Sr. Manager, PCI Advisory Services
Sr. Manager, PCI Advisory Services
Capital One Financial seeks a Sr. Manager to be a subject matter expert within the Cybersecurity Assurance Payment Card Industry (PCI) Center of Excellence (COE), providing consulting and assessment advisory services to Lines of Business and the Technology division on the Payment Card Industry Data Security Standards (DSS) for new processes, applications and products.
ESSENTIAL RESPONSIBILITIES
- Develop lasting partnerships with Line of Business and Technology teams, to include collaborating on security communications, assessments, analysis and risk-based views of controls maturity
- Serve as a PCI-DSS expert within the Cybersecurity Assurance PCI COE, providing specialist knowledge and actionable PCI DSS guidance to the Lines of Business and Technologists as it relates to current and future processes, applications, documentation and products as early as possible into project life-cycles
- Perform detailed assessments of company processes, applications, documentation and products for alignment with the PCI DSS, identify gaps, develop recommendations to close gaps in alignment with organization and project goals, and communicate detailed and summary results professionally
- Stay current with architecture and technology developments and competitive trends, and use this knowledge to identify and propose creative security and compliance strategies to Lines of Business and Technologists
- Promote awareness and training of PCI principles, requirements and security best practices
BASIC QUALIFICATIONS
- Bachelor’s Degree or military experience
- QSA, ISA or PCIP certification
- At least 3 years of experience in evaluating enterprise PCI DSS compliance
- At least 3 years of experience with technical IT controls
- At least 3 years in an IT security/compliance consulting role
- At least 5 years of experience communicating with technologists and all levels of management
- At least 3 years of project management experience
- At least 3 years’ experience working with regulators or internal auditors and with regulatory requirements
PREFERRED QUALIFICATIONS
- CISA certification
- CISSP certification
- CRISC certification
- 3 years’ technical integration experience
- 1-year project management experience
- 1-year experience working in the financial services industry
1 year of experience utilizing GRC so
At this time, Capital One will not sponsor a new applicant for employment authorization for this position