Who We Are
Qwinix is a cloud-native consultancy and Google Cloud Partner. Driven by a distinguished engineering core, Qwinix works with clients to modernize their infrastructure, develop powerful digital experiences and processes, and strategically adopt innovative cloud solutions.
We are on a mission to close the gap between next and now. Through great people and great technology, we are able to solve the worlds most pressing problems and build remarkable experiences, processes, and products for our clients.
We pride ourselves on fostering a growth-centric culture through every step of a Qwinix employee's journey. From comprehensive onboarding practices to career development incentives, we strive to help our employees build a brighter tomorrow for themselves and their clients.
The Software Engineer will be working on our customer-facing application development teams in our Denver office. They will be working in an extremely collaborative and fast-paced environment helping to develop applications for our call centers and customers across the country.
Client has an exciting opportunity for an Information Security PCI Compliance Program Manager at our Headquarters location in Englewood, Colorado. The PCI Compliance Program Manager is a key part of our Information Security and Governance, Risk, and Compliance (GRC) teams. This position is full-time, permanent, and salaried with standard work hours, has no supervisory duties, and requires very little travel. We are looking for someone who can start immediately.
The PCI Compliance Program Manager will report to the Information Security Compliance Manager and function as a central Payment Card Information subject matter expert supporting enterprise teams looking to involve Client PCI data in business solutions and processes. They will lead the company through the design and build out of a program that focuses on the protection, use, and control monitoring of PCI data, including any necessary certifications or audits.
What You Will Do
High-level job responsibilities with Fortune 250 Client:
Primary responsibilities of the Information Security PCI Compliance Program Manager include the following:
Draft policies/procedures that govern the security of Client PCI data across the enterprise with a specific focus on compliance requirements.
Design, lead and execute a Compliance program focused on PCI data handling across the enterprise.
Partner with security teams to identify and analyze security requirements to align with PCI compliance standards.
Track, document and address PCI compliance gaps to ensure timely closure.
Manage the annual PCI audit including evidence gathering, quality assurance of evidence, coordination of audit resource meetings, and other tasks required to successfully complete the audit.
Ensure ASV Scans and Pen-testing are conducted quarterly and annually, respectively with all remediation activities being completed within expected timelines.
Lead security enhancement projects focused on new or changing PCI compliance requirements.
Educate and build awareness of PCI compliance requirements.
Coordinate with Third Party Risk management to ensure PCI compliance needs are being addressed and tracked appropriately with third party vendors.
Coordinate with Privacy / Legal to ensure the overall compliance landscape is well understood and the program captures a complete view of our PCI compliance needs.
Continuously improve the PCI compliance program with new information, procedures, or documentation.
Who You Are
The successful candidate will possess the following qualifications:
Compliance + Risk Mindset
Communication w Executives
Can Interpret Regulations and Compliance Requirements
Cross-functional Team Leadership
Strategic Thinking and Planning (Team)
Brand & Team Ambassador
Solid Risk Management Foundation
Solid Information Security Foundation
Solid Security Control Framework Foundation
Expert PCI-DSS Knowledge
General Data Privacy Foundation
Can Teach/Educate Risk & InfoSec Principles
Can Consult Business on Risk and InfoSec Principles
An expert in PCI requirements and experience building and executing a program development plan.
Experience leading through others and rolling out new programs.
Solid working knowledge of information security concepts and controls.
An understanding of our responsibility as a company to adhere to compliance requirements.
Excellent project management skills, with the ability to work within deadlines, juggle multiple priorities, design project plans, and provide project updates.
Ability to work independently with little direction and/or supervision.
Superior communication skills with the ability to ask questions, escalate roadblocks early, and interact effectively at multiple levels in the organization.
Keen attention to detail with the ability to correct on the fly and work independently.
Analytical aptitude with an emphasis on investigative, methodical critical questioning and logical thinking; a data-driven decision maker.
Strong understanding of mitigation methodologies and regulatory requirements pertaining to information security, privacy and/or data security.
Solid interpersonal and verbal/written communication skills.
Education and Experience:
Bachelor's Degree or equivalent experience and at least 5-8 years of directly related experience.
Must have a solid understanding of SOX, PCI, CPNI, CCPA, FACTA and similar IT Compliance and Privacy regulations.
Experience with compliance audits such as PCI and/or CPNI. Former QSA preferred.
Experience with NIST, ISO and other industry standards.
Expert user of Microsoft/Google Suite and an e-GRC tool.
Professional certification (CISSP, CISA, CSIM, CIA or similar) is highly desired. Candidates who apply will be tested in several areas, including verbal/spelling, math/logic and business problem-solving, and must meet minimum standards to be considered for this position.
Where You Will be Located
Onsite - Englewood, CO
What Action You Need to Take
If you are interested in this role, share your latest resume, or contact us now at firstname.lastname@example.org
If this job is not aligned with your skill set, but you are looking for a new position, please contact us for a discussion on your next job by visiting us our career pagehttps://www.qwinix.io/careers/
Alternatively, please feel free to share this job posting with your network and ask us about our referral program..