14 days old
2018-01-042018-02-01

Program Manager

Jacksonville, FL 32246
  • Job Code
    594112

PCI Program Manager



  • The Program Manager of the Enterprise PCI Program is accountable for overarching PCI program, inclusive of strategic plan development, execution and measurement for initiatives, capabilities or functions that impact our PCI compliance posture. The Manager also has primary responsibility, under the guidance of the program's senior leadership steering committee, to ensure PCI Program strategy alignment with corporate and company strategies.


Essential Job Functions



  • Defines the Enterprise PCI Program Strategy and Operating Model; ensures its alignment with overall Business/IT/IS strategy.
  • Provides oversight of decision-making and prioritization for PCI governance, policy alignment, guidance, and interpretation; facilitation of internal and external assessments; audit response, and third party supplier certification across in-scope companies.
  • Establishes credibility and maintains strong working relationships with internal stakeholders involved with payment security and compliance matters (Finance, Compliance, InfoSec, Legal, Business Development, Internal Audit, Fraud, Physical Security, Developer Community, Networking, Systems, etc.). Champions payment security as a core competency.
  • Drives execution of the PCI program across the enterprise, including, but not limited to, policy enforcement, monitoring and tracking, performance & risk metrics (KPI/KRI), incorporation of PCI compliance requirements into business and technology roadmaps, training and awareness, and corporate communications.
  • Actively perform internal self-assessments and facilitate assessments performed by external Qualified Security Assessors (QSA).
  • Ensure completion and delivery of annual Attestations of Compliance (AoC) as required for respective merchant and supplier roles.
  • Drive and monitor issue remediation activities across in-scope organizational functions to ensure gap closure in order to fulfill PCI compliance requirements.
  • Serves as company representative in PCI community meetings and industry events. May serve on PCI Special Interest Groups (SIGS) and industry advisory boards.
  • Acts as the thought leader for PCI. Maintains a thorough understanding of the PCI DSS requirements, PCI industry guidance, and PCI best practices.
  • Partners with key internal stakeholders to identify, evaluate, and adopt emerging digital payment channels, platforms, and technologies.
  • Negotiates and manages advisory and consultancy relationships that support the enterprise PCI compliance platform inclusive of assessments, attestations, supplier oversight, ASV scans, and QIRs.
  • Oversees and/or contributes to program budgets with responsibility for tracking and managing adherence to expense targets.
  • Other duties as assigned.



  • Requirements:



Required:




  • Bachelor's degree in an IT related field or equivalent work experience.
  • 3+ years direct experience in a global or enterprise-level PCI program for a merchant, acquirer, issuer, third party servicer, or brand association.
  • 8+ years serving in an information security, finance, risk, or compliance function within the financial services, health solutions, or retail services industry.
  • Certifications: PCI-ISA, PCI-QSA, or PCIP. One or more of the following: CISSP, CISM, CRISC, and CISA.
  • Extensive knowledge of information security and technology frameworks, compliance management policies, methods, standards, tools, and processes (e.g. PCI, ISO, NIST, HITRUST, COBIT) as well as familiarity with compliance, legal, internal / external audit & regulatory requirements.
  • Broad understanding of the domains of information security including Information Security Controls (Infrastructure Security, Access Management, Physical Security, Application Security, etc.), IT Compliance, Change Management, Risk Management and a strong understanding of NIST, PCI, ISO, Secure SDLC, COBIT, and HITRUST standards.
  • In-depth knowledge of Information Technology field and computer systems
  • Ability to solve very complex PCI security related issues that may span technical, legal, compliance and regulatory obligations across various lines of business and shared service areas of the company.
  • Highly refined communication skills including ability to negotiate, build consensus, clearly articulate to technical and non-technical audiences, communicate difficult messages in a professional and productive manner, excellent presentation and facilitation competency and ability to represent organization as a leader in cross-functional discussions/initiatives.
  • Strong analytical and problem solving skills - evaluates information/data to make decisions; anticipates obstacles and develops plans to resolve; creates actionable strategies and operational plans.
  • Change-oriented; actively generates process improvements; champions and drives change initiatives; confronts difficult circumstances in creative ways, balances multiple and competing priorities and executes accordingly.
  • Excellent interpersonal, written / verbal communication and leadership skills with the ability to quickly build credibility, influence, and make recommendations to all levels.



Categories

  • Information Technology

Randstad utilizes a technology-driven focus with a human touch to provide better staffing and business solutions to organizations around the world. Our team of experts match professionals with available career opportunities in a variety of fields.

Featured Jobs

Career News

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Program Manager

Randstad Technologies
Jacksonville, FL 32246

Share this job

Program Manager

Randstad Technologies
Jacksonville, FL
US

Separate email addresses with commas

Enter valid email address for sender.

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast