Xerox Security Audit Program Manager in Austin, Texas

Xerox is the world's leading enterprise for business process and document management. Its services, technology, and expertise enable workplaces - from small businesses to large global enterprises - to simplify the way work gets done so they operate more effectively and focus more on what matters most: their real business. Xerox offers business process outsourcing and IT outsourcing services, including data processing, healthcare solutions, HR benefits management, finance support, transportation solutions, and customer relationship management services for commercial and government organizations worldwide. The company also provides extensive leading-edge document technology, services, software and genuine Xerox supplies for graphic communication and office printing environments of any size. Xerox serves clients in more than 160 countries. For more information, visit www.xerox.com, www.news.xerox.com, www.realbusiness.com or www.xerox.com/businessservices.

If you meet the requirements of this position and want to work for a world-class company with a great marketplace reputation, apply today.

Job Summary

The Security Audit Program Manager is a technical role that focuses on the management of our security standards and the evolution of our security architecture to align with business and customer requirements and support industry best practices.

Expected to support / manage:

  • Experience with development and administration of risk assessments and reviews

  • Experience with audit processes and disciplines

  • Experience with more than one major IT discipline (distributed computing, networks, application design and development, IT security and business recovery)

  • Compile and deliver Executive level metrics and reporting on Information security risks, trends, and observations

  • Communicate with auditors and regulators during compliance and regulatory reviews

  • Participate in information security audits ensuring technical compliance with security related regulatory requirements (PCI, SOX, PII, PHI, etc)

  • Substantial knowledge of risk assessment methodologies, IT policies and standards

  • Strong client relationship management experience and skills

  • Existing and new business and Third Party Contracts Governance

  • Requirements definition based on contract interpretation

  • Technical solution compliance review and signoff

  • Understanding the details and business impact of technology changes on our security architecture

  • Third party flow down standardization

  • Vendor contract review, update and signoff

  • Security flow down definition to technical streams

  • Security standards evolution based on regulatory changes, client requirements and industry best practices

  • Audit - Review and remediation signoff

Job Responsibilities

  • Candidate must be self-managed and goal driven

  • Position requires the highest level of expertise towards development, specification and communication of the security architecture, roadmap and policy enhancements

  • Interfaces with IT and business management to understand and provide IT solutions consistent with business needs

  • Participates in the development of IT and Business strategies ensuring solution complies with client requirements, regulations and industry best practices

  • Leads relevant projects and initiatives as needed

  • Recommends new technologies which will enhance and support overall corporate and business goals

  • Researches and evaluates alternative solutions to improve operational effectiveness and reduce costs

  • Drives business processes and information flows for better alignment

  • Provides in-depth technical consultation to clients and IT management to ensure development of efficient systems utilizing established standards, procedures and methodologies

  • Stays up to date on trends and developments within security area of expertise

  • Become a trusted technical advisor for our customer base, providing thought leadership and the appropriate application of technology to business problems

Essential Skills/Knowledge

  • Minimum work experience - 5 years

  • Minimum 2 years’ experience with CISA certification

  • Minimum 2 years’ experience with CISSP certification

  • Minimum 2 years’ experience with QSA certification or other equivalent security compliance certification and experience

  • Knowledgeable in PCI, ISO 127001/2

  • Excellent written and verbal communications

Travel

up to 50% to Audit sites as needed

Education

Bachelor degree

Xerox is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, creed, religion, ancestry, national origin, age, gender identity, sex, marital status, sexual orientation, physical or mental disability, use of a guide dog or service animal, military/veteran status, citizenship status, basis of genetic information, or any other group protected by law. People with disabilities who need a reasonable accommodation to apply or compete for employment with Xerox may request such accommodation(s) by sending an e-mail to accommodations@xerox.com. Be sure to include your name, the job you are interested in, and the accommodation you are seeking.

Job: Project Management

Organization: PDSI - Admin

Title: Security Audit Program Manager

Location: TX-Austin

Requisition ID: 16029171

Virtual/work from home? Yes