Job Description

For more than 100 years, Xerox has continually redefined the workplace experience. Harnessing our leadership position in office and production print technology, we\'ve expanded into software and services to sustainably power today\'s workforce. From the office to industrial environments, our differentiated business solutions and financial services are designed to make every day work better for clients - no matter where that work is being done. Today, Xerox scientists and engineers are continuing our legacy of innovation with disruptive technologies in digital transformation, augmented reality, robotic process automation, additive manufacturing, Industrial Internet of Things and cleantech. Learn more at and explore our commitment to diversity and inclusion.

Responsible for conducting security architecture reviews for different Xerox IT, R&D, and Core businesses, and in assisting in detecting, responding, and preventing cloud security incidents.

The position requires breadth in different domains of security including vulnerability management, risk management, penetration testing, compliance, and security operations. It requires depth - an understanding of and hands-on experience in the following:

• Cybersecurity controls such as NIST 800x, and other basic security concepts, processes, and technologies
• Cloud security best practices and controls at least for AWS and Azure
• Secure development lifecycle and an understanding of the output of the static, dynamic and software composition analysis, and penetration testing
• Data security best practices and engineering controls
• Product security incident management and response
• Threat modelling and attack scenarios.
• Programming in at least one of the Programming Language, be able to code to automate some of the manual processes.
• The potential candidate should be able to take initiatives, succinctly and coherently communicate in-writing and orally, independently carry out the roles and responsibilities, and coordinate and collaborate cross-functionally with ease. The candidate should also be aware of different cybersecurity risk management frameworks such as SOC2, ISO 27X, NIST CSF.

• Primary Responsibilities:
• Conducts security reviews, suggest remediations, and document findings
• Detects, respond to security incidents in a timely manner
• Assists in automating cloud and architectural process
• Briefs the findings to the stakeholders
• Maintains knowledge of the technical specialism at a detailed level and is responsible for own personal growth and technical proficiency.

Share this job:

Xerox is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, creed, religion, ancestry, national origin, age, gender identity or expression, sex, marital status, sexual orientation, physical or mental disability, use of a guide dog or service animal, military/veteran status, citizenship status, basis of genetic information, or any other group protected by law. Learn more at and explore our commitment to diversity and inclusion! People with disabilities who need a reasonable accommodation to apply or compete for employment with Xerox may request such accommodation(s) by sending an e-mail to talentacquisitionsupport@xerox.com. Be sure to include your name, the job you are interested in, and the accommodation you are seeking.

\xc2\xa9 2023 Xerox Corporation. All rights reserved. Xerox\xc2\xae and Xerox and Design\xc2\xae are trademarks of Xerox Corporation in the United States and/or other countries.

Xerox