PCI Remediation Analyst

"Skills and Responsibilities:

• 3-5 years in a Security Compliance / Risk Function or a similar role
• Previous experience in PCI Assessments and / or IT Audits
• Previous experience in conducting IT audits considered an asset.
• Previous experience in managing projects
• Working knowledge of security concepts
• Skilled in risk identification and management
• Excellent analytical skills
• Creative approach to problem-solving
• Ability to prioritize multiple tasks.
• Excellent audit report writing and oral communication skills with the ability to communicate complex messages in a compelling manner.
• Ability to navigate through complex systems, ambiguity, and to manage multiple assignments.
• Proven capability to manage deadlines and deliver quality results.
• Strong interpersonal skills, including interviewing, listening, presentation and written communication.
• Ability to maintain composure in stressful situations.
• Excellent relationship and team-building skills
• Strong relationship builder who prioritizes collaboration and partnership
• A proven team player & ability to interact and work with people with a variety of backgrounds and at different levels within the organization.
• Effective negotiating, influencing and mediating skills.
• Listens to feedback and shows eagerness to grow.
• Hungry to do more and eager to go above and beyond the norm.
• Passionate for challenging the status quo and developing out-of-the-box ideas.
• Comfortable with technology and able to engage in discussions with both technology and business teams to understand and explain risks in a way appropriate to his/her audience.

Roles and Responsibilities:

• Provide audit support by coordinating and facilitating audit activities, such as scheduling, documentation, testing, remediation and evidence gathering.
• Provide PCI support by ensuring that the organization adheres to the PCI requirements and best practices, such as data security, network security, access control, incident response, and vulnerability management.
• Provide readiness for PCI 4.0 by helping the organization implement the new PCI requirements and controls.
• Communicate and collaborate with stakeholders, to ensure that PCI objectives and expectations are met.
• Monitor and report on the status and progress of the audit and PCI activities, as well as any risks or issues that may arise.
• Provide training and guidance to the staff and management on the audit and PCI processes and procedures.
• Participate and account for one or more components of the audit cycle including scheduling meetings, planning, fieldwork, and reporting.
• Able to discuss and resolve IT audit related issues, findings, and recommendations as applicable with the impacted business group.
• Assist in strengthening controls and improving IT and business performance in collaboration with stakeholders.
• Maintain a high level of standards, integrity, and confidentiality, exercising sound judgment while carrying out the responsibilities of the position. "