Title: Cybersecurity / IAM Engineer Location: US-MD, United States Job Description: Category Other NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now. We are currently seeking a Cybersecurity / IAM Engineer to join our team in Bethesda (REMOTE), Maryland (US-MD), United States (US). Job Summary: The Cybersecurity / IAM Engineer is responsible for architecting, implementing, and maintaining advanced cybersecurity and identity and access management (IAM) solutions across all client environments, including cloud, IoT, edge, and data systems. This role is critical to ensuring that client meets and sustains compliance with cybersecurity, privacy, and risk management requirements, including RMF, IL4/IL5, and FedRAMP controls. The engineer leads the design and enforcement of secure authentication, authorization, and RBAC frameworks, supporting multi-factor authentication, single sign-on, and integration with providers. The Cybersecurity / IAM Engineer works closely with DevSecOps, software, and infrastructure teams to embed security best practices into all phases of the system lifecycle, including secure configuration baselines, continuous monitoring, vulnerability management, and incident response. The position requires hands-on experience with IAM platforms, PKI, secure directory services, and the implementation of audit logging and compliance reporting. The engineer maintains comprehensive documentation, supports audit and ATO processes, and ensures that all client solutions are resilient, auditable, and optimized for operational readiness and regulatory compliance. Job Duties: - Architect, implement, and maintain advanced IAM solutions, including RBAC, MFA, SSO, and integration with providers - Develop and enforce secure authentication and authorization frameworks for client's cloud, edge, and data environments - Lead the implementation of secure directory services, PKI, and certificate management for all client components - Support continuous monitoring, vulnerability management, and incident response in compliance with DoD RMF, IL4/IL5, and FedRAMP requirements - Collaborate with DevSecOps, software, and infrastructure teams to embed security best practices throughout the system lifecycle - Maintain comprehensive documentation for IAM architectures, security controls, and compliance artifacts - Support audit, ATO, and risk management processes, including evidence collection and remediation of findings - Implement and monitor audit logging, access reviews, and compliance reporting for all client environments - Provide technical support for user provisioning, deprovisioning, and lifecycle management - Participate in security assessments, code reviews, and compliance audits as required by contract and SOW Basic Qualifications: - Master's degree in Cybersecurity, Computer, Electrical, or Electronics Engineering, or Mathematics with a concentration in computer science or equivalent. - Minimum 10 years of experience with cybersecurity engineering - Must be US Citizen with ability to obtain a Secret Clearance Preferred Qualifications: - Experience designing and managing IAM solutions in regulated or mission-critical DoD environments - Proficiency with RBAC, SSO, MFA, PKI, and secure directory services - Experience with DoD RMF, IL4/IL5, and FedRAMP cybersecurity and compliance requirements - Familiarity with AWS GovCloud, cloud security, and secure integration of edge/IoT devices - Strong documentation and communication skills, including the ability to produce compliance artifacts and technical guides - Experience supporting audit, ATO, and risk management processes for federal systems - Information Assurance Management (IAM) or Information Assurance Technical (IAT) or Information Assurance System Architect and Engineer (IASAE) Level I (position-based) per DoD 8570.1M About NTT DATA</u> NTT DATA is a $30 billion business and technology services leader, serving 75% of the Fortune Global 100. We are committed to accelerating client success and positively impacting society through responsible innovation. We are one of the world's leading AI and digital infrastructure providers, with unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and application services. our consulting and Industry solutions help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more than 50 countries. We also offer clients access to a robust ecosystem of innovation centers as well as established and start-up partners. NTT DATA is a part of NTT Group, which invests over $3 billion each year in R&D. Whenever possible, we hire locally to NTT DATA offices or client sites. This ensures we can provide timely and effective support tailored to each client&rsquo;s needs. While many positions offer remote or hybrid work options, these arrangements are subject to change based on client requirements. For employees near an NTT DATA office or client site, in-office attendance may be required for meetings or events, depending on business needs. At NTT DATA, we are committed to staying flexible and meeting the evolving needs of both our clients and employees. NTT DATA recruiters will never ask for payment or banking information and will only use @nttdata.com, @nttdatafed.com and @talent.nttdataservices.com email addresses. If you are requested to provide payment or disclose banking information, please submit a contact us form, https://us.nttdata.com/en/contact-us. NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https://us.nttdata.com/en/contact-us. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here. If you'd like more information on your EEO rights under the law, please click here. For Pay Transparency information, please click here. NTT DATA provides a reasonable range of compensation for specific roles. The starting pay range for this remote role is $90,146 - $208,672. This range reflects the minimum and maximum target compensation for the position across all US locations. Actual compensation will depend on a number of factors, including the candidate&rsquo;s actual work location, relevant experience, technical skills, and other qualifications. This position may also be eligible for incentive compensation based on individual and/or company performance. If the position offered in temporary, the position will not be eligible for incentive compensation. This position is eligible for company benefits including medical, dental, and vision insurance with an employer contribution, flexible spending or health savings account, life and AD&D insurance, short and long term disability coverage, paid time off, employee assistance, participation in a 401k program with company match, and additional voluntary or legally-required benefits.

Our Purpose Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential. Title and Summary Lead Program Security Engineer Overview Mastercard's Business Security Enablement (BSE) team is seeking a seasoned Lead Security Engineer (L6) - Data & AI to serve as the primary security advocate and advisor for our Data Commercialization and Artificial Intelligence initiatives. The BSE team is a worldwide group of information security experts focused on helping Mastercard achieve its goals by ensuring that security is at the heart of everything we do. In this role, you will collaborate with technology, engineering, and business teams to integrate strong security practices into Mastercard's data-driven products and AI solutions. The ideal candidate possesses a high level of expertise in information security and secure engineering disciplines, enabling them to advise product and development teams on designing secure applications and services following industry best practices. You will apply deep knowledge of security principles, theories, and concepts throughout the business and development lifecycles. As an L6 Security Engineer, you are expected to take a lead security role in large, complex, global, cross-functional initiatives. You will work closely with developers and architects to evaluate business needs, determine feasibility, and recommend optimal security solutions that meet both security and regulatory requirements. Furthermore, you will champion a strong security risk culture across the organization, proactively managing risks in alignment with Mastercard's risk appetite and ensuring data and AI innovations are secure by design. Role As the L6 Data & AI Security Engineer, you will be responsible for a variety of critical security engineering and business enablement activities:• Security Partnership & Advocacy: Serve as the primary security partner for Data Commercialization and AI programs. Provide security risk guidance from discovery through deployment, and advise product, engineering, and operations teams on secure design and delivery of data-driven and AI-powered solutions.• Security Engineering Enablement: Translate Corporate Security policies, standards, and controls into actionable guidance for Data & AI teams. Partner with security champions and deliver targeted training. Maintain security dashboards/documentation and ensure requirements (secure coding, data protection, IAM controls) are embedded in the SDLC. Ensure adherence to security policy, regulatory requirements, and industry standards (e.g., PCI-DSS, privacy). • Collaboration & Leadership: Partner with Business Security Officers (BSOs) and act as a bridge between Corporate Security and Data/AI product teams. Work with engineering and architecture to improve security of code, data pipelines, cloud services, and AI solutions. Promote a security-first culture across the domain.• Security Reviews & Oversight: Lead key security governance for Data & AI work, including design/code reviews, Solution Architecture approvals, Threat Model reviews, Third-Party technology reviews, Technical Architecture Diagram approvals, Network as a Service approval, and vulnerability management support. Drive security user stories in PI Planning and ensure requirements are tracked to closure.• Innovation & Continuous Improvement: Monitor emerging threats and best practices across data analytics and AI. Partner with cross-functional teams to strengthen protection for sensitive data and ML models. Improve architectures and processes through standardization and automation of security controls and tooling. All About You The ideal candidate for the L6 Data & AI Security Engineer position will demonstrate a blend of deep technical expertise, leadership, and collaborative skills, including:• Extensive Security and Engineering Experience: Typically, 7-10 years in information security, with hands-on secure software development and secure architecture/design, including reviewing code/systems for vulnerabilities. Experience with cloud platforms, APIs, and distributed systems preferred.• Leadership and Collaboration: Proven ability to work effectively in a global environment, build strong relationships, and influence cross-functional and executive stakeholders across varying technical depth.• Security Knowledge and Technical Skills: Advanced knowledge of security principles, domains, protocols, and standards, with familiarity with ISO 27001, PCI-DSS, NIST SP 800-53, and COBIT. Strong grounding in risk management and data privacy for data analytics, digital commerce, and AI solutions, and experience designing secure, multi-domain architectures.• Cryptography Security: Strong experience with cryptography and network security, including encryption, hashing, key management, PKI/certificates, TLS/SSL, VPN, IPsec, and related protocols.• DevSecOps: Experience with DevOps/DevSecOps, including CI/CD and automated deployments, with security controls embedded throughout the SDLC.• Technical Domain Expertise: Proficiency with data technologies, analytics platforms, and AI/ML frameworks; experience securing data platforms and/or AI/ML models.• Business & Industry Acumen: Knowledge of the payments and e-commerce landscape and security considerations for data-centric and AI-powered products, including best practices for protecting data assets and algorithms and awareness of emerging threats.• Mindset and Soft Skills: Professional, proactive, and solutions-oriented, with strong problem-solving and continuous-learning mindset. Excellent communication skills to articulate security risks and mitigations to technical and business audiences, and comfort operating in a fast-paced, global environment. NICE Framework References The National Initiative for Cybersecurity Education (NICE) provides a framework of cybersecurity work roles and competencies. This Mastercard role shares knowledge, skills, and abilities (KSAs) with several NICE Framework work roles, including:• SP-DEV-002 (OPM622) - Secure Software Assessor• SP-ARC-002 (OPM652) - Security Architect• OV-SPP-002 (OPM751) - Cyber Policy and Strategy Planner Corporate Security Responsibility At Mastercard, every person working for or on behalf of the company is responsible for information security. All activities involving access to Mastercard assets, information, and networks come with an inherent risk to the organization. Therefore, it is expected that the successful candidate for this position will:• Abide by Mastercard's security policies and practices.• Ensure the confidentiality and integrity of the information being accessed.• Report any suspected information security violation or breach in a timely manner.• Complete all periodic mandatory security training courses in accordance with Mastercard's guidelines. Corporate Security Responsibility All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must: - Abide by Mastercard's security policies and practices; - Ensure the confidentiality and integrity of the information being accessed; - Report any suspected information security violation or breach, and - Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.

Our Purpose Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential. Title and Summary Senior Information Security Engineer Who is Mastercard? Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all Mission First, People Always As Corporate Security, we are responsible for keeping Mastercard safe and secure from cyber and physical threats, and it is our people on the frontlines who make this happen every day. By taking care of our people, their wellbeing, and career development, we provide them the necessary tools and environment to ensure the success of our mission. Overview Mastercard is seeking candidates to join the Data Protection team with a focus on ShadowIT risk management, governance, and enforcement. As Mastercard accelerates innovation through SaaS, cloud services, and automation platforms, unapproved technology usage presents material data security, privacy, and compliance risks. This role is critical to defining and operating a clear, defensible blocking and escalation framework that protects Mastercard data while enabling informed business decisions.• Can you design and operate a structured blocking and escalation strategy for unapproved applications?• Can you balance security risk, business impact, and policy alignment in high visibility decisions?• Can you lead governance processes and metrics that scale across a global enterprise? Role• Contribute to the execution of the Shadow IT and Data Protection roadmap, with primary ownership of enforcement, escalation, and governance processes• Develop and maintain a Shadow IT blocking strategy framework for unapproved applications, including: - Blocking criteria and decision thresholds - Risk scoring aligned to data sensitivity, access, and exposure - Defined escalation paths for exceptions and high impact cases• Document all blocking decisions with clear business justification, technical impact assessment, and alignment to security and data protection policy• Establish and maintain communication protocols to notify stakeholders of application blocks, including timelines, approved alternatives, and available support resources• Manage unblock requests and escalations and exception processing, coordinating with Security Operations and business stakeholders to evaluate risk and determine outcomes• Partner with application, platform, and business teams to define paths to compliance, including remediation, onboarding to approved services, or decommissioning• Track and report Shadow IT metrics, including blocking trends, unblock volumes, escalation outcomes, incidents, and stakeholder satisfaction.• Work side by side with other team members to build and mature the Shadow IT governance process, while taking lead ownership of defined processes such as: - Escalations and exception handling - Cross functional coordination - Technical impact assessment - Policy alignment and enforcement • Build and operationalize a next generation Shadow IT governance model that provides transparency, consistency, and defensibility across the enterprise• Develop a way to automatically tag approved apps• Work with stakeholders to ensure all browser types experience is consistent (notifications, blocks, etc)• Work with stakeholders to ensure All About You• Experience operating or designing security governance or enforcement programs in large, complex environments• Strong understanding of information security, data protection, and risk management, particularly as applied to SaaS and third party technologies• Demonstrated ability to make and defend risk based decisions that balance security, policy, and business impact• Experience working cross functionally with Legal, Privacy, Compliance, and Technology teams• Ability to clearly document decisions and articulate technical and business impact to diverse audiences• Strong verbal and written communication skills, including executive ready summaries• Demonstrated technical competency in security engineering through hands on experience or relevant qualifications• Design and implement data models and analytics frameworks to support Shadow IT blocking decisions, escalation tracking, and governance reporting• Develop automated processes and dashboards to provide visibility into blocking activity, unblock requests, escalation outcomes, and trend analysis• Evaluate and integrate data sources (e.g., SaaS discovery tools, cloud telemetry, intake systems) to ensure accurate and timely Shadow IT decisioning data• Analyze and interpret complex datasets to identify risk patterns, repeat offenders, policy gaps, and opportunities for control improvement• Perform completeness and quality assessments to validate Shadow IT enforcement coverage and identify governance gaps or process breakdowns• Demonstrated ability to perform data analysis across security policies and technology usage to identify trends, assess risk, and inform governance decisions, including the capability to quickly learn and operate tooling used to manage product roadmaps and evaluate scoring criteria for alignment with Mastercard's risk appetite. Required Skills• Data security and governance (in depth knowledge)• Information security engineering• Risk assessment and decision frameworks• Policy interpretation and enforcement• Cross functional coordination and escalation managementAdditional Nice to Have• Experience with SaaS security posture management (SSPM), CASB, or DSPM• Familiarity with enterprise intake, exception, or risk acceptance processes• Cloud security experience• Automation or data analytics experience• Alteryx (or equivalent ETL), PowerBI (or equivalent visualization), PowerAutomate, etc experience is a plus• Application development experience is preferred, including the ability to develop scripts, work with APIs, and leverage AI capabilities in support of Shadow IT initiatives.Relevant Previous Experience• Security Engineering• Security Governance or Risk Management• Cloud or SaaS Security Engineering• Technology Risk or Security ConsultingOther Key Words Shadow IT, Blocking Strategy, Escalation Management, SaaS Risk, Data Protection, Third Party Risk, Governance, Metrics, Policy Enforcement Mastercard Corporate Security Roles have been aligned with the NICE framework (National Initiative for Cybersecurity Education). For this role the NICE Work Roles most closely aligned are: Cybersecurity Architecture, Secure Systems Development, Security Control Assessment, Systems Security Management, Technology Research and Development. Corporate Security Responsibility All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must: - Abide by Mastercard's security policies and practices; - Ensure the confidentiality and integrity of the information being accessed; - Report any suspected information security violation or breach, and - Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.

Title: Program Coordinator & Research Assistant - Chair on India and Emerging Asia Economics Location: Washington, DC ID:1784-233 Full-Time/Regular Job Description: JOB SUMMARY: The Center for Strategic and International Studies (CSIS) is a non-profit, bipartisan public policy organization established in 1962 to provide strategic insights and practical policy solutions to decision makers concerned with global security and prosperity. Over the years, it has grown to be one of the largest organizations of its kind, with a staff of some 200 employees, including more than 120 analysts working to address the changing dynamics of international security across the globe. The CSIS Chair on India and Emerging Asia Economics aims to unlock the full potential of U.S. partnerships with India and the broader Asia region. While continuing to lead the Center's work on India, the Chair has expanded to include emerging economies across Asia, fostering U.S. economic security, economic development, and deepening business engagement between these countries and the United States. We remain the leading authority on state-level political-economic issues in India and have spearheaded multiple funded projects to enhance subnational engagement. We work towards building stronger ties between Indian policymakers and other nations in the Global South. Our work is very action oriented. Our team works in the office Monday-Thursday. Fridays are an optional "work from home" day, though we may shift to 5-day office weeks at some point in the future. CSIS is seeking a Program Coordinator/Research Assistant (PCRA) for the India Chair, a specialized role requiring expertise in policy research, program management, strategic communications, and engagement with Indian states. Interest/experience in power grids, energy efficiency, energy storage, and electric mobility and/or engagement with Indian states in other sectors is desirable. The ideal candidate: - Has experience in conducting policy research on highly technical topics - Has experience in engaging officials in India and maintaining contacts over time - Has experience managing different workstreams such as event implementation, travel coordination, contact management - Has the ability to be proactive and can work independently with minimal instruction - Have some domain knowledge in power grids, energy efficiency, energy storage, and electric mobility in the context of Indian states - Has experience assisting with fundraising efforts, including but not limited to preparing and editing fundraising proposals and engaging with prospective donors - Have excellent executive writing skills - Proficiency in Hindi and/or an additional Indian language. The role pays between $55,000 and $62,000, depending on the candidate's experience. ESSENTIAL DUTIES AND RESPONSIBILITIES: Policy Research and Analysis: - Conduct in-depth policy research and gap analysis on power grids, energy efficiency, energy storage, and electric mobility in the context of Indian state policies. - Co-author reports and assist with policy research and report writing, contributing directly to the development of actionable policy recommendations. - Draft and contribute to research publications, articles, and reports that reflect a deep understanding of Indian state-level policy issues and are intended for distribution to policymakers and donors. Strong executive writing skills are essential. India Chair Events, Roundtables, Forums and Workshops: - Lead the planning and execution of high-level public events, climate leader forums, roundtables, workshops, and smaller strategic meetings, including in-person and virtual engagements between Indian and U.S. officials hosted by the India Chair. - Manage travel logistics for delegation visits (6-10 people) Strategic Communications and Stakeholder & Donor Engagement: - Cultivate and maintain relationships with U.S. and Indian state-level policymakers. This includes leveraging prior fieldwork experience, multilingual communication skills, and an understanding of both cultural and governmental nuances in these interactions. - Engage in cold outreach and follow-up with foundations, NGOs, and Indian and U.S. officials to expand the program's network. - Assist with fundraising and developing outreach strategies to procure funding for new initiatives and broaden the India Chair's influence. - Assist with the coordination of MOU signings, drafting donor reports, preparing and submitting grant renewal documents and funding proposals, and preparing expense reports to ensure compliance with donor policies. Program Coordination: - Manage competing priorities and provide administrative support to multiple India Chair current and upcoming projects. - Track project deliverables and inform the project lead/Chair of upcoming deadlines. KNOWLEDGE, EDUCATION, AND EXPERIENCE: - Must have a minimum bachelor's degree in public policy, international relations, or related field. - Strong qualitative and quantitative research and analysis skills. - Must be very comfortable consistently engaging stakeholders in India outside of traditional work hours, including early mornings and late nights. - Proficiency in Hindi (required) and/or other Indian language is highly preferred. - Knowledge of subnational and national governance structures in India and the U.S. is required. Prior fieldwork in India and experience engaging Indian states stakeholders is preferred - Interest/comfort in working on policy issues related to the energy sector - Must have strong communication, interpersonal, analytical skills, organizational and project management skills. - Must be detail orientated - Software proficiency in Microsoft Suite (Outlook, Excel, SharePoint, OneDrive, Teams), Salesforce, Pardot, Concur, and Asana. - Computer and mobile phone/technology sufficient to work from home. - Experience with research tasks - Must be eligible to work in Washington, DC, and commit at least 35 hours per week. - Must have the ability to work independently with minimal oversight. - Must be willing to travel to India for project-related work, including travel to India's state capitals. - Must have demonstrated experience managing competing priorities and multiple projects under tight deadlines. PHYSICAL REQUIREMENTS AND WORK CONDITIONS: - This position will be based out of our Washington DC headquarters and is expected to be in-office 4+ days per week. The physical demands are representative of those that must be met by an employee working in an office environment. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential job functions. - Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Equal Opportunity Employer. OUR BENEFITS: Medical insurance Dental insurance Vision insurance Life insurance Short-term and long-term disability 403(b) for retirement planning: Tuition Assistance, Flexible Spending Account, Health Savings Account, Military Leave, 12 Paid Holidays, Sick Leave, Vacation leave