The GRC and PCI Compliance Manager is responsible for the comprehensive oversight, enhancement, and validation of PCI processes and procedures governing credit card transactions within ARS. This role involves driving the execution of the PCI program through policy enforcement, auditing, tracking, and promoting PCI awareness across the organization. Additionally, the manager will be tasked with establishing and maintaining corporate Information Security policies, including proposing new policies, ensuring their approval, and advocating for the approved policies. Other GRC responsibilities include managing a risk register, handling policy exceptions, and validating the effectiveness of security controls.
Furthermore, this role will involve risk assessing new acquisitions, developing their PCI project plans, and assisting them in achieving PCI compliance. This process will culminate in an onsite audit conducted by our external Qualified Security Assessor (QSA). Additional duties will include assisting with troubleshooting security tools, incident response, etc.
Knowledge:
Skills:
Duties:
Formal Education or Equivalent:
This position offers the flexibility to work remotely from home. Occasional travel is required to support auditing branch compliance and when working directly with new acquisitions on becoming PCI compliant.
ARS-Rescue Rooter is an Equal Opportunity Employer AA/EOE/M/F/V/D. In compliance with the Americans with Disabilities Act, ARS-Rescue Rooter may provide reasonable accommodations to qualified individuals with disabilities and encourages both prospective and current employees to discuss potential accommodations with the employer.
Software Powered by iCIMS
www.icims.com