Associate Manager - Security Compliance Analyst
Be among the first applicants.
DXC Technology Inc.
Petaling Jaya
MYR 150,000 - 200,000
Be among the first applicants.
6 days ago
Job description
Job Description:
Security Compliance Analyst
Our Security Team is comprised of professionals with a broad background in business Information Security assurance and delivery experience, supporting a range of DXC Technology Outsourced Clients and Industries.
This Compliance Analyst role works alongside a Financial Sector Customer and DXC Account SMEs and Commercial Teams. The role supports the Security Compliance Analyst Lead and the Compliance Lead in the analysis of compliance to service contracted policy controls relevant to both DXC and its Third Parties.
Key Responsibilities:
- Assesses Policies for change and potential risk.
- Verifies DXC and Third-Party evidence in support of Client Policies.
- Maintains relationships with SMEs, Risk, Commercial and Client Teams.
- Guides and advises stakeholders to ensure smooth running of processes.
- Liaises with other Team members in support of objectives.
- Produces and updates governance procedures and reporting.
Mandatory Skills must include:
- Able to determine effectiveness of policy controls (operational, management and technical) to identify gaps in compliance.
- Attention to detail and an analytical approach to document review.
- Internal Audit/Assessment experience, including Third-Party compliance.
- Effective document presentation skills to meet business needs.
Expected Skills:
- Able to prioritize workload based on operational deadlines.
- Strong communicator; can interpret controls into understandable guidance.
- Excellent command of English; written and verbal.
- Experience working with ISO 27001 and an ISMS in a large organisation.
Desired Skills include:
- Knowledge of Regulatory Compliance Controls.
- Proficiency with Microsoft (Outlook, Word, Excel, PPT, Teams, SharePoint).
- Experience with Third Party Policy flow-downs.
- Exposure to international Clients / Delivery Teams.
Education and Experience:
- Bachelor’s Degree in any discipline.
- Typically 8 years or more experience with at least 5 years in the field of Information Security.
- Certifications must have: CISA or ISO 27001 Lead Auditor.
- Certifications desirable: CISSP or CISM.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Land a better
job faster
job faster
