PCI DSS Compliance Lead

CBTS serves enterprise and midmarket clients in all industries across the United States and Canada. CBTS combines deep technical expertise with a full suite of flexible technology solutions--including Application Modernization, Managed Hybrid Cloud, Cybersecurity, Unified Communications, and Infrastructure solutions. From developing and deploying modern applications and the secure, scalable platforms on which they run, to managing, monitoring, and optimizing their operations, CBTS delivers comprehensive technology solutions for its clients' transformative business initiatives. For more information, please visit www.cbts.com.

OnX is a leading technology solution provider that serves businesses, healthcare organizations, and government agencies across Canada. OnX combines deep technical expertise with a full suite of flexible technology solutions—including Generative AI, Application Modernization, Managed Hybrid Cloud, Cybersecurity, Unified Communications, and Infrastructure solutions. From developing and deploying modern applications and the secure, scalable platforms on which they run, to managing, monitoring, and optimizing their operations, OnX delivers comprehensive technology solutions for its clients’ transformative business initiatives. For more information, please visit www.onx.com.

Role Summary/Purpose:

Seeking a highly skilled and experienced PCI Compliance professional. The ideal candidate will have a strong background in PCI compliance and technical expertise in securing payment card data within a large enterprise environment.

Responsibilities

• Collaborate with the PCI Compliance Team to ensure adherence to PCI DSS requirements.
• Conduct comprehensive PCI DSS assessments, including gap analyses, risk assessments, and remediation planning.
• Develop and implement PCI compliance policies, procedures, and controls.
• Provide technical expertise in securing payment card data across various systems and networks.
• Assist in the preparation and submission of PCI Requirement Artifacts during Exam for PCI Qualified Security Assessor (QSA).
• Monitor and analyze security events and incidents related to PCI data, and coordinate response and remediation plans.
• Stay updated on the latest PCI DSS requirements, industry best practices, and emerging threats.
• Work closely with internal and external auditors during PCI compliance audits.
• Provide training and guidance to staff on PCI compliance requirements and best practices.
• Document and maintain records of PCI compliance activities and findings.

Qualifications

• Minimum of 2 years of experience in PCI compliance and technical security roles.
• 2 year of experience developing and implementing PCI policies, standards, and procedures.
• 2 years of experience with PCI DSS requirements and best practices.
• 2 years of experience supporting or leading, a Level 1 or Level 2 organization's PCI-DSS compliance effort, working with ISA or QSA
• 2 years of experience with network security, encryption, and secure payment technologies.