Xerox Jobs

Job Information

Xerox Analyst, Governance, Risk & Compliance - - 16281 in CARY, North Carolina

Analyst, Governance, Risk & Compliance at created 22-May-2020"/>

Skip to content

Xerox at


Analyst, Governance, Risk & Compliance

General information

Country: United States

Department: IM Security

Date: Friday, May 22, 2020

Working time: Full-time

Ref#: 20003130

Job Level: Individual Contributor

Job Type: Experienced

Job Field: IM Security

Description & Requirements

Xerox (NYSE: XRX) makes every day work better. We are a workplace technology company, building and integrating software and hardware for enterprises large and small. As customers seek to manage information across digital and physical platforms, Xerox delivers a seamless, secure and sustainable experience. Whether inventing the copier, the ethernet, the laser printer or more, Xerox has long defined the modern work experience. Learn more at at and explore our commitment to diversity and inclusion. at

This position supports the Governance, Risk and Compliance (GRC) management processes within Xerox Cyber Security organization. The qualified candidate is responsible for building and deploying effective policies, processes and controls across the enterprise in collaboration with business, IT and other Cyber Security professionals.

Primary Responsibilities:

  • Support the development and maintenance of Cyber Security policies, standards, and guidelines in alignment with applicable laws, common security frameworks and leading practices

  • Participate in development of training curriculum, conduct security awareness campaigns and evaluate their effectiveness

  • Facilitate the execution and continuous improvement of third-party risk management program and processes

  • Conduct gap assessments and facilitate management of compliance programs including ISO 27001, PCI, FedRAMP, SOC1, SOC2, GDPR, etc.

  • Oversee and coordinate the IT and business compliance to Disaster Recovery / Business Continuity policy

  • Review and manage exceptions to Cyber Security policies

  • Assist in the development and delivery of dashboards and actionable reporting, KRIs and KPIs

  • Review, conduct, or participate in audits of security programs and projects

Knowledge and Skills Required:

  • Strong knowledge of and experience in security requirements, standards and practices including NIST CSF, NIST 800-53, ISO 27001, PCI DSS, SOC2 , COBIT, GLBA, SOX, GDPR, OWASP Top 10, SANS Top 25, etc.

  • Strong understanding of and/or prior experience in one or more of the following:

  • Security Governance and Policy Management

  • Risk Assessment, Treatment and Management

  • Third Party Risk Management

  • IT Disaster Recovery/ Business Continuity

  • Security Training and Awareness

  • Security Compliance Management

  • A broad understanding across security domains

  • Prior experience in developing or implementing common controls framework would be a huge plus

  • Ability to document, follow, execute and continually improve a detailed process

  • Strong organizational and attention to detail skills

  • Strong written and oral communication skills

  • Experience working across multiple teams on projects

  • Demonstrated ability to handle multiple open items of varying size concurrently

  • Ability to communicate with all levels of management

  • Uncompromising personal and professional integrity and ethics

Education and Experience Required:

  • B.S in computer science, information systems, information security, engineering or related field.

  • At least 5 years of related experience

  • One or more Industry-standard security certifications (such as CISSP, CISM, CISA, CRISC, CTPRP)

Xerox is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, creed, religion, ancestry, national origin, age, gender identity, sex, marital status, sexual orientation, physical or mental disability, use of a guide dog or service animal, military/veteran status, citizenship status, basis of genetic information, or any other group protected by law. Learn more at at and explore our commitment to diversity and inclusion! at People with disabilities who need a reasonable accommodation to apply or compete for employment with Xerox may request such accommodation(s) by sending an e-mail to Be sure to include your name, the job you are interested in, and the accommodation you are seeking.

© 2019 Xerox Corporation. All rights reserved. Xerox® and Xerox and Design® are trademarks of Xerox Corporation in the United States and/or other countries.


Share this job:

  • Share Analyst, Governance, Risk & Compliance with Facebook

  • Share Analyst, Governance, Risk & Compliance with LinkedIn

  • Share Analyst, Governance, Risk & Compliance with Twitter

  • Share Analyst, Governance, Risk & Compliance with a friend via e-mail

  • Print page