Manager SOX and PCI Compliance
- Demonstrated experience in implementing compliance framework such as COSO, COBIT and ISO 27001 etc
- Intimate understanding of Sarbanes Oxley (SOX Compliance requirements and IT General Controls
- Thorough knowledge of PCI related standards including PCI-DSS, PA-DSS, ASV guidelines and other support documents
- Thorough understanding of GDPR and the California Consumer Privacy Act
- Familiarity with a broad range of IT and Information Security products and technologies such as identity and access management, vulnerability management, encryption and key management, logging and monitoring and application security
- Familiarity with cloud based environments and technologies with associated auditing methodologies
- Excellent documentation and communication skills
- Bachelor's or Master's degree in a computer or information management field
- Minimum of either CISSP, CISA or CISM required
- 5-7 years’ experience in an information security compliance, audit or risk management role with hands on experience in a multitude of compliance initiatives including but not limit to
- COSO, CoBIT
- ISO27001
- PCI-DSS
- SOX-404
- HIPAA
- EU-GDPR
- SSAE-16 [SOC-1 and SOC-2]
- Experience with developing and implementing automation for controls and compliance is preferred
- Strong analytical and problem solving skills with the ability to function as a change agent
- Strong skills with intermediate to advanced level expertise with Excel and PowerPoint
- Demonstrated experience with managing teams in a high paced environment. Understanding of security metrics and creation of effective dashboards for management review and consumption.
#CASS