Senior Compliance Analyst (PCI DSS)

It's fun to work in a company where people truly BELIEVE in what they're doing!

Fullsteam is a leading provider of vertical software and embedded payments technology dedicated to helping businesses flourish by providing their customers with seamless experiences. With a dynamic and growing team of over 1,900 employees, we are committed to driving innovation and delivering best-in-class software and payment solutions that empower small and medium-sized businesses across numerous industries. Our purpose is to help our customers grow their businesses and delight their customers. Join us and be a part of a forward-thinking company that values growth, excellence, and the success of our clients.

We are seeking a detail-oriented and experienced Senior Compliance Analyst to join our Governance, Risk, and Compliance (GRC) team. This position will be responsible for Fullsteam's annual PCI DSS assessments, as well as ensuring the ongoing PCI DSS compliance of Fullsteam and its business units.  The successful candidate will also be responsible for ongoing PCI DSS compliance maintenance and control implementation to ensure Fullsteam meets all regulatory requirements.

Primary Responsibilities:

• Lead annual PCI DSS assessments for Fullsteam and its business units.
• Develop and implement strategies to maintain ongoing PCI DSS compliance.
• Collaborate with internal teams to ensure compliance with PCI DSS requirements.
• Perform regular audits and reviews to identify and address compliance gaps.
• Maintain comprehensive documentation of compliance activities and findings.
• Provide training and guidance to employees on PCI DSS compliance requirements.
• Stay current with changes in PCI DSS standards and industry best practices.
• Prepare and present compliance reports to senior management and stakeholders.
• Assist in the development and implementation of compliance policies and procedures.

Technical and Analytical Skills

• Expertise in PCI DSS requirements, standards and best practice.
• Analytical problem solving with strong attention to detail.
• Ability to stay current with evolving compliance standards and adapt strategies accordingly.
• Skilled at maintaining accurate and comprehensive compliance documentation and policy creation.

Communication and Collaboration

• Communicates in an effective manner both verbally and in writing to varied audiences to present findings and recommend solutions effectively with various stakeholders.
• Works effectively to partner with cross-functional teams to influence stakeholders and ensure adoption of proposed solutions.

Project Management and Adaptability

• Solid organizational skills that allow for managing multiple projects simultaneously.
• Able to adapt new strategies as compliance standards evolve and change priorities as needs arise.

Minimum Qualifications:

• Bachelor's degree in a related field; advanced degree or certifications (e.g., CISA, CISM, CISSP, PCI QSA) preferred.
• Minimum of 5 years of experience in compliance, risk management, or a related field.
• In-depth knowledge of regulatory requirements, including PCI DSS, HIPAA, SOC 2, and other relevant standards.
• Proven experience in developing and implementing PCI DSS requirements and in maintaining compliance.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Ability to work effectively in a fast-paced, dynamic environment.
• Detail-oriented with strong organizational skills.

Preferred Qualifications

• Professional certifications such as PCI Professional (PCIP), Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), or related credentials.
• Experience in the financial tech industry, particularly within SaaS and Payments focused roles.
• Background in Merger and acquisition organizations is a plus.

Fullsteam supports an inclusive workplace that values diversity of thought, experience, and background. Fullsteam is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state, or local law.