Senior Manager, Participant Security ISO Lead

About The Position

Requirements

• High School Diploma, GED or equivalent certification
• At least 6 years of experience working in cybersecurity or information technology
• At least 5 years of experience providing guidance and oversight of cyber security concepts
• At least 5 years of experience performing cyber security risk assessments or cyber security architecture reviews
• At least 4 years of experience with cloud security
• You have a desire to work in a very fast moving, forward leaning, and modern computing environment
• You have a strong desire to continually learn about new technologies
• You possess strong conceptual thinking and communication skills
• You are able to work well under minimal supervision
• You are a demonstrated team-oriented professional with interpersonal skills and the ability to interface effectively with a broad range of people and roles, including upper management, IT leaders, and external third parties
• You maintain calmness and clarity of thought under pressure and ability to maintain confidentiality
• You demonstrate strong ability to analyze information and data
• You demonstrate strong subject matter expertise and sound judgment when analyzing participant security
• You operate in a collaborative manner to effectively assess risk while maintaining business relationships
• You develop and communicate quality recommendations to key stakeholders
• You communicate technical issues to non-technical people
• You demonstrate collaborative partnership skills for working with various points of contacts
• You demonstrate capacity to think broadly but go deep into subject matter when needed
• You have a deep understanding of strategic business objectives and the ability to drive results toward those objectives

Nice To Haves

• Bachelor’s Degree
• 7+ years of experience in securing a public cloud environment (AWS, GCP, Azure)
• 6+ years of cyber security advisory and technology consulting experience
• 4+ years of Participant onboarding experience
• 4+ years of experience in PCI DSS, NIST, ISO, Physical Security, or IT Operations Management
• 4+ years of experience at a Financial Institution
• Experience in a regulated environment
• Experience with Payment Network Operating Regulations
• Payment Card Industry Professional (PCIP) or Qualified Security Assessor(QSA) certification
• CISSP, CISA, or CRISC certification

Responsibilities

• Act as a central Information Security point of contact for Participant Security in the Global Payment Network line of business
• Responsible for leading security due diligence for secure onboarding of Payment Participants
• Establish effective working relationships with key stakeholders
• Proactively identify information security risk and partner with key stakeholders to reduce or eliminate risk
• Coordinate and execute proactive consulting to both internal and external teams as it relates to Network Participants information security risk
• Support business related projects and initiatives and influence B2B partners and customers to make solid business decisions
• Provide regular updates to executive leadership within Cyber and other stakeholders on the overall Participant Security Management health and risk environment
• Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes
• Escalate and manage cyber security risk
• Provide ad hoc support on special departmental goals, objectives, and initiatives