PCI Controls Director

CLA is a top 10 national professional services firm where our purpose is to create opportunities every day, for our clients, our people, and our communities through industry-focused wealth advisory, digital, audit, tax, consulting, and outsourcing services. Even with more than 8,500 people, 130 U.S. locations, and a global reach, we promise to know you and help you.

CLA is currently seeking a PCI Controls Director to join our growing Cybersecurity Team.

This role is responsible for leading a team of PCI DSS focused cybersecurity professionals who examine and evaluate clients’ networks, systems, applications, and people for PCI compliance. They are responsible for assessing and identifying areas of improvement, control issues, and developing recommendations to meet the DSS requirements and enhance the security posture of our client's information technology infrastructure.

Essential Job Functions

• PCI consulting: Lead and manage engagements, including planning, scoping, executing, and reporting in accordance with professional standards and applicable regulatory requirements and laws. Assist in the planning and execution of reviews, audits and compliance assessments of our clients’ information technology controls in accordance with the PCI DSS. Participate in performing end-to-end engagement activities, including definition of scope, control evaluation, test activities, reporting, and findings documentation.  PCI QSA certification is required.  Certifications to maintain QSA are required, such as CISA, CISM, CISSP, CRISC, etc.

• Client Service: Develop and maintain relationships with clients and serve as a trusted advisor on IT risk management and cybersecurity controls. Manage quality, accuracy, efficiency, and timeliness of engagements and ensure open and effective lines of communication are maintained with the client. Collaborate with other assurance and consulting teams within the firm to provide integrated solutions for clients. Ensure a strong sense of accountability about business development and seamless service opportunities for clients.

• Training/Mentorship: May supervise the daily activities of and provide training to Associates and Seniors on the PCI team. May act as a peer advisor or career coach to assist other family members in growing their inspired careers.

• Professional Development: Maintain professional certification and continuing education requirements. Stay abreast of new legislation and market trends in information security that can be leveraged for clients.

Requirements:

Experience

• 7 years of related experience required

Education

• Bachelors degree in Computer Science, Information Technology or related field (combination of education, training, and experience may be considered a degree equivalent)

Certifications / Licenses

Two industry recognized certifications required, such as:

• CISA or equivalent (GSEC, ECSA, SSCP)
• CompTIA certs - like Security +
• Privacy Certifications (CDPSE)
• CISSP or equivalent (CISM)
• CRISC

Travel Requirements

This position requires frequent local travel to/from client sites and may require occasional non-local or overnight travel for client visits, training, meetings and/or other business-related purposes.

Our Perks:

• Flexible PTO (designed to offer flexible time away for you!)
• Up to 12 weeks paid parental leave
• Paid Volunteer Time Off
• Mental health coverage
• Quarterly Wellness stipend
• Fertility benefits
• Complete list of benefits here

#LI-RC1

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
 
Click here to learn about your hiring rights.

Wellness at CLA

To support our CLA family members, we focus on their physical, financial, social, and emotional well-being and offer comprehensive benefit options that include health, dental, vision, 401k and much more.

To view a complete list of benefits click here.