Senior PCI Analyst

Job Description:

Senior PCI Analyst Summary:

Signature Consultants is seeking a Senior PCI Analyst for an opportunity in Miami, FL. The Senior PCI Analyst will be leading our client’s PCI Global program and executing the PCI DSS assessments; which consist of planning, scoping, documentation, fieldwork, testing, gap analysis and reporting, while maintaining frequent communication and interaction with all stakeholders. In addition, he or she will ensure the corporate meets and adheres to PCI DSS compliance in any new implementation. This position will be 75% of leading initiatives, coordinating deliverables among teams, and analyzing and providing solutions to existing challenges, and 25% of executing test plans and performing assessments.

Responsibilities:

• Assist in the development and implementation of the Global PCI Program
• Perform and lead hands-on assessments to identify significant PCI risks (including applications, systems, data centers, infrastructure and vendor security risk assessments) to determine the organizational risk posture
• Complete and submit annual PCI Attestation of Compliance and Self-Assessment questioner to required credit card processors
• Ensure certified PCI ASV scans are being completed and submitted to required processors
• Lead and coordinate enterprise-wide annual and on-going l PCI assessments
• Determine PCI scoping, testing approaches, results and deficiencies
• Implement the PCI Assessment methodology, policy, strategy and process
• Utilize a risk-based approach to planning and performing PCI Assessments
• Work directly with QSA to ensure PCI assessments are completed in timely manner
• Lead PCI compliance initiatives to ensure operational effectiveness with applicable requirements as well as internal policies and procedures
• Participate in the development and implementation of new business initiatives involving PCI compliance in order to promote and implement functionality necessary to support required compliance
• Initiate improvement activity to reduce risk, ensure PCI compliance, lower cost, and improve quality within cross-business and IT processes
• Map PCI DSS to policies, standards, procedures, and process to ensure adequate coverage
• Provide frequent PCI status updates and present assessment results to the business stakeholders, and understand the importance of partnership with the business
• Lead remediation efforts and track completion status of deficiencies
• Prepare assessment summaries and review results with senior management providing observations and conclusions, as well as identify and communicate requirements gaps and evaluate management action plans and related reporting
• Provide PCI consulting services to business and IT owners and stakeholders
• Interface with technical teams, stakeholders and leadership teams to translate PCI requirements, risk mitigation plans into actionable items to mitigate risk
• Stay educated and updated on all changes PCI DSS and guidelines
• Work with the IT management in establishing processes to insure that all PCI compliance efforts are considered when making changes or installing any application enhancements, server set-ups and infrastructure changes

Qualifications:

• Bachelor’s degree in computer science or related work experience
• 4-6 years’ experience executing PCI compliance programs
• 4-6 years technical experience with global company environments
• Experience with complex risk-based approach to internal and external compliance efforts
• Proven analytical and organizational skills to independently work on multiple projects, and meet deadlines while ensuring quality results, is expected
• Must have familiarity with systems, networks, and a variety of the security concepts, practices, and procedures
• Demonstrated ability to apply IT-related knowledge and experience in solving compliance issues
• Experience using vulnerability scan tools and writing risk mitigation plans according to the PCI DSS
• Excellent analytical, evaluative, and problem-solving abilities
• Must have demonstrated ability to collaborate with technical and non-technical teams to further oversight responsibilities of the PCI Compliance team
• Excellent written and oral communication skills, as well as interpersonal skills including the ability to articulate to both technical and non-technical audiences
• Experience with PCI and SOX compliance programs as well as their technical and security requirements
• Demonstrated ability to manage multiple assignments and deadlines
• Excellent communication skills and significant attention to detail (both written and verbal)
• Ability to work independently and effectively with all levels of staff and management both internally and externally
• Knowledge of the ISO, COBIT and PCI DSS frameworks is expected
• Professional certification such as CISA, CISM, CRISC or CIPP is a plus
• Proficiency with Microsoft Office Suite

About Signature Consultants, LLC

Headquartered in Fort Lauderdale, Florida, Signature Consultants was established in 1997 with a singular focus: to provide clients and consultants with superior staffing solutions. For the seventh consecutive year, Signature was voted as one of the “Best Staffing Firms to Work For” and is now the 14th largest IT staffing firm in the United States (source: Staffing Industry Analysts). With 26 locations throughout North America, Signature annually deploys thousands of consultants to support, run, and manage their clients’ technology needs. Signature offers IT staffing, consulting, managed solutions, and direct placement services. For more information on the company, please visit www.sigconsult.com.