Risk Manager SOC, PCI DSS/P2PE/PIN in London

Risk Manager

SOC, PCI DSS/P2PE/PIN

Our client is a global provider of an innovative payment platform and fraud solution. Due to expansion, they are seeking a Risk Manager.

• Supporting the Senior Risk Manager with the annual PCI DSS/P2PE/PIN assessments, SOC audits and regular internal reviews
• Gathering and reviewing audit evidence through the course of the year
• Performing process and controls reviews leading to process and controls improvements where required
• Demonstrating the team’s core values: Focus, Collaboration, Awareness and Balance
• Day to day you will: Support the Senior Risk Manager with the annual PCI DSS/P2PE/PIN assessments, SOC audits and regular internal reviews
• Gathering and reviewing audit evidence. The organisation undergoes multiple PCI assessments and SOC audits during the year and has an established programme of gathering evidence from various teams at regular intervals, reviewing, providing feedback and remediating any issues in a timely manner. You will support the Senior Risk Manager with the day to day management of this process.
• Process and controls reviews for improvement. Agreed and established processes and controls require frequent compliance reviews which may identify opportunities for further improvement or efficiencies. You will support such reviews, identifying improvements and ensuring these are adequately implemented.
• Assessment preparation. This involves gathering, sorting and saving evidence on the portal for external assessor’s review and coordinating the various assessment activities at multiple locations. You will support this process from start to successful completion in a timely manner.

• Demonstrate the team’s core values: Focus, Collaboration, Awareness and Balance
• Effective delivery requires collaborating with various teams to gather evidence, avoiding duplication of effort, a sound understanding of IT risks and controls as well as technical knowledge of IT systems, operating systems and applications
• Demonstrating professionalism in approach

KEY SKILLS

• Team player qualities who can work in a collaborative environment
• Effective communication and interpersonal skills
• Strong analytical, report writing and presentation skills
• Keen learner and committed to presenting high quality deliverables within agreed timescales

• IT risks and controls
• Technical knowledge of IT systems; operating systems and applications
• PCI standards and payment industry
• SOC audits

• At least 5 years’ experience in supporting PCI assessments or SOC audits

1 or more of the following:

• Degree in IT or equivalent
• PCI Internal Security Assessor (PCI ISA)
• CISA or CISM