Consultant - PCI DSS in Little Rock, AR at Windstream

Date Posted: 2/12/2018

Job Snapshot

Job Description

Job ID:17004461

Position Summary:


The Windstream Third Party Assurance & Compliance (TPAC) team is a High Performing group that provides Assurance & Compliance services and support to the business leaders across the organization. Our TPAC Team works to address areas to implement and monitor compliance related to various standards, as well as continuous improvement, while providing independent and objective assurance and advisory services to help affect change and improve the business. We are offering an opportunity to be a part of a newly formed Payment Card Industry Data Security Standard (PCI DSS) Compliance Team within the Windstream TPAC organization. Our team is focused on IT/Technology PCI DS Compliance Architecture, Audits and Operational reviews across Windstream’s portfolio; with the ability to identify areas for improvement, develop recommendations and become part of the solutions that will help improve the business.  The Compliance Analyst is responsible for working with business and technical team members and third-party auditors to ensure Windstream’s adherence to the PCI DSS compliance standards. 


Responsibilities:


  • Assist with compliance assessments for defined business applications or technology installations in defined areas, and works with senior team members to align requirements and recommendations for business leaders in achieving and maintaining PCI DSS compliance
  • Collects, collates and examines records as part of PCI DSS testing strategies for evidence of PCI compliance with IT Operational Standards
  • Evaluates and reviews evidence collated and drafts part, or all, of formal reports commenting on the conformance found to exist in the reviewed part of an information systems environment
  • Works with third-Party auditors to facilitate PCI DSS assessments
  • Issues formal reports to management on the extent of compliance of systems in alignment with the PCI DSS
  • Identifies and communicates changes to PCI DSS requirements and in-scope systems on an on-going basis, ensuring that changes and new requirements are translated into new PCI DSS compliant operating procedures
  • Creates product and service documentation detail to support ongoing PCI DSS efforts for attestation
  • Maintains list of outstanding audit actions and works with the remediation team to remediation completion


Job Requirements

  • Bachelor’s degree in Computer Science degree or related field or equivalent combination of industry related professional experience and education
  • 2+ years of experience with PCI DSS audit/compliance initiatives, teams, and programs
  • 2+ years of experience working with highly technical and business teams
  • Ability to manage multiple tasks and responsibilities, work alone or in small teams, achieve established goals and objectives, and communicate progress in a timely and meaningful manner.
  • Strong written, verbal and analytical skills
  • Proficient with Microsoft Word, Excel, and Power Point
  • CISSP, CISA, QSA, ISA, PCIP certifications highly desirable

Minimum Requirements: 


College degree and 5-7 years professional level experience with 2-3 years supervisory experience; or 9+ years professional level related experience with 2-3 years supervisory experience; or an equivalent combination of education and professional level related experience required. 


IND123

RF-LI