IT Compliance - PCI DSS Specialist

Aspire Lifestyles is a leading global provider of Concierge and Loyalty services, catering to clients in banking, payments, insurance, luxury retail, automobile, and luxury property sectors. As a pioneer in the Concierge industry, we focus on delivering exceptional services, including employee concierge, wellness programs, and digital offerings. Our commitment to innovation, excellence, and social responsibility ensures we create memorable experiences and provide outstanding service for our clients. For more information, visit www.aspirelifestyles.com.

IT Compliance Specialist coordinates with technology subject matter experts in the organization with focus on the audit success throughout the year. The role also provides compliance advice on PCI DSS requirements and supports client facing teams by representing the information security posture in client compliance discussions. This role works in direction of Information Security and Compliance Manager and is responsible for smooth audit preparation, certifications and attestations.

• Execute the plan and coordinate internal PCI DSS audit plan and preparation for external audit with subject matter experts in networks, systems, end user computing, applications, human resources, facilities, cyber security, vendors, and auditors.
• Execute the plan and coordinate internal ISO 27001 internal audit plan and preparation for external audits with subject matter experts in networks, systems, end user computing, applications, human resources, facilities, cyber security, vendors, and auditors.
• Collect SOC 2 Type II artifacts from various stakeholders and submit to AICPA auditor for evaluation after internal review.
• Maintain smooth facilitation across all teams, vendors, and auditors and achieve required certifications and attestations.
• Coordinate and maintain all necessary evidence including vulnerability tracking, remediations, patch management, and penetration tests.
• Support the client compliance team in overall management of all aspects of client assurance (questionnaire, agreements and audits).
• Quality checks the deliverables of Network, Systems and Cybersecurity SME (dotted line to Information Security and Compliance Manager) from an audit evidence perspective.
• Any other delegated tasks reasonably considered to be within the scope of the post and as agreed with manager.
• Minimum Diploma or Degree in technology-related field required.
• Minimum 2 to 5 years of relevant work experience in PCI DSS compliance and audits.
• Other qualifications such as GRC/Cyber Security related certifications will be an added advantage.
• Thorough understanding of PCI DSS standard and requirements.
• Good exposure and knowledge of IT security technologies such as firewalls, active directory, antivirus, Nessus, Qualys, etc.
• Excellent business communication skills.
• Ability to work in multicultural and multi-geographical environment.
• Ability to travel and support onsite audits.

• Highly engaged and empowered work culture
• Continuous learning & development with excellent MNC and global exposure
• Attractive Remuneration Package: Group Medical and Insurance Benefits, Lifestyles Flexi Benefits, Performance Bonus, etc.
• Festive celebration and birthday token
• Office location is accessible via public transport