Associate Manager Information Security

Job Description:

Roles and Responsibilities:

Relationship Management

• Provide the Client a single point of contact for security matters related to DXC’s Services
• Work closely with the client’s senior Security and Compliance leadership and is DXC focal point for IT Security or Compliance matters that affect the client
• Understand Client’s Contractual Security and Compliance & Regulatory Requirements
• Understand the Clients Security and Compliance Strategy
• Ensure DXC delivers security services to its client efficiently, using existing DXC leveraged capabilities and service offerings whenever possible, and brings to the client as many benefits as possible that result from DXC global reach
• Within the context of contracted services, support the client’s Chief Information Security Officer (CISO) to implement a sound security program
• Lead Security Innovation with the customer
• Identify and facilitate up-sell opportunities
• Monitor applicable standards for impact on the client.

Account Management

• Perform Contract Gap Analysis and document key contractual security and compliance requirements
• Act as the Focal Point for Security and Compliance Communications within the Account Team
• Owns end-to-end Responsibility of the Services being delivered through DXC Security Services (Appendix - RACI)
• Oversee Security and Compliance of services being delivered through others DXC Global Practices. Accountability stays in these Global Practices.
• Understand the security components and implications for security of the underlying tools and technologies supporting the account
• Prepare and maintain the Account Security Plan (ASP) to ensure it continues to reflect the needs of the account, the required focus and how the account’s security and compliance requirements will continue to be met
• Provide Security and Compliance awareness trainings
• Oversee Financial reviews for all MSS and MSS third party in scope

Security Management

• Work with the Account Team and MSS capability teams to ensure security requirements are understood and continue to be met through effective operations
• Ensure technology and data resources within the scope of the Agreement are secure
• Maintain a complete and current understanding of the required security delivery as defined in the contract and supporting Statement of Work
• Maintain a current and complete understanding of the account’s supporting security operations
• Maintain a complete and current understanding of the effectiveness of the supporting security operations
• Ensure new technology projects assess and consider security risks through change Management and integrate appropriate risk mitigation requirements
• Ensure the effectiveness and completeness of the security program DXC manages for the client, to
• the degree the client’s security program is within scope of the Agreement
• Prepare and deliver to the client the security and compliance reports as required by the contract.
• Complete self-assessments as defined in the contract and DXC policies and standards, including QEX Assessments if the account is eligible

Requirements:

• Candidate must possess at least a Diploma/Degree in Computing/Information Technology or equivalent
• At least 5 years of experience in Cybersecurity
• Experience in client relations and account management
• Have some team leading experience
• Good verbal and written communication skills
• Ability to work effectively in a team and with client

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.