Xerox Security engineer in Nuevo Leon, Mexico
Education : BS or equivalent experience.
Job Role Summary: Responsible for wide range of security architecture, solution design, and engineering including planning and implementing risk management strategies, processes and programs. Supports and validates security management plan development, design and testing of internal and external product solutions and applications for security coherence and compliance. Manages resolution of incidents / problems throughout the information system lifecycle, including classification, prioritization and initiation of action, documentation of root causes and implementation of remedies. Develops and implements information risk controls and management strategies, tools for security management such as vulnerability assessment, SEIM, IDM/PAM, GRC etc. Selects, evaluates and procures SW security solution tools and procedures
Description: The Security Engineer position resides within the corporate information security organization. This position will support enterprise-wide functions and will report to Solution Validation Manager within Security Engineering. The incumbent will support solution development efforts to validate the security management plans of the product lead and provide support for the development of security strategies, architecture roadmaps and tools. Supports planning and implementation of organization-wide policies, processes and procedures for the management of operational risk. The position will also be responsible to design, develop, support and deliver security tools, platforms and operations that will enable IT security, Governance and Cyber security. As each of CISO towers has different IT security process and procedure needs, this position ensures that requirements are met to satisfactory levels.
Requirements: As a senior in the security organization, the IT Security Engineer must exhibit common sense, excellent decision-making, effective oral and written communication skills, diplomacy when dealing with stakeholders, and a keen sense of how to improve the value that the company provides to their client. The successful candidate should have the ability to engineer IT and Cyber security, governance processes and procedures, willingness to continue education, ability to cope with stress and work under pressure, perform as a team player, and demonstrate integrity. They should possess minimum of three years of security engineering experience. Experience with RFP/RFI, product evaluations, supplier management and financial management is also desired.
The successful candidate must have at least 3 to 5 years of IT security engineering and delivery experience with relevant skills in one or more of the core areas: Cyber security, IT security and Security Governance Risk and Controls as well as infrastructure systems, application delivery, risk management, business continuity/disaster recovery planning, security monitoring, incident response, intrusion detection, and network design, encryption, firewall management, etc. Experience with security compliance such as PCI/DSS, HIPPA, NIST, Fed-Ramp or Common Criteria preferred
A security-related certification from a recognized body (i.e., Certified Information System Security Professional (CISSP) and/or other professional certification) is required. An undergraduate or advanced degree with a specialization in Computer Science, Information Technology, or Information Security is desirable, but equivalent experience is also acceptable. Experience in IT security industry standards such as NIST, Fed-Ramp, and ISO 27000, Cloud Critical Control etc. desired. Experience with security tools evaluation, selection, implementation, configuration, user support, problem management, and HW/SW capacity planning. Experience with tools such as Vulnerability assessment, SEIM, Log Monitoring, Fireeye or Cisco Antimalewar, Access Controls-IDM, PAM, Two-factor authentication. Experience with MS Window server OS, Unix/Linux OS, Oracle, SQL DBMS environment.
Job: IM Security
Organization: Xerox (XT)-X000000152
Title: Security engineer
Location: MX-Nuevo Leon-Monterrey
Requisition ID: 16027161