Hi, Please find the Urgent Requirement below and do reply back if you are comfortable with below required details.
*Position : **Senior PCI Compliance Analyst* Location : Denver, CO Duration : 6+ Months *Duties and Responsibilities:* The Senior PCI Compliance Analyst reports to the Director, Information Security: Governance Risk and Compliance. The Senior Analyst is responsible to provide internal governance to primarily achieve PCI and SSAE 16 SOC 1 Type II and SOC 2 Type II compliance. The role will play an active part in performing internal assessments and recommend solutions to remediate issues related to PCI and SOC compliance. The role will also act as a liaison with external auditors and manage interactions with TeleTech’s Qualified Security Assessor (QSA). The position will provide internal services related to security policy, controls, and evidence around the IT risk reporting, compliance and operational processes, including business process and IT management controls. The Analyst facilitates and monitors performance of risk remediation tasks, changes related to risk mitigation & reports on findings. Maintains oversight of IT and vendors regarding the security maintenance of their systems and applications. Provides project status reports, including outstanding issues. It will include facilitating and completing deliverables involving the following: · Supporting the completion of PCI Data Security Standard (PCI-DSS) Report on Compliance, SSAE 16 SOC 1 Type II and SOC 2 Type II compliance efforts, including the communication of key milestones · Obtain and review evidence of compliance for adherence to standards · Collaboration with other Compliance Analysts to identify overlaps with complementary compliance frameworks · Key domains of compliance controls, including change management, access to systems, networks and data, computer operations and systems development. · Driving necessary system and process updates across key domains of PCI and SOC 1 and SOC 2 compliance · Management of IT security and IT risk (e.g., data systems, network and applications) across the enterprise. · Assist with the development of policies, procedures and standards that meet existing and newly developed policy and regulatory requirements within PCI and SSAE 16 · Assist with facilitating IT security/risk training curriculum. · Work closely with cross-functional teams and develop strong relationships as project lead within IT security and GRC projects. · Stay current with and promote awareness of applicable regulatory standards, upstream risks and industry best practices across the enterprise *Minimum Job Requirements* · A Bachelor's degree in Information Systems, Computer Science, Information Security or related field required, with understanding and experience with industry and regulatory standards. · Minimum 7-10 years of experience in IT Security, Corporate Risk Governance, or as an internal /external IT auditor, an internal security or risk assessment professional at retailer, institution, bank or processor · Intermediate knowledge of PCI-DSS and SSAE 16 requirements · Knowledge of technical infrastructure, network, system, database and application level security · Windows workstation and server administration experience preferred. · An understanding of the importance of business ethics. · Prior experience performing security reviews and risk assessments preferred. · Proven ability to engage with Senior Management · Excellent PC skills (Excel, Word, Sharepoint) · Excellent communication skills, verbal and written *Highly Desired Skills:* · CISA, CIPP, CISM, PCI-QSA, or related certifications are a plus · Proficient on RSA Archer GRC or other similar GRC tool *Thanks & Regards,* Jessie Parker <jessiewithstaff...@gmail.com> -- You received this message because you are subscribed to the Google Groups "Powerbuilder Assignments" group. To unsubscribe from this group and stop receiving emails from it, send an email to powerbuilder-assignments+unsubscr...@googlegroups.com. To post to this group, send email to powerbuilder-assignments@googlegroups.com. Visit this group at https://groups.google.com/group/powerbuilder-assignments. For more options, visit https://groups.google.com/d/optout.
