PCI Compliance Lead

Johnson Controls, Inc. Milwaukee , WI 53201

Posted 3 months ago

What you will love about Johnson Controls:

  • We've been dedicated to protecting the environment since our invention of the electric thermostat in 1885, which provided a fundamental shift in the energy efficiency of buildings. Now, all over the world, our products and services empower customers and communities to consume less energy and conserve resources.

  • Global, innovative, industry leader

  • Embraces diversity

  • Growth opportunities abound

  • Fast paced, evolving company, always learning, always adapting

  • Great benefits; including Healthcare related wellness discounts, great 401k match, company funded retirement program, vacation, sick time, floating holidays and national holidays

What you will do

  • This is an ideal time for those skilled in IT risk management and compliance at JCI. Building on the momentum of its investment in its cybersecurity capability, JCI seeks to expand the scope of its IT risk management and compliance.

  • In this role, you will act as a subject matter expert for compliance requirements and the deployment of enterprise and local controls and the evaluation of compensating controls. This position requires strong communication abilities, as it engages with cross-functional business partners, team members, and leadership across the organization.

  • As an influential member of the compliance team, this position addresses systems and processes that impact environments in scope for PCI and reinforces the compliance culture at JCI by demonstrating a strong understanding of current and upcoming trends in cybersecurity compliance, the PCI DSS and complementary audit requirements and controls.

  • The Governance, Risk & Compliance (GRC) Payment Card Industry Data Security Standards (PCI DSS) Compliance Lead enables Johnson Controls' continuous compliance with applicable laws, regulations, and frameworks with specific focus on the Payment Card Industry Data Security Standard.

How you will do it

  • Administer the compliance program within Global Information Security function with particular focus on Payment Card Industry Data Security Standard (PCI DSS)

  • Facilitate and execute enterprise scoping, control assessments, evidence collection, issue remediation, and reporting activities

  • Communicate program compliance issues and control gaps through governance and audit control processes

  • Provide consultative support to cross-functional business partners on the methods, practices and solutions that achieve the requirements defined by applicable compliance frameworks

  • Administer the annual re-certification for PCI compliance across in-scope card processing environments

  • Conduct and document evaluations of compensating controls

  • Administer the JCI common controls framework to ensure relevant internal and external information security requirements are mapped and communicated to the enterprise

  • Maintain compliance related policy, standard and procedure documentation to drive consistent, reliable, and repeatable compliance activities

  • Coordinate relevant, policy, standard, and procedural changes with key IT and business partners

  • Support the development and implementation of PCI security awareness, training, and continuous improvement efforts

What we look for

Required

  • 5+ years' of progressive IT Audit and/or Information Security work experience within a relevant security compliance role and setting, with broad exposure to multiple competing regulatory and industry-based requirements and environments.

  • Bachelor's degree (IT/IS or business preferred)

  • Experience in operationalizing IT compliance activities and programs, and proven presentation and facilitation skills

  • Experience preparing and presenting Attestations of Compliance and providing guidance in implementing controls stated in the PCI -DSS self-assessment questionnaires.

  • Experience working with ISO 27001, NIST 800-53 security frameworks and PCI DSS Standard in complex IT operating environments is required.

  • Exceptional teaming skills incorporating cross-functional teams, peer relationships, informing, and understanding and appreciating differences.

  • Strong project management, prioritization, presentation, and facilitation skills, demonstrated ability to effectively manage multiple tasks and priorities and drive change across a complex organization, through multiple stakeholders

  • Strong consultative skills, with the ability to advise and consult with business and technical professionals.

  • Some international travel may be required.

Preferred

  • CISA (Certified Information Security Auditor), CISM (Certified Information Security Manager), CISSP (Certified Information System Security Professional) or similar industry certification is preferred

Johnson Controls is an equal employment opportunity and affirmative action employer and all qualified

Johnson Controls is a global diversified technology and multi industrial leader serving a wide range of customers in more than 150 countries. Our commitment to sustainability dates back to our roots in 1885, with the invention of the first electric room thermostat. We are committed to helping our customers win everywhere, every day and creating greater value for all of our stakeholders through our strategic focus on buildings.

Johnson Controls is an equal employment opportunity and affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, status as a qualified individual with a disability, or any other characteristic protected by law. For more information, please view EEO is the Law. If you are an individual with a disability and you require an accommodation during the application process, please visit www.johnsoncontrols.com/tomorrowneedsyou.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Lead Enterprise Solutions Governance And Compliance Analyst

Johnson Controls, Inc.

Posted 6 days ago

VIEW JOBS 1/11/2020 12:00:00 AM 2020-04-10T00:00 What you will do This role will support the analysis, development and assessment of key organizational metrics and initiatives for the Finance IT organization. This is done by supporting the overall compliance goals and deliverables for Enterprise Solutions, and aligning with associated application teams to ensure delivery of required compliance deliverables. This includes assisting and supporting necessary audit requests, reporting and remediation activities. Finally, this role will work across the IT organization as a key resource for Enterprise Solutions to enable necessary process and IT improvements. How you will do it * Establish metrics and reporting standards related to the run operational activities for the Enterprise Solutions application landscape and the processes associated with the routine, periodic publishing of these metrics. * Coordinate the maintenance and enhancement of reporting vehicles, including scorecards, dashboards, status reports, milestone plans, etc. * Ensure the timely collection and aggregation of metric data to support routine publication. * Support required monthly, quarterly and annual audit requirements and ensure audit compliance across enterprise applications. * Work closely with application / service owners to assess and report operational performance on a consistent basis. * Align with staff in other departments for the delivery of key organizational initiatives across IT departments. * Facilitate IT integration for M&A transactions across business and IT counterparts. * Ensure the accuracy and appropriateness of CMDB application / service database owners, data and associated reporting. What we look for Required: * Bachelor's of Science degree in Finance, Engineering, Mathematics or equivalent work experience * 8 years of experience with audit, analysis or other project improvement initiatives * Experience in improving processes and methodologies based on key performance (i.e. outcome) indicators and process performance indicators * Working knowledge of information technology systems and capabilities and their impact on business metrics * Excellent verbal and written communication and interpersonal skills. Able to communicate with all levels of management * Strong conceptual thinker, with attentiveness to details. * Sound understanding of IT General Controls (ITGC), overall control policies, audit methodologies and practices. * Ability to collaborate in a multi-business unit environment and provide business functional and IT leadership. Preferred: * Advanced degree or MBA * Previous IT audit experience a plus * Strong analytic and reporting skills with detailed knowledge of how financial statements and operational metrics (in a manufacturing environment) is constructed Johnson Controls International plc. is an equal employment opportunity and affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, genetic information, status as a qualified individual with a disability, or any other characteristic protected by law. For more information, please view EEO is the Law. If you are an individual with a disability and you require an accommodation during the application process, please visit www.johnsoncontrols.com/careers. Johnson Controls, Inc. Milwaukee WI

PCI Compliance Lead

Johnson Controls, Inc.