Xerox Jobs

Job Information

Xerox Senior Security Analyst in Raleigh, North Carolina

Senior Security Analyst position on the Engineering Services and Support team responsible for the design, deployment and support of secure private and public (IaaS, PaaS) hosting platforms for new and improved core services offered by Xerox. You should be familiar with ISO27001, SOC 2, and have industry standard security certification such as CISSP or CISM. You should be willing to help development teams by providing guidance and support on projects/initiatives to maintain and achieve information security risk assessment standards. You will need to continually update those standards as the industry changes.


  • Evaluate risks tosystems and come up with solutions to minimize the potential threats in bothprivate and public cloud components

  • Lead in the designof more secure pipelines and update existing ones

  • Ensure thatstandards and guidelines outlined by the business are followed by the team

  • Provide support oninitiatives to maintain or achieve certifications supporting businessobjectives

  • Respond to clientsecurity and privacy inquiries to support business sales

  • Assist withadministration and coordination of B2B connectivity to our various regulatedenvironments

  • Provide oversightinto treatment efforts to address vulnerability findings as part of continuousimprovement

Required Skills

  • University degree in Information Technology,Cybersecurity, or a related subject

  • Industry security certification like CISSP orCISM

  • Basic understanding of Cloud concepts – IaaS,PaaS, SaaS

  • Previous systems administration experience withWindows Server administration in a virtualized environment, e.g. VMWare

  • Knowledge of Information Security policies

  • Must possess excellent written and verbalcommunication skills

  • Flexible to work overtime as required; someovernight and/or weekend work may be required

  • Must maintain high degree of confidentiality

  • Strong team player with professionalinterpersonal style

  • Working knowledge of Microsoft Office

  • Work experience in a busy environment isdesirable

Preferred Skills

  • Experience in Project Management roles inbusiness and/or technology management

  • Familiarity with code analysis tools, DAST andSAST

  • Knowledge of the Software Development Lifecycle processesincluding: Agile, traditional delivery models, coding, and code promotion.

Candidate Education:

Graduation in specialized field (Example: Bachelor of Engineering etc.) Computer Science, Information Systems, or related field.

Professional Certifications:

Minimum Technical certifications as required such as CISSP, SANS GSEC, CIPP, FBCP.

Additional Role Requirements:

Information Security Domain

Broad knowledge of at least 7 out of the following 10 security domains with deep technical expertise in at least one of the domain areas:

  • Access Control Systems and Methodology

  • Telecommunications and Network Security

  • Business Continuity Planning and Disaster Recovery Planning

  • Security Management Practices

  • Security Architecture and Models

  • Law, Investigation, and Ethics

  • Application and Systems Development Security

  • Cryptography

  • Computer Operations Security

  • Physical Security One or more of the following industry certifications required: CISSP, GSEC, CISA, GCIH, GCFA or other related certification. Basic knowledge of the following Privacy domains with some technical knowledge of the IT related domains:

  • U.S. and international privacy laws

  • information management practices as it relates to privacy

  • privacy implications of emerging technologies

  • HIPAA, GLBA, APEC principles

  • OECD guidelines

  • EU Directive and Safe Harbor

  • employee records management

  • workplace monitoring

  • incident handling

  • PII

  • Web forms and cookie files

  • Spyware

  • Spam

Title: Senior Security Analyst

Location: North Carolina-Raleigh

Requisition ID: 19004269

Xerox is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, creed, religion, ancestry, national origin, age, gender identity, sex, marital status, sexual orientation, physical or mental disability, use of a guide dog or service animal, military/veteran status, citizenship status, basis of genetic information, or any other group protected by law.