Description:
To perform this job successfully, an employee must be able to perform each essential function satisfactorily, with or without reasonable accommodation. To request a reasonable accommodation, notify Human Resources or the manager who oversees the position.
- Lead the PCI-DSS compliance program, designing, implementing, and evaluating processes to validate and report on readiness.
- Oversee the Third-Party Risk Management program to identify, report, and remediate security and data protection risks impacting technology assets and data throughout the supply chain.
- Partner with various teams to lead assessments, report on remediation, and ensure organizational compliance with audit, regulatory, and compliance obligations.
- Collaborate with cross-functional teams to ensure cohesive security strategies and implementations.
- Identify, evaluate, and report on security and data protection risks, developing and implementing strategies to mitigate identified risks.
- Ability to assist and support implementation and oversight of risk & compliance reporting and dashboards such as through Microsoft Security Compliance.
- Lead targeted initiatives, actively collaborating with IT, business stakeholders, and external vendors to prioritize security risks, recommend mitigations or remediations, and implement security controls.