Senior Compliance Specialist Jobs

Information Security PCI Compliance Lead- 2023-75342

Location: ENGLEWOOD (CORP) (MERIDIAN A) Englewood,Colorado80112

:

DISH Network has an exciting opportunity for an InfoSec PCI Compliance Lead at our Headquarters location in Englewood, Colorado. The InfoSec PCI Compliance Lead is a key part of our Information Security and Governance, Risk, and Compliance (GRC) teams. This position is full-time, permanent, and salaried with standard work hours, has no supervisory duties, and requires very little travel. We are looking for someone who can start immediately.

The InfoSec PCI Compliance Lead will report to the Information Security Compliance Manager and function as a central Payment Card Information subject matter expert supporting enterprise teams looking to involve DISH PCI data in business solutions and processes. They will lead the company through the design and build out of a program that focuses on the protection, use, and control monitoring of PCI data, including any necessary certifications or audits.

Job Duties and Responsibilities

Primary responsibilities of the Information Security PCI Compliance Program Manager include the following:

• Design, lead and execute a Compliance program focused on PCI data handling across the enterprise.
• Lead security enhancement projects focused on new or changing PCI compliance requirements.
• Educate and build awareness of PCI compliance requirements.
• Coach and mentor junior staff.
• Track, document and address PCI compliance gaps to ensure timely closure.
• Ensure ASV Scans and Pentesting are conducted quarterly and annually, respectively with all remediation activities being completed within expected timelines.
• Coordinate with Third Party Risk management to ensure PCI compliance needs are being addressed and tracked appropriately with third party vendors.
• Draft policies/procedures that govern the security of DISH PCI data across the enterprise with a specific focus on compliance requirements.
• Partner with security teams to identify and analyze security requirements to align with PCI compliance standards.
• Continuously improve the PCI compliance program with new information, procedures, or documentation.
• Manage the annual PCI audit including evidence gathering, quality assurance of evidence, coordination of audit resource meetings, and other tasks required to successfully complete the audit.
• Coordinate with Privacy / Legal to ensure the overall compliance landscape is well understood and the program captures a complete view of our PCI compliance needs.
• Other responsibilities as assigned.

The successful candidate will possess the following qualifications:

Successful candidate must be willing to relocate & work onsite.

Competencies:

• Process Mapping Development
• Project Management
• Thought Leadership
• Multitasking
• Compliance + Risk Mindset
• Process Documentation Management
• Team Mentorship
• Strategic Thinking and Planning (Team)
• Strong Adaptability
• Can Teach/Educate Risk & InfoSec Principles
• General Data Privacy Foundation
• Can Consult Business on Risk and InfoSec Principles
• Brand & Team Ambassador
• Presentation Skills
• Solid Risk Management Foundation
• Can Interpret Regulations and Compliance Requirements
• Solid Information Security Foundation
• Solid Security Control Framework Foundation
• Customer First Mentality
• Cross-functional Team Leadership
• Expert PCI-DSS Knowledge
• Communication w Executives
• Self-led Learner

Personality:

• Must have the ability to work with a diverse audience, under tight deadlines, and negotiate successful outcomes to challenging problems.
• Must have good meeting management and communication skills to keep conversations focused and productive.
• Requires a well-organized, cheerful and persuasive individual, who can manage multiple priorities at once.
• Must be self-driven; able to manage schedules, meet deadlines, coordinate with others, and perform tasks with minimal supervision.

Skills, Experience snd Requirements

Education and Experience:

• Experience with compliance audits such as PCI and/or CPNI. Former QSA preferred.
• Expert user of Microsoft/Google Suite and an eGRC tool.
• Must have a solid understanding of SOX, PCI, CPNI, CCPA, FACTA and similar IT Compliance and Privacy regulations.
• Experience with NIST, ISO and other industry standards.
• Bachelor's Degree or equivalent experience and 4-6 years of directly related experience.

Other Qualifications:

• Professional certification (CISSP, CISA, CSIM, CIA or similar) is highly desired.

Benefits: We also offer versatile health perks, including flexible spending accounts, HSA, a 401(k) Plan with company match, ESPP, career opportunities, and a flexible time away plan; all benefits can be viewed here:DISH Benefits.

The base pay range shown is a guideline. Individual totalcompensationwill vary based on factors such as qualifications, skill level, and competencies;compensationis based on the role's location and is subject to change based on work location.Candidates need to successfully complete a pre-employment screen, which may include a drug test and DMV check.

Regards!!

Prince Sharma

Senior Technical Recruiter

[email protected]

562-306-1976