Sr Risk and Compliance Manager

The Senior Risk and Compliance Manager plays a critical role in ensuring ACI’s products and operations meet stringent security and privacy standards, with a strong emphasis on PCI DSS compliance. This role leads the development, implementation, and oversight of the PCI DSS compliance program, while maintaining alignment with other various regulatory and industry frameworks such asGLBA, DORA, ISO 20022, and SWIFT. The manager collaborates across global teams to define and enforce policies, procedures, and controls that support secure and compliant business practices. A key responsibility is to ensure that ACI maintains a robust PCI compliance posture across all applicable systems, processes, and products.

• Lead and manage ACI’s PCI DSS compliance program, ensuring all applicable systems, processes, and products meet the latest PCI requirements.
• Serve as the primary subject matter expert on PCI DSS, providing guidance to business units, product teams, and technology stakeholders.
• Develop and maintain formal procedures and documentation to support PCI compliance, including risk assessments, control mapping, gap analysis, and remediation planning.
• Monitor changes in the PCI DSS framework and other relevant regulations; assess impact and lead implementation of necessary updates.
• Collaborate with internal teams to ensure alignment with PCI and other regulatory requirements, including GLBA, DORA, ISO 20022, and SWIFT.
• Conduct and oversee PCI readiness assessments, internal audits, and support external QSA audits.
• Identify and mitigate risks related to cardholder data security, including encryption, access controls, logging, and monitoring.
• Drive remediation of control gaps and ensure timely resolution of PCI-related findings.
• Provide training and awareness programs to promote a PCI-compliant culture across the organization.
• Partner with legal, risk, and compliance teams to interpret regulatory obligations and translate them into actionable business requirements.
• Communicate risk and compliance status to senior leadership, including metrics, trends, and emerging threats.
• Influence and support a risk-aware culture, emphasizing proactive compliance and continuous improvement.

• Leading PCI DSS compliance efforts across ACI’s business segments.
• Advising on PCI scope reduction strategies and secure architecture design.
• Supporting product and technology teams in embedding PCI controls into development and operational processes.
• Driving cross-functional collaboration to ensure PCI compliance is integrated into business-as-usual activities.
• Staying ahead of evolving PCI requirements and industry best practices.
• Enhancing internal control environments through targeted risk assessments and control testing.

• 10+ years of experience in regulatory compliance and risk management, with deep expertise in PCI DSS.
• Experience working with Qualified Security Assessors (QSAs) and managing PCI audits.
• Strong understanding of cardholder data environments (CDE) and PCI scope management.
• Proven ability to translate PCI requirements into technical and operational controls.
• Experience in the payments, fintech, or financial services industry preferred.
• Bachelor’s degree in business, finance, cybersecurity, or related field.
• Strong analytical, communication, and project management skills.
• Ability to manage multiple complex initiatives in a fast-paced environment.
• Collaborative mindset with a track record of partnering across functions to achieve compliance goals.

• Hybrid of Remote

Benefits: In return for your expertise, we offer growth, opportunity, and a competitive compensation and benefits package in a casual work environment.

Are you ready to help us transform the world of electronic payments? To learn more about ACI Worldwide, visit our website at www.aciworldwide.com Job ID (Requisition #14743)

ACI Worldwide is an AA/EEO employer in the United States, which includes providing equal opportunity for protected veterans and individuals with disabilities, and an EEO employer globally

#LI-LL1

#LI-Norcross