Associate Manager - Security Compliance Analyst

Job Description:

DXC Technology (NYSE:DXC) - where brilliant people embrace change and seize opportunities to advance their careers and amplify customer success. People are the heart of our business. We support each other and work as a team, globally and locally to deliver excellence for our customers and colleagues. We live in more than 70 countries, speak multiple languages and work with over 6,000 customers on almost every continent. We use the power of technology to deliver mission critical IT services that move the world. DXC.com At DXC we pride ourselves on delivering excellence in everything we do. What this means for you is the opportunity to be a part of delivering innovative solutions and helping to solve real business problems for a wide variety of valued clients.

Security Compliance Analyst

Our Security Team is comprised of professionals with a broad background in business Information Security assurance and delivery experience, supporting a range of DXC Technology Outsourced Clients and Industries. 

This Compliance Analyst role works alongside a Financial Sector Customer and DXC Account SME’s and Commercial Teams. The role supports the Security Compliance Analyst Lead and the Compliance Lead in the analysis of compliance to service contracted policy controls relevant to both DXC and its Third Parties.

Key responsibilities:

• Assesses Policies for change and potential risk.

• Verifies DXC and Third-Party evidence in support of Client Policies.

• Maintains relationships with SME’s, Risk, Commercial and Client Teams.

• Guides and advises stakeholders to ensure smooth running of processes.

• Liaises with other Team members in support of objectives.

• Produces and updates governance procedures and reporting.

Mandatory Skills must include:

• Able to determine effectiveness of policy controls (operational, management and technical) to identify gaps in compliance.

• Attention to detail and an analytical approach to document review.

• Internal Audit/Assessment experience, including Third-Party compliance.

• Effective document presentation skills to meet business needs.

Expected Skills:

• Able to prioritize workload based on operational deadlines.

• Strong communicator; can interpret controls into understandable guidance.

• Excellent command of English; written and verbal.

• Experience working with ISO 27001 and an ISMS in a large organisation.

Desired Skills include:

• Knowledge of Regulatory Compliance Controls.

• Proficiency with Microsoft (Outlook, Word, Excel, PPT. Teams, SharePoint)

• Experience with Third Party Policy flow-downs.

• Exposure to international Clients / Delivery Teams.

Education and Experience:

• Bachelor’s Degree in any discipline.

• Typically 8 years or more experience with at least 5 years in the field of Information Security.

• Certifications must have: CISA or ISO 27001 Lead Auditor.

• Certifications desirable: CISSP or CISM.

Our culture and benefits: DXC is committed to building better futures for our customers, colleagues, environment, and communities. We take care of each other and foster a culture of inclusion, belonging, and corporate citizenship. We put this to action by developing and implementing societal initiatives within our Social Impact Practice. #WeAreDXC

As an employer of choice, our “people first” philosophy means we offer competitive remuneration, benefits, training, and career opportunities that reflect our commitment to improving the lives of our employees, and the communities in which we live and work. Some of these include;

• Extensive resources to support your onboarding and continual development including DXC University

• DXC Recognition, our global virtual platform that fosters a culture of appreciation and celebration with real-time reward and recognition

• We know that great people refer great people. We will reward you when you bring your friends and family to work at DXC

• More time to do the things you love with flexible leave options, including purchased leave

• Take time to give back with charitable and emergency services volunteer days

• Well-being matters to us and our Employee Assistance Program is there to support you and your family

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.