Information Security Compliance Manager

Why Entersekt

Founded over 16 years ago, with more recent investments from Accel-KKR, Entersekt is a leader in digital banking fraud prevention and payment security, including mobile authentication, mobile app security, and 3-D Secure authentication for issuers, acquirers and payment networks. We offer highly scalable products with a track record of success across multiple continents.

Entersekt enables secure digital transactions for leading financial institutions globally. We exist to create a world where everyone can transact digitally without fear or compromise. Currently, we protect the digital transactions of over 210 million active users on our platform and hold 120 active patents that recognize innovation in digital security, payments, and user experience. Entersekt offers customers secure authentication and digital payments experiences that remove unnecessary friction. Entersekt has a diverse product portfolio and aggressive roadmap that positions the company well to sustain competitive advantage as it expands globally with emphasis on North America and European markets.

The Ideal Candidate

You have exceptional communication and organizational skills. As someone who will deal with many resources, the communication is key. You are able to find a needle in haystack, and also know when to find a new method to find the needle. You utilise your analytical and logical thinking. You will provide expertise to the organization as a whole as it continues to grow and evolve.

Below are further candidate attributes:

• Pro-active thinker, and action taker
• Enthusiastic about the role
• Technically competent
• Detail orientated
• Planning, organising, and project management skills
• Determination to succeed
• Analytical and Logical mindset

The Role

The Information Security Compliance Manager role will entail the below and is not limited to:

• Compliance Management
• Commercial RFP’s
• Business-As-Usual
• Risk Administration
• Research and Development
• Gap analysis
• End user training
• Compliance FAQ
• Guidance and advisory

Responsibilities

• Planning and coordinating annual PCI DSS and PCI 3DS onsite audits at European Data Centres
• Monitoring external vulnerability scans on production systems using third-party tools. 
• Monitoring card schema changes of hosting and other relevant requirements and informing stakeholders of necessary changes.
• Compliance Management on PCI DSS, 3DS, SOC2, ISO27001, and Data Privacy legislation
• Primary Management for Compliance for European Data Centres 
• Secondary Management for Compliance Enterprise and AWS SaaS
• IT Risk administration, collaboration, and register management
• ‘R&D’ for tools which could assist with team efficiency 
• Compliance, security, and risk gap analysis across business and IT function
• KnowBe4 phishing simulations and content creation for security training
• Compliance, security, and risk advisory for product teams
• Policy and Procedure development and maintenance
• Security mailbox monitoring, and assistance if required to escalate
• BAU Management for all Compliance
• On-premise European Compliance, Security, Risk, Infrastructure & Network, Product FAQ 
• Compliance related RFP’s, TPRM’s, DPQ’s, questionnaires

Skills and Experience

Successful candidates for this role will generally possess the following qualifications and skills:

• 5 years’ experience in at least 2 of the below:
  • ITIL/Cobit
  • ISO Lead Auditor/Implementer
  • CISA/CISSP

• 5 years’ experience in all of the below:

  • Technology Project Management
  • Microsoft365
  • Fluent in Sharepoint, Confluence, and JIRA
  • AWS Fundamentals
  • Hosted on-premise compliance management
  • Technical understanding of AWS and Unix environments
  • Data Privacy regulation knowledge such as GDPR, PoPIA, DORA, CCPA
  • Detailed understanding of PCI DSS
  • Frameworks knowledge of OWASP, NIST 800-82, SANS Top20

Personality Attributes

• Pro-actively able to manage their time, initiate requests, and build relationships with stakeholders
• Trustworthy and ethical with sensitive information
• Time management flexibility to perform other functions that may be required

We place a lot of value on how we treat prospective employees and appreciate the time and effort that goes into job hunting. That is why we aim to keep the hiring process as quick and seamless as possible while ensuring the best possible fit for both you and the company.

Working at Entersekt is truly a dream. You get exposed to cutting-edge technology, colleagues who are leaders in their fields, and an awesome working environment that includes flexible hours, remote work, and plenty of growth opportunities.

Apply for this position by following the "apply now" tab and or viewing our other roles at Entersekt Careers page.