TITLE: IT Security Manager – PCI Subject Matter Expert
LOCATION: New York, USA
RELOCATION/VISA: Need to have a relevant visa
SALARY: On request
COMPANY: On request
KEY REQUIREMENTS:
PCI Experience Required:
Direct involvement in PCI DSS auditing, control implementation & testing, and evidence documentation
Create Remediation Planning
Direct knowledge of PCI DSS, PA-DSS, ISO, and NIST standards and demonstrate ability to complete required work papers with detail
Plan and execute PCI DSS Gap Assessments and Audits
Perform PCI PA-DSS consulting and advisory services, as an internal resource, and SME.
Perform internal and external network and application penetration testing using a variety of methods, tools, and techniques
Perform wireless penetration testing using both collaborative and covert methods
Perform hands-on review of network environments, including network device and server configurations, from both an advisory perspective as well as in support of clients PCI Audit and ISO governance practices
Create Corporate PCI Services Framework including checklists, templates, findings, all testing methods and techniques
Create a detailed PCI assessment report and report to executive IT Management on Compliance, including presentation of findings following the conclusion of testing
IT Security Experience Desired:
Industry expected Certifications:
CISSP, CISM, CISA, CIA
Security Experience with IT infrastructure both hardware and software
Particular Skillset within the identification and mitigation of security weaknesses and the ability to perform network packet capture analysis;
Knowledge of leading security practices, procedures and policies pertaining to data access and information systems.
A Demonstrated ability to analyze technical risks and provide solution alternatives to executive management
JOB DESCRIPTION:
IT Security Expert
PCI Subject Matter Expert
A proven, documented knowledge of DataCenter Security, and Network Security (i.e. Firewalls, Content filters, load balancing gear, smart switches, domain controllers, Windows and Unix servers, storage servers.
Excellent experience managing a web based IT Infrastructure – hands-on is helpful.
Core experience in managing and driving PCI compliance.
Managing at least 2-3 Enterprise wide PCI Audits, testing and Compliance control Implementations
Experience managing a 100+ server Data Center, which includes database clusters, web farms and high demand/high availability web servers.
Ability to manage self and a small team of Security Engineers, and Ethical Hackers
Excellent communication abilities with BOTH technical staff and IT/business management
FURTHER INFORMATION:
Excellent Salary and benefits package appropriate for a management role of this importance.
Click here to apply for this position.
