Security Compliance Analyst Lead

Petaling Jaya, Selangor
Tetap
Sepenuh masa

5 jam lepas

Job Description:

DXC Technology (NYSE:DXC) - where brilliant people embrace change and seize opportunities to advance their careers and amplify customer success. People are the heart of our business. We support each other and work as a team, globally and locally to deliver excellence for our customers and colleagues. We live in more than 70 countries, speak multiple languages and work with over 6,000 customers on almost every continent. We use the power of technology to deliver mission critical IT services that move the world. DXC.com At DXC we pride ourselves on delivering excellence in everything we do. What this means for you is the opportunity to be a part of delivering innovative solutions and helping to solve real business problems for a wide variety of valued clients.

Security Compliance Analyst LeadOur Security Team is comprised of professionals with a broad background in business Information Security assurance and delivery experience, supporting a range of DXC Technology Outsourced Clients and Industries.This Compliance Analyst role works alongside a Financial Sector Customer and DXC Account SME’s, Commercial Teams, and Third-Party Vendors. The role supports the Compliance Lead in the analysis of compliance to service contracted policy controls relevant to both DXC and its Third Parties.Key responsibilities:

Maintenance of the DXC DB Account Governance Framework documents.
Assesses Policies for change and potential risk.
Co-ordinating VSCM reviews and liaising with Third Parties to ensure compliance.
Evaluates DXC and Third-Party evidence in support of Client Policies.
Maintains relationships with SME’s, Risk, Commercial and Client Teams.
Guides and advises stakeholders to ensure smooth running of processes.
Liaises with other Team members in support of objectives.
Produces and updates governance procedures and reporting.
Leads Internal, Third-Party and Customer facing meetings, as required.

Mandatory Skills must include:

Internal Audit/Assessment experience, including Third-Party compliance.
Able to determine effectiveness of policy controls (operational, management and technical) to identify gaps in compliance.
Attention to detail and an analytical approach to document review.
Effective document presentation skills to meet business needs.

Expected Skills:

Strong communicator; can interpret controls into understandable guidance.
Excellent command of English; written and verbal.
Able to prioritize workload based on operational deadlines.
Experience working with ISO 27001 and an ISMS in a large organisation.

Desired Skills include:

Knowledge of Regulatory Compliance Controls.
Proficiency with Microsoft (Outlook, Word, Excel, PPT. Teams, SharePoint)
Experience with Third Party Policy flow-downs.
Exposure to international Clients / Delivery Teams.

Education and Experience:

Bachelor’s Degree in any discipline.
Typically 8 years or more experience with at least 5 years in the field of Information Security.
Certifications must have: CISA or ISO 27001 Lead Auditor.
Certifications desirable: CISSP or CISM.

As an employer of choice, our “people first” philosophy means we offer competitive remuneration, benefits, training and career opportunities that reflect our commitment to improving the lives of our employees, and the communities in which we live and work. Some of these include.Extensive resources to support your onboarding and continual development including DXC UniversityDXC Recognition, our global virtual platform that fosters a culture of appreciation and celebration with real-time reward and recognitionWe know that great people refer great people. We will reward you when you bring your friends and family to work at DXCMore time to do the things you love with flexible leave options, including purchased leaveTake time to give back with charitable and emergency services volunteer daysWell-being matters to us and our Employee Assistance Program is there to support you and your familyInstagram:Youtube:TikTok:WebsiteAt DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive.Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available .

DXC Technology

Memohon