Security Delivery Lead (SDL)

Job Description

DXC Technology is a Fortune 500 global IT services leader. Our more than 130,000 people in 70- plus countries are entrusted by our customers to deliver what matters most. We use the power of technology to deliver mission-critical IT services across the Enterprise Technology Stack to drive business impact. DXC is an employer of choice with strong values, and fosters a culture of inclusion, belonging and corporate citizenship.

The Security Delivery Lead (SDL) is the primary point of accountability for the delivery, performance, and continuous improvement of security services for assigned customer accounts. The SDL ensures contractual, regulatory, and compliance obligations are met while acting as a trusted advisor on cybersecurity posture, risk mitigation, and security capability uplift. The role bridges operational delivery, governance, compliance, and strategic advisory to support customer security maturity and long-term account growth.

Key Responsibilities

Client Relationship & Advisory

• Serve as the focal point for IT security, compliance, and risk matters with the customer
• Engage with customer security leadership (including CISO functions) to align delivery to strategy and regulatory demands
• Provide strategic and tactical security recommendations to uplift customer security maturity
• Support decision-making through validated insights, reporting, assessments, and business justification
  
  

Security Service Delivery

• Oversee contractual delivery of Managed Security Services (MSS) and ensure performance meets agreed SLAs/OLAs
• Align delivery across global/functional service towers and ensure cross-practice accountability
• Manage incident, audit, compliance, and risk deliverables for the account
• Maintain governance artifacts such as Account Security Plans, risk registers, audit registers, and assurance reports
  
  

Risk, Audit & Compliance

• Coordinate assessments, audits, vulnerability scanning, and compliance programs
• Track security risks and drive mitigation actions through remediation or formal acceptance
• Monitor regulatory and standards changes relevant to the account
  
  

Security Improvements & Enhancement Projects

• Identify gaps and improvement opportunities across tooling, governance, and operational controls
• Propose remediation initiatives, roadmaps, business cases, or phased enhancement programs
• Develop content for Statements of Work (SoW), proposals, and RFP responses when security uplift projects are required
  
  

Commercial & Growth Enablement

• Support the Client Partner and Delivery Lead in sales pursuits, proposal support, and capability positioning
• Introduce new offerings, modern capabilities, and innovation aligned to account needs
• Drive customer satisfaction, renewal, and expansion outcomes
  
  

Required Skills & Experience

• Experience delivering or overseeing cybersecurity services in enterprise environments
• Proven ability to engage security leadership stakeholders including CISOs, Risk, Audit & Compliance teams
• Familiarity with regulatory and industry standards (e.g., NIST CSF, ISO/IEC 27001, PCI DSS, CIS Controls, Sector-specific frameworks)
• Strong understanding of identity, infrastructure security, threat management, compliance frameworks, vulnerability management, and security operations
  
  

Preferred Certifications

CISSP, CCSP, CISM, CISA, CRISC, ISO 27001 Lead Auditor/Implementer, or equivalent professional certifications

At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We're committed to fostering an inclusive environment where everyone can thrive.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.