Risk & Compliance Director - Remote, US
- Full-Time
- Denver, CO
- Xerox
- Posted 2 years ago – Accepting applications
City: Denver
State/Province: Colorado
Country: United States
Department: Presales & Implementation
Date: Monday, February 28, 2022
Working time: Full-time
Ref#: 20015416
Job Level: Specialist
Job Type: Experienced
Job Field: Presales & Implementation
Seniority Level: Mid-Senior Level
Base Salary: $ 120,000
Description & RequirementsAbout Xerox Holdings Corporation
For more than 100 years, Xerox has continually redefined the workplace experience. Harnessing our leadership position in office and production print technology, we’ve expanded into software and services to sustainably power today’s workforce. From the office to industrial environments, our differentiated business solutions and financial services are designed to make every day work better for clients — no matter where that work is being done. Today, Xerox scientists and engineers are continuing our legacy of innovation with disruptive technologies in digital transformation, augmented reality, robotic process automation, additive manufacturing, Industrial Internet of Things and cleantech. Learn more at www.xerox.com and explore our commitment to diversity and inclusion.
#Remote
As a Director of Risk & Compliance, you will be a security practitioner or provider utilizing your time and insight to many organizations on an ongoing basis, this may be for one large organization or split among multiple clients. You will be engaged in designing the organization's security strategy and may be required to manage the implementation. Multitasking between clients and organizations will be the norm rather than the exception.
In addition, the Director of Risk & Compliance duties may include conducting client employee security awareness training, developing secure business and communication practices, identifying security objectives and metrics, proposing security products from vendors, ensuring that the company is in regulatory compliance
The Director of Risk & Compliance role includes performing client security Assessments using S2Score tooling and requires validation of the client’s policies and procedures. You will present the output of the assessments to the client team.
Effective questioning skills with a deep understanding of security and IT, in general, are required as well as exceptional written and verbal skills.
This is a client-facing role with direct contact and interaction with client IT leadership as well as C-Level client teams.
Job Duties:
- Running vulnerability scans
- Reviewing and revising current security policies and procedures
- Creating and implementing incident response plans (IRPs)
- Making recommendations for replacing/reinforcing current security tools and resources
- Making recommendations for budgets in Capital and Operating expenses
- Fundamental experience with S2Score or other GRC tools
Required Skills:
- A deep understanding of multiple frameworks: HIPAA, PCI DSS, NIST, NIST CSF & CMMC, etc.
- Solid networking, systems, and security background
- Familiarity with at least one SIEM technology, preferably one of Alien Vault, or LogRhythm
- Familiarity with cybersecurity products
- Scripting using Python
- One or more of the following certifications: CISSP, CISM, C|CISO
Xerox is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, creed, religion, ancestry, national origin, age, gender identity or expression, sex, marital status, sexual orientation, physical or mental disability, use of a guide dog or service animal, military/veteran status, citizenship status, basis of genetic information, or any other group protected by law. Learn more at www.xerox.com and explore our commitment to diversity and inclusion! People with disabilities who need a reasonable accommodation to apply or compete for employment with Xerox may request such accommodation(s) by sending an e-mail to XeroxStaffingAdminCenter@xerox.com. Be sure to include your name, the job you are interested in, and the accommodation you are seeking.
© 2020 Xerox Corporation. All rights reserved. Xerox® and Xerox and Design® are trademarks of Xerox Corporation in the United States and/or other countries.
#LI-KD1