PCI Compliance Specialist

Macy's Inc. - Johns Creek, Georgia

• Support governance activities related to the execution of the Macys and Bluemercury PCI Programs.  Perform and lead both routine and focused PCI Governance checks related to a variety of compliance projects.
• Support annual Bluemercury PCI Assessment process - Schedule and execute the annual PCI assessment preparation, document management and validation, onsite interviews.  Manage the Bluemercury PCI Assessment activities including data collection, analysis, prep and execution of the assessment meetings.
• Maintain and validate the PCI Cardholder Data Environment inventory and data flow diagrams through communicate with key stakeholders and reviews of change requests.
• Focus on the development of the Macy’s store related requirements for PCI.
• Consistently demonstrates regular, dependable attendance & punctuality

• Bachelor Degree in Info Security, MIS or other relevant IT area of focus required and 4 years of work experience in Information Technology Security Compliance specific to PCI
• An in-depth understanding of PCI DSS requirements and assessment processes.  
• PCI –ISA certification a plus.
• Demonstrated experience in technical writing
• Strong organizational skills required; Project Management experience preferred
• Familiarity with Information Security risk identification, assessments, evaluation
• Information Security control design and implementation
• Compliance fundamentals and governance frameworks (ISO, SANS, COBIT, NIST) a plus
• PCI for a retail environment a plus  

• Excellent reading and writing skills.
• Ability to seek and obtain relevant information needed by the business for decision making
• Ability to develop good relationships with team members as well as across the business
• Communicates effectively with a variety of audiences.   Ability to provide updates to all levels of management across the organization. 

• Basic math functions such as addition, subtraction, multiplication, division and analytical skills.
• Advanced skills in Word, Excel, and Power Point.

• Ability to interpret and explain regulatory requirements resulting in actionable items by the business
• Ability to stay abreast of industry standards and practices
• Troubleshoot, solve and deliver solutions in a dynamic environment.

• This position involves regular ambulating, sitting, hearing, and talking. May occasionally involve stooping, kneeling, or crouching. May involve close vision, color vision, depth perception, and focus adjustment.  Involves use of hands and fingers for typing on keyboard and using a mouse.  May be a need to move or lift items under 10 pounds.

• Ability to work a flexible schedule based on department and company needs.  Some infrequent travel required.

• Understands what is expected and can articulate individual and team goals. 
• Aggressively pursues new ideas

• Provides guidance and final determination on the evidence to provide during the assessment.
• Negotiates with the QSA vendor on remediation strategies
• SME for all internal teams for PCI Compliance.
• Escalation of results of analysis – Influences management decisions thru analysis and recommendations
• Analyzes each situation and makes sound recommendations for technical and business challenges up to difficult complexity. Analyzes problems and challenges by looking below the surface to understand root cause. Considers how a decision could impact the customer before making a recommendation.
• Ability to handle confidential and sensitive information.

Unable to retrieve job information. This job may not be available anymore. Sorry for the inconvenience.

---

Posted: 30+ days ago

Apply Now