are accurate, consistent, and aligned with enterprise governance and compliance requirements.
  • Support ongoing enhancements to cybersecurity measurement capabilities, reporting processes, and governance standards.
  • Build strong relationships with cross-functional stakeholders across Security, Technology, Risk, and Compliance teams.

Required Qualifications

  • Bachelor's degree or equivalent professional experience.
  • 5+ years of experience in Information Security, Cybersecurity, Information Technology, or a related field.
  • 2+ years of hands-on experience implementing or supporting cybersecurity or technology controls.
  • Experience defining cybersecurity metrics, Key Control Indicators (KCIs), Key Risk Indicators (KRIs), or operational performance metrics.
  • Strong analytical skills with the ability to interpret data and communicate actionable insights.
  • Experience collaborating with cross-functional stakeholders and translating business requirements into measurable outcomes.
  • Excellent written and verbal communication skills.
  • Strong organizational, problem-solving, and stakeholder management skills.
  • Ability to manage multiple priorities in a fast-paced environment.

Preferred Qualifications

  • Experience with cybersecurity governance, risk, and compliance (GRC) programs.
  • Knowledge of enterprise technology and cybersecurity control frameworks.
  • Experience working with cloud security controls in public cloud environments (Azure, AWS, or Google Cloud).
  • Familiarity with security domains including:
    • Identity & Access Management (IAM)
    • Data Protection
    • Network Security
    • Application Security
    • Endpoint Security
    • Infrastructure Security
  • Knowledge of security logging, monitoring, threat detection, and incident response processes.
  • Experience with security reporting, dashboards, business intelligence, or data visualization tools.
  • Professional certifications such as CISSP, CISM, Security+, CRISC, CGRC, or similar are preferred.

Preferred Skills

  • Cybersecurity Controls
  • Technology Risk
  • Governance, Risk & Compliance (GRC)
  • Control Effectiveness Measurement
  • Key Control Indicators (KCIs)
  • Key Risk Indicators (KRIs)
  • Security Metrics & Reporting
  • Data Analysis
  • Dashboard Development
  • Stakeholder Management
  • Process Improvement
  • Public Cloud Security (Azure, AWS, GCP)

Why Join Us?

As a member of our cybersecurity team, you'll play a key role in strengthening enterprise security by developing meaningful metrics that drive better risk management and decision-making. You'll collaborate with security, technology, and business leaders while helping shape the organization's cybersecurity governance and continuous improvement initiatives.

Pay Transparency

Where required by law, NTT DATA provides a reasonable range of compensation for specific roles. The starting pay range for this remote role is $74720 - $112,080. This range reflects the minimum and maximum target compensation for the position across all US locations. Actual compensation will depend on a number of factors, including the candidate’s actual work location, relevant experience, technical skills, and other qualifications. 

This position is eligible for company benefits including medical, dental, and vision insurance with an employer contribution, flexible spending or health savings account, life and AD&D insurance, short- and long-term disability coverage, paid time off, employee assistance, participation in a 401k program with company match, and additional voluntary or legally-required benefits. 

About NTT DATA

NTT DATA is a $30+ billion business and technology services leader, serving 75% of the Fortune Global 100. We are committed to accelerating client success and positively impacting society through responsible innovation. We are one of the world’s leading AI and digital infrastructure providers, with unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and application services.  Our consulting and industry solutions help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more than 50 countries. We also offer clients access to a robust ecosystem of innovation centers as well as established and start-up partners. NTT DATA is part of NTT Group, which invests over $3 billion each year in R&D.

Whenever possible, we hire locally to NTT DATA offices or client sites. This ensures we can provide timely and effective support tailored to each client’s needs. While many positions offer remote or hybrid work options, these arrangements are subject to change based on client requirements. For employees near an NTT DATA office or client site, in-office attendance may be required for meetings or events, depending on business needs. At NTT DATA, we are committed to staying flexible and meeting the evolving needs of both our clients and employees. NTT DATA recruiters will never ask for payment or banking information and will only use @nttdata.com and @talent.nttdataservices.com email addresses. If you are requested to provide payment or disclose banking information, please submit a contact us form, .

NTT DATA endeavors to make accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at . This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here . If you'd like more information on your EEO rights under the law, please click here . For Pay Transparency information, please click here .

#LI-NorthAmerica

Vacancy posted 11 hours ago
Similar jobs that could be interesting for youBased on the Analyste principal(e) - Contrôles et indicateurs de cybersécurité | Cybersecurity Controls & Metrics in Canada vacancy
  • $180.5k - $397.14k

     ...minded, and security-focused Principal Software Engineer to lead our...  ...configurations fluidly natively using Cybersecurity parameters, evaluates...  ...review protocols, source controls, and modern cloud-native CI/CD...  ...strictly regulated environments (e.g., FedRAMP, FIPS, PCI... 
    Principal
    Permanent employment
    Full time
    Remote work
    Home office
    Shift work

    Docker

    Canada
    8 days ago
  • $87.65k - $131.47k

     ...with us! About The Role The Senior Analyst, IT Quality role is the designated IT system...  ...lifecycle management, IT governance, cybersecurity compliance, data flows, support and...  ...Systems (QES), and Statistical Process Control (SPC) platforms. Solid understanding... 
    Suggested
    Full time
    Temporary work
    Relocation package
    Flexible hours

    PowerCo

    Canada
    23 days ago
  • $83k - $132k

     ...greatest potential. Title and Summary Senior Analyst, B2B Marketing Operations Mastercard...  ...as a power user of key MarTech platforms (e.g., Salesforce Marketing Cloud, Marketo,...  ...B2B lead management processes and funnel metrics. Proficient in Microsoft Office including... 
    Suggested
    Full time
    Work experience placement
    Work at office
    Worldwide

    Mastercard

    Canada
    a month ago
  •  ...expertise in cloud, data, AI, cybersecurity, and intelligent edge,...  .... Consultant principal en sécurité Microsoft...  ...Salaire : 115k-125k de base + prime...  ...+ prix de l'industrie et de partenaires au cours...  ...en cloud, données, IA, cybersécurité et edge intelligent,... 
    Suggested
    Work at office
    Local area
    Immediate start
    Remote work

    Insight

    Canada
    5 days ago
  •  ...expertise in cloud, data, AI, cybersecurity, and intelligent edge, we...  ...candidate is hired. Vendeur de solutions cloud Salaire :...  ...reçu 25+ prix de l'industrie et de partenaires au cours de l'...  ...approfondie en cloud, données, IA, cybersécurité et edge intelligent, nous... 
    Suggested
    Work at office
    Local area
    Immediate start

    Insight

    Canada
    22 days ago
  • $120k

     ...We are seeking a highly analytical, metrics-driven FP&A Analyst to drive comprehensive financial planning...  ...to the CFO, you will act as a principal strategic resource supporting a high...  ...Reporting: Partner tightly with accounting controllers to deliver accurate monthly close... 
    Full time
    Summer work
    Work at office
    Local area
    Immediate start
    Remote work

    Array

    Canada
    8 days ago
  •  ...expertise in cloud, data, AI, cybersecurity, and intelligent edge, we...  ...adoption cloud Salaire : 75-85k de base + prime Emplacement :...  ...reçu 25+ prix de l'industrie et de partenaires au cours de l'...  ...en cloud, données, IA, cybersécurité et edge intelligent, nous accompagnons... 
    Work at office
    Local area
    Immediate start

    Insight

    Canada
    22 days ago
  • $80k - $90k

     ...Finance, the Senior Financial Analyst will play a key role in financial...  ...dashboards and performance metrics Generate insights and recommendations...  ...compliance with internal controls and accounting policies D....  ...and reporting initiatives E. Systems & Business... 
    Permanent employment
    Full time
    Monday to Friday

    Shah Trading Company

    Canada
    7 hours ago
  •  ...with deep expertise in cloud, data, AI, cybersecurity, and intelligent edge, we guide organizations...  ...Enterprise) with appropriate access controls. ~ Write production-grade Terraform...  ...certification relevant to the engagement portfolio (e.g., Professional Cloud DevOps Engineer,... 
    Immediate start
    Remote work
    Worldwide

    Insight

    Canada
    a month ago
  • $154k - $247k

     ...governments realize their greatest potential. Title and Summary Principal Information Security Engineer Who is Mastercard?...  ...candidate brings a strong security background, is passionate about cybersecurity and cryptography (including post-quantum cryptography), and... 
    Principal
    Full time
    Worldwide

    Mastercard

    Canada
    23 days ago
  • $181k

     ...the scalable, secure systems behind our cybersecurity platform. This is a hands-on, product...  ...who regularly uses AI-assisted dev tools (e.g., Cursor, Copilot, Devin) to move...  ...Finite State platform brings visibility and control to the supply chains that create connected... 
    Remote job
    Full time

    Finite State

    Canada
    more than 2 months ago
  •  ...Doit être bilingue en français et en anglais Aperçu en un...  ...la liste des meilleurs lieux de travail™ du monde de Fortune...  ...cloud, les données, l'IA, la cybersécurité et l'edge intelligent, nous...  ...expertise in cloud, data, AI, cybersecurity, and intelligent edge, we guide... 
    Local area
    Immediate start

    Insight

    Canada
    16 days ago
  • $83k - $132k

     ...governments realize their greatest potential. Title and Summary Senior Analyst, Customer Performance ABOUT THE OPPORTUNITY Mastercard is...  ...regional or global trends and help to develop key performance metrics and reporting • Complete ad hoc requests, participate in... 
    Full time
    Worldwide

    Mastercard

    Canada
    7 days ago
  • $83k - $120k

     ...governments realize their greatest potential. Title and Summary Senior Analyst, Customer Performance Overview The Senior Analyst,...  ...Role • Monitor and analyze customer activity, performance metrics, and support trends to identify risks, issues, and optimization... 
    Full time
    Work at office
    Worldwide

    Mastercard

    Canada
    a month ago
  • $150k - $234k

     ...greatest potential. Title and Summary Principal Product Manager -Technical Overview:...  ...delivery and testing of product features (e.g., serving and enabling scrum teams) •...  ...Evaluate & seek to improve existing practices, metrics, and roles to continually optimize. Own... 
    Principal
    Full time
    Worldwide
    Shift work

    Mastercard

    Canada
    16 days ago
  • $155k - $233k

     ...Engineering team is seeking a highly experienced Principal Data Protection Engineer to lead the design,...  ...Design and implement data protection controls across data ingress, processing, storage, inference, and egress layers (e.g., classification, tokenization, encryption... 
    Principal
    Full time
    Work at office

    Equinix

    Canada
    1 day ago
  • $240k - $360k

     ...best work. Role Summary The Senior Principal Architect is a highly influential...  ...switching, and SDN Software platforms for control, observability, automation, and...  ...and simplification Define and track metrics for system health, performance, and architectural... 
    Principal
    Full time
    Work at office
    Shift work

    Equinix

    Canada
    a month ago
  • $111k - $160k

     ...actively works to improve experience and metrics in ownership area • Develop complete understanding...  ...• Familiar with secure coding standards (e.g., OWASP, CWE, SEI CERT) and...  ...composite, observer, strategy, inversion of control) • Has ability to write code (in languages... 
    Full time
    Worldwide

    Mastercard

    Canada
    a month ago
  •  ...password.com) is an industry-defining global cybersecurity icon, trusted by more than 180,000...  ...Office, internal FP&A teams, system controllers, and distributed operational leads. This...  ...with premier Canadian technology sector metrics. Full 100% remote-first operational... 
    Hourly pay
    Temporary work
    Internship
    Work at office
    Remote work
    Work from home
    Shift work

    1Password

    Canada
    8 days ago
  • $111k - $160k

     ...and retaining customers by managing fraud and risk, enhancing cybersecurity, and improving the digital payments experience. Within this mission...  ...excellence • Work with cutting-edge big data platforms (e.g., Databricks, Apache Spark) at petabyte scale, pushing the boundaries... 
    Full time
    Worldwide

    Mastercard

    Canada
    26 days ago
  • $111k - $160k

     ...and retaining customers by managing fraud and risk, enhancing cybersecurity, and improving the digital payments experience. As the ecosystem...  ...Experience working with weakly labeled data or limited ground truth (i.e. heuristic approach) • Exposure to graph analytics, entity... 
    Full time
    Worldwide

    Mastercard

    Canada
    29 days ago
  • $83k - $132k

     ...of products and services that help people, businesses and governments realize their greatest potential. Title and Summary Senior Analyst, Global Public Sector, Urban Mobility Overview The Global Urban Mobility team is looking for a Senior Analyst for the Americas... 
    Full time
    Worldwide

    Mastercard

    Canada
    15 days ago
  • $100k - $120k

     ...are encouraged to apply, including individuals with disabilities and Protected Veterans. Job Description: The Senior Business Analyst - Operations will play a pivotal role in streamlining our operations within the automobile industry. This role involves analyzing... 
    Remote job
    Full time
    Contract work
    Temporary work
    Flexible hours

    Bold Group

    Canada
    more than 2 months ago
  •  ...Senior IT Systems Analyst    JOB-10046135   Anticipated Start Date 6/29/2026   Location Houston, TX   Type of Employment...  ...of all required Change Management tasks and relevant SOX control requirements (if applicable). Utilize industry accepted project... 
    Full time
    Contract work
    Local area

    Dynamics ATS

    Canada
    a month ago
  • $30 - $55 per hour

     ...Teleoperate robotic arms and humanoid robots using real-time control in designated safety lanes via leader-arm systems, VR headsets,...  ...manipulation use-cases Meet established quality and productivity metrics throughout each 8-hour shift. Monitor data collection... 
    Shift work

    SaidGig

    Canada
    2 days ago
  • $71k - $95k

     ...We have a current opening for a Sr. Financial Analyst and are actively reviewing applications. As the sole finance employee in the...  ...Understanding of product costing •    Knowledge of budget and cost control processes •    Experience in a manufacturing environment •... 
    Permanent employment
    Temporary work
    Work experience placement

    Ferrero

    Canada
    more than 2 months ago
  • $127k - $203k

     ...and retaining customers by managing fraud and risk, enhancing cybersecurity, and improving the digital payments experience. We provide value...  ...business stakeholders to define problem statements, success metrics, implementation needs, and release readiness. • Collaborate... 
    Full time
    Work at office
    Worldwide
    3 days per week

    Mastercard

    Canada
    2 days ago
  • $85k - $120k

     ...matter. Job Description We are seeking a Systems Engineering Analyst to provide on-site engineering support for airborne mission...  ...and cross-functional teams Experience working in secure or controlled technical environments. Eligibility to obtain and maintain... 
    Full time
    For contractors
    Flexible hours

    GD Mission Systems

    Canada
    22 days ago
  • $91k - $140k

     ...growth and success, we are seeking a Senior Security Operations Analyst to assist in all operational aspects of our security program....  ...these tasks within our SIEM. · Document risk and mitigation controls, including policy/procedure updates. · Participate in audits... 
    Full time
    Work experience placement
    Worldwide

    Mastercard

    Canada
    27 days ago
  •  ...Job Requisition ID # 24WD83815 24WD83815, Principal Software Developer French job description to follow!/La description de poste en français se trouve plus bas! This...  ...données de grande valeur, à l'échelle exabyte et dans le nuage, qui alimentent les produits de... 
    Principal
    Temporary work
    For contractors
    Work at office
    Relocation

    Autodesk

    Canada
    more than 2 months ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Analyste principal(e) - Contrôles et indicateurs de cybersécurité | Cybersecurity Controls & Metrics. Be the first to apply!