Job Description

Description & Requirements

Xerox (NYSE: XRX) makes every day work better. We are a workplace technology company, building and integrating software and hardware for enterprises large and small. As customers seek to manage information across digital and physical platforms, Xerox delivers a seamless, secure and sustainable experience. Whether inventing the copier, the ethernet, the laser printer or more, Xerox has long defined the modern work experience. Learn more at www.xerox.com and explore our commitment to diversity and inclusion.

Summary:

This role will specialize on security information & event management, leveraging technologies, techniques, and methods as they pertain to the disciplines of information security and regulatory compliance. This includes the development of and execution of information risk controls and management strategies to maintain the confidentiality, integrity, availability, accountability and relevant compliance of information systems. Leading the resolution of incidents and problems throughout the information system lifecycle, including classification, prioritization and initiation of action, documentation of root causes and implementation of remedies.

Primary Responsibilities:

* Oversee SIEM, IPS/IDS architectural design and deployment within the enterprise, ensuring currency and relevancy of systems with the business processing environment, evolving with the IT landscape from legacy through transformative projects/programs with a keen eye toward network security for on premise and cloud datacenters as well as client endpoints.
* Configure and/or supervise the management of use cases to aid in the detection, mitigation of threats and prevention techniques.
* Perform 1st and 2nd level triaging and act on alerts from SIEM, EDR platforms, escalate to incident response team for further investigation.
* Manage/Develop processes and procedures for effective orchestration of threat prevention, incident response, remediation, and recovery of security events, adhering to the NIST incident response framework and principles.
* Collaborate with community of risk analysts, as warranted.
* Interact with members of enterprise architecture and/or IT solution delivery staff in articulating business requirements balanced with cyber security requirements and enforcement for security IT processing.
* Analyzes incidents and problems to show trends and potential problem areas, so that actions can be taken to minimize the occurrence of incidents and to improve the process of problem reporting, analysis and clearance. Assesses and reports the probable causes of incidents and consequences of existing problems and known defects.
* Provides advice, both reactively and pro-actively, to those engaged in activities where the technical specialism is applicable, including those in areas such as budgetary and financial planning, litigation, legislation, and health and safety.

Qualifications & Education Requirements:

* Bachelors Degree in Computer Science, Information Systems, or related field.
* Strong understanding of network security principles and enterprise deployment methodologies
* Deep technical knowledge on deploying, managing security monitoring, SOAR, EDR platforms
* Uses discretion to identify & resolve complex problems with minimal supervision as well as in collaborative team environments
* Strong analytical skills with an emphasis on fact-based reporting/summaries using technologies (QRadar, or similar)
* Excellent written and verbal communication & presentation skills with diverse communities (technical and non-technical)

Preferred Skills:

* IT and/or Security Certification Preferred, GCIH, GSEC, GMON, etc.
* Ability to work in a fast-paced environment and adapt to rapidly changing business requirements.
* Experience in security monitoring of cloud environments (Azure/AWS) is preferred
* Good time management and attention to detail
* Applies standard procedures to enhance security or resilience to system interruptions. Can take immediate action in an incident to limit business impact and escalates event to higher authority.
* Maintains knowledge of specific technical specialists, provides detailed advice regarding their application, executes specialized tasks. Implements and administers risk management technologies and process controls in each specialism and conducts compliance tracking. The specialism can be any area of information or communication technology, technique, method, product or application area.
* Carries out specific assignments related to the technical specialism, either alone or as part of a team.

Xerox is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, creed, religion, ancestry, national origin, age, gender identity or expression, sex, marital status, sexual orientation, physical or mental disability, use of a guide dog or service animal, military/veteran status, citizenship status, basis of genetic information, or any other group protected by law. Learn more at www.xerox.com and explore our commitment to diversity and inclusion! People with disabilities who need a reasonable accommodation to apply or compete for employment with Xerox may request such accommodation(s) by sending an e-mail to XeroxStaffingAdminCenter@xerox.com. Be sure to include your name, the job you are interested in, and the accommodation you are seeking.

2020 Xerox Corporation. All rights reserved. Xerox and Xerox and Design are trademarks of Xerox Corporation in the United States and/or other countries.

LI-KM1