Senior PCI compliance Officer

Posted 25 October 2024
LocationRemote
Job type Permanent
Discipline Consulting
ReferenceJ13384

Job description

Senior PCI Compliance Officer UK – Remote We’re looking for people to join the Access family, who share our passion for believing in better, and who will help us continue to grow.   Love Work. Love Life. Be You. - is central to our success and how we give our customers the freedom to do more of what's important to them.     What does Access offer you?  We offer a flexible, hybrid working environment where you can balance work and life while maintaining a strong office team-based culture. We deliver on what we say, taking the development of our people seriously. We’ll work with you to progress your success plan and provide opportunities to accelerate your career.  On top of a competitive salary, our standard 25 days holiday (which goes up the longer you’re with us), and a matched pension scheme, you’ll also be able to choose from a range of benefits to suit you. We’re an organisation that likes to give back, so you’ll also have one charity day allocated to support a cause that matters to you.     About you:  You are an individual who has a passion for problem solving.  At Access we are committed to the highest standards of control, governance, and independent oversight. We are seeking an experienced Information Security professional with deep knowledge of PCI Security Standards to join the Divisional Compliance team at Access PaySuite. In this role, you will support the Chief Risk & Compliance Officer in driving PCI compliance within the Payments Division, ensuring alignment with PCI DSS v4.x, PCI 3DS2, and PCI P2PE standards. You will be responsible for overseeing PCI best practices, providing risk analysis, and implementing policies to maintain a robust controls framework across the organization. If you have a strong background in PCI accreditation. We are seeking an experienced professional information security practitioner with excellent knowledge of PCI accreditation. You will have managerial experience, in this role you will have the direct support of a PCI Compliance Officer. Day-to-day, you will:  • Work closely with Payments Cloud Engineering, Payments Product & Engineering and the Access Group Information Security teams and will be responsible for identifying , evaluating and reporting on the state of compliance to the PCI Security Standards. This includes leading PCI compliance efforts, including external audits (PCI DSS v4.x, PCI 3DS2, PCI P2PE) and the annual recertification process. • Oversee vulnerability management, ensuring ASV scans, regular reviews, and PCI-related documentation are up to date. • Support the Chief Risk & Compliance Officer to provide updated reports to Divisional Management and Board , escalating any key or high- risk security issues. • Oversight and management of PCI Compliance Officer to ensure the management and execution of key operational PCI documentation, including the RACI, operating model, CDE (Cardholder Data Environment) scope and compliance records. • Facilitate PCI training, mentor team members, and lead PCI governance forums to ensure compliance best practices. • Work closely with the technical leads on design and control implementation for infrastructure and software. Guide the technical teams and stakeholders to implement required controls to meet compliance. Track project progress through implementation , validation and remediation. Your skills and experiences might also include:   • A previous accreditation or hands-on experience in a role directly relevant to PCI – specifically, either experience working as a QSA or ISA. • A broad information security background, with familiarity of on prem and cloud solutions, as well as strong risk management experience and knowledge • Excellent communication and stakeholder management skills, working with both IT and business functions , with the ability to educate and challenge on controls. • Demonstrate a proficiency in managing and implementing PCI DSS compliance frameworks • Strong attention to detail, analytical skills, and ability to thrive in fast-paced, ambiguous environments. • Able to oversee and manage multi projects, working autonomously and is comfortable with change What are we all about?  The Access Group is one of the largest UK-headquartered providers of business management software to small and mid-sized organisations in the UK, Ireland, USA and Asia Pacific. It helps more than 100,000 customers across commercial and non-profit sectors become more productive and efficient. Our products and solutions go beyond providing technology, we connect the right people with the right data, at the right time, through Access Workspace.   At Access, we are committed to creating a welcoming and inclusive environment where everyone can thrive. If you're excited about this role, (even if your previous experience doesn't align perfectly), you might just be the perfect fit for us! We wholeheartedly believe in equality for all and the transformative power of diversity. Why not join our vibrant team where you can love what you do, love how you live, and most importantly, be authentically you? Let's make a difference together. Love Work. Love Life. Be You.