AMS-CA-Security-ID504-Manager Information Security-JL08

Job Description:

The DXC Security Delivery Lead (SDL), based in Canada, is a client facing resource that serves as the lead for security delivery for DXC customer account(s). The position has ultimate responsibility for governance of information technology security services and security escalations for the assigned account(s). The SDL operates as a trusted advisor to client leadership, working with DXC Operations Management, Asset Stakeholders and Client Leadership, focusing specifically on a client’s business objectives and the role Security plays. It also provides leadership for audit and compliance activities. Responsibilities include attending meetings with all levels of customer management, recommending and influencing customer direction, recommending new and changing security service solutions, providing security and risk management consulting, managing security-related escalations, facilitating audits and compliance reviews and overseeing all required regulatory and audit remediation activities.

The clients supported by this position are often companies that are highly regulated, with comprehensive security and control needs. Audit leadership responsibilities focus on facilitating all manner of audits as mandated by contract and the Security Delivery Lead (SDL) is required to interact with various audit bodies including internal and external auditors, and industry or government regulators.

The position also acts as trusted advisor to the DXC account team for all aspects of Information Security and Audit Compliance. In the trusted advisor role, the SDL oversees compliance functions and any security control assessments, in addition to being to “go to” person for account leaders for all aspects of risk and controls management. The team working with the SDL within the Managed Security Services space can include On Shore resources, Best Shore resources, and Agency Contractors with multiple levels of job skills and responsibilities.

The SDL will be responsible for the Security Cost Center for the assigned account. This includes validating all charges against the cost center, managing/maintaining the allocated financial budget and managing the budget forecast.

As the primary security point of contact with customers, SDLs need to have a good mix of technical and soft skills.

Qualifications and skills:

• Excellent written and verbal communication skills;
• Risk Management experience; demonstrated ability to link risk management practices to business needs;
• Industry standard security/audit certifications: CISSP, CISA, GSEC, etc;
• Familiarity of security software tools and technology;
• Ability to work effectively with all levels of security delivery personnel within DXC and on the client side;
• Ability to handle multiple high-pressure situations concurrently;
• Excellent diagnostic/problem solving skills;
• Ability to interpret and explain the legal implications of security issues and contract requirements related to security;
• In-depth understanding of IT security best practices and technology;
• Excellent knowledge of SOX, ISAE3402/SSAE 16;
• Excellent knowledge of industry regulations (egs PCI, FDA, PKI);
• Ability to influence and/or lead security-related business development activities;
• Solid understanding of IT hosting requirements, including server/workstation infrastructure, mainframe and midrange environments, and networks, along with the respective security standards/protocols associated with them;
• Demonstrated ability to take accountability and to work autonomously;
• Some travel may be required.

DXC is an equal opportunity employer. We welcome the many dimensions of diversity. Accommodation of special needs for qualified candidates may be considered within the framework of the DXC Accommodation Policy.

In addition, DXC Technology is committed to working with and providing reasonable accommodation to qualified individuals with physical and mental disabilities. If you need assistance in filling out the employment application or require a reasonable accommodation while seeking employment, please e-mail AODA Canada Requests.

Note: This option is reserved for applicants needing a reasonable accommodation related to a disability.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf.More information on employment scams is availablehere.