Key Responsibilities:
- Security Policy Development:
- Develop and implement security standards, policies, and procedures.
- Risk and Threat Management:
- Identify and mitigate risks to information systems.
- Investigate and resolve security incidents.
- Compliance and Auditing:
- Ensure compliance with PCI DSS and PCI P2PE standards.
- Coordinate audits and prepare for recertifications.
- Vulnerability and Penetration Testing:
- Conduct regular vulnerability assessments and implement corrective actions.
- Data Protection:
- Establish and maintain data classification and protection measures.
- Security Awareness:
- Lead security awareness programs to educate employees.
- Consultation and Reporting:
- Provide internal security consultation and report on security risks and performance.
Qualifications and Experience:
Essential:
- IT-related Diploma/Degree (3 years) in Information Technology, Computer Science, or a related field.
- Systems Security Certified Practitioner (SSCP).
- Minimum of 3 years post-qualification experience.
Advantageous:
- Certified Information Systems Security Professional (CISSP).
- Certified Information Security Manager (CISM).
Expertise Required:
- Information Security & Risk Management: Developing and implementing security policies and mitigating risks.
- PCI DSS & PCI P2PE Compliance: Managing compliance and audit processes.
- Incident Response & Vulnerability Management: Handling security incidents and vulnerability assessments.
- Audit Coordination: Overseeing internal and external audits.
- Data Protection: Securing sensitive information.
Why Join?
This role offers an opportunity to work in a hybrid model while contributing to a highly secure and innovative payment processing environment.
