Risk & Compliance - Sr Professional II

Calling all innovators – find your future at Fiserv.

We’re Fiserv, a global leader in Fintech and payments, and we move money and information in a way that moves the world. We connect financial institutions, corporations, merchants, and consumers to one another millions of times a day – quickly, reliably, and securely. Any time you swipe your credit card, pay through a mobile app, or withdraw money from the bank, we’re involved. If you want to make an impact on a global scale, come make a difference at Fiserv.

Job Title

What will you do:

ERC is responsible for managing risk across Fiserv by providing governance and oversight to maintain a robust control environment, develop innovative risk management solutions and identify, assess, and mitigate/control risks. As a result, the ERC team is able to help Fiserv LOBs protect their business, win new business, continue to cement and advance relationships, and facilitate client oversight.

What will you need to know:    

The Third Party Audit (TPA) team is charged with monitoring adherence to internal Fiserv controls, frameworks, requirements, regulations, and standards in collaboration with cross functional teams and other relevant functions required to assure success in each engagement.

The TPA team:

• May facilitate and/or participate in the support of periodic internal and external audit / assessments aimed at identifying operational / security / IT risks and concerns.
• Facilitates and participates in the support of corporate, external and client audit engagements and communicates these findings to executive management in a timely manner.
• Assists in assessing how the unit addresses (or will address) challenges/ changes with internal and external standards, controls, and frameworks, while promoting consistency of approach and sharing of best practices in an effort to promulgate enterprise solutions to common issues.

Job Responsibilities:

• Regular interactions with the assessors to discuss audit results and progress.
• Participates in meetings with process and control owners to discuss test and/or audit scoping, testing progress, and results.
• Oversees as requested audit activities relating to PCI-DSS, PCI PIN, PCI Card Production, PA-DSS, and SOC 1 & 2 audits ensuring work and deliverables in accordance with agreed upon timeframes and departmental procedures, standards, and protocols.
• Leverages key tools and processes intended to manage various large audits in an efficient repeatable fashion, specifically, using consolidated knowledge repositories and workflow-based tools to support evidence collection, audit execution, and finding remediation.
• Communicates appropriately with partners at all levels, including developing and presenting recommendations on processes and controls for the business units.
• Provides periodic program updates on the status of the process for each assigned audit, exam, and assessment. 
• Escalates matters requiring senior management attention, on a timely basis.
• Provides support in the execution of engagements.
• Assists and supports special investigations and other initiatives or special projects as requested.

Candidate Qualifications:

Bachelor's degree preferred, with emphasis in Accounting, Finance, Management, Information Technology, or general business or equivalent field. 2 – 4 years of risk management, audit, or industry experience (internal audit, internal controls, risk management, compliance management, regulatory agency, law firm, accounting, technology, or operations). Aptitude for risk management and controls. Ability to confront conflict and difficult issues in a professional, assertive, and proactive manner. Ability to work effectively within a fast paced complex organization and interact with all levels of management. Self-motivated, adaptable, strong work ethic, and demonstrated team player. Analytical, critical thinking, project management, interpersonal, and communication (written, oral, and listening) skills. Financial services experience, including working in highly regulated global environments. General understanding of global laws, regulations and standards governing technology and financial services industries. Technology acumen and aptitude. Strong PC skills (Microsoft Excel, Word, PowerPoint and SharePoint)

Preferred Qualifications:

Experience in performing or supporting third party oversight engagements such as:

• Regulatory examinations
• PCI-DSS assessments
• SOC 1 Type II audits
• SOC 2 Type II audits
• Internal Information Technology Audits
   

Possess an understanding of Information Technology and Information Security concepts. General understanding of laws, regulations (GLBA) and standards (PCI DSS, PA-DSS) governing high tech (NIST). Knowledge of COBIT, ISO 27001, ITIL

Thank you for considering employment with Fiserv.  Please:

• Apply using your legal name
• Complete the step-by-step profile and attach your resume (either is acceptable, both are preferable).

What you should know about us:

Fiserv is a global leader in payments and financial technology with more than 40,000 associates proudly serving clients in more than 100 countries. As one of Fortune® magazine's "World's Most Admired Companies™" 9 of the last 10 years, one of Fast Company’s Most Innovative Companies, and a top scorer on Bloomberg’s Gender-Equality Index, we are committed to innovation and excellence. 

Our commitment to Diversity and Inclusion:

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Warning about fake job posts:

Please be aware of fraudulent job postings that are not affiliated with Fiserv. Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information.

Any communications from a Fiserv representative will come from a legitimate business email address. We will not hire through text message, social media, or email alone, and any interviews will be conducted in person or through a secure video call. We won’t ask you for sensitive information nor will we ask you to pay anything during the hiring process. We also won’t send you a check to cash on Fiserv’s behalf.

If you see suspicious activity or believe that you have been the victim of a job posting scam, you should report it to your local law enforcement.