Job Description :
Suntechpros Inc. has an immediate requirement for PCI Program Manager in Durham,NC for 6 months.Please send me your profile at .
Job Description:
Essential Job Functions:
Defines the Enterprise PCI Program Strategy and Operating Model; ensures its alignment with overall Business/IT/IS strategy.
Provides oversight of decision-making and prioritization for PCI governance, policy alignment, guidance, and interpretation; facilitation of internal and external assessments; audit response, and third party supplier certification .
Establishes credibility and maintains strong working relationships with internal stakeholders involved with payment security and compliance matters (Finance, Compliance, InfoSec, Legal, Business Development, Internal Audit, Fraud, Physical Security, Developer Community, Networking, Systems, etc. Champions payment security as a core competency.
Drives execution of the PCI program ,including, but not limited to, policy enforcement, monitoring and tracking, performance & risk metrics (KPI/KRI), incorporation of PCI compliance requirements into business and technology roadmaps, training and awareness, and corporate communications.
Actively perform internal self-assessments and facilitate assessments performed by external Qualified Security Assessors (QSA
Ensure completion and delivery of annual Attestations of Compliance (AoC) as required for respective merchant and supplier roles.
Drive and monitor issue remediation activities across in-scope organizational functions to ensure gap closure in order to fulfill PCI compliance requirements.
Serves as company representative in PCI community meetings and industry events. May serve on PCI Special Interest Groups (SIGS) and industry advisory boards.
Acts as the thought leader for PCI. Maintains a thorough understanding of the PCI DSS requirements, PCI industry guidance, and PCI best practices.
Partners with key internal stakeholders to identify, evaluate, and adopt emerging digital payment channels, platforms, and technologies.
Negotiates and manages advisory and consultancy relationships that support the enterprise PCI compliance platform inclusive of assessments, attestations, supplier oversight, ASV scans, and QIRs.
Oversees and/or contributes to program budgets with responsibility for tracking and managing adherence to expense targets.
Other duties as assigned.
Required Skills/Experience:
Bachelor’s degree in an IT related field or equivalent work experience.
3+ years direct experience in a global or enterprise-level PCI program for a merchant, acquirer, issuer, third party servicer, or brand association.
8+ years serving in an information security, finance, risk, or compliance function within the financial services, health solutions, or retail services industry.
Certifications: PCI-ISA, PCI-QSA, or PCIP. One or more of the following: CISSP, CISM, CRISC, and CISA.
Extensive knowledge of information security and technology frameworks, compliance management policies, methods, standards, tools, and processes (e.g. PCI, ISO, NIST, HITRUST, COBIT) as well as familiarity with compliance, legal, internal / external audit & regulatory requirements.
Broad understanding of the domains of information security including Information Security Controls (Infrastructure Security, Access Management, Physical Security, Application Security, etc, IT Compliance, Change Management, Risk Management and a strong understanding of NIST, PCI, ISO, Secure SDLC, COBIT, and HITRUST standards.
In-depth knowledge of Information Technology field and computer systems
Ability to solve very complex PCI security related issues that may span technical, legal, compliance and regulatory obligations across various lines of business and shared service areas of the company.
Highly refined communication skills including ability to negotiate, build consensus, clearly articulate to technical and non-technical audiences, communicate difficult messages in a professional and productive manner, excellent presentation and facilitation competency and ability to represent organization as a leader in cross-functional discussions/initiatives.
Strong analytical and problem solving skills - evaluates information/data to make decisions; anticipates obstacles and develops plans to resolve; creates actionable strategies and operational plans.
Change-oriented; actively generates process improvements; champions and drives change initiatives; confronts difficult circumstances in creative ways, balances multiple and competing priorities and executes accordingly.
Excellent interpersonal, written / verbal communication and leadership skills with the ability to quickly build credibility, influence, and make recommendations to all levels.