Logo of Huzzle

PCI Cybersecurity Compliance & Assurance – OPENBANK

image

Openbank

26d ago

  • Job
    Full-time
    Mid Level
  • IT & Cybersecurity
  • Madrid

AI generated summary

  • You need strong cloud security knowledge, PCI DSS experience, risk management skills, relevant certifications, and strong communication abilities, with 4+ years in PCI compliance, especially in cloud settings.
  • You will lead PCI DSS compliance, collaborate with teams for cloud security, conduct audits, manage QSA relationships, deliver training, and implement incident response protocols.

Requirements

  • Strong understanding of cloud security architectures (AWS, Azure, GCP) and cloud compliance frameworks.
  • In-depth knowledge of the PCI DSS standard and experience leading PCI compliance programs.
  • Experience with risk management, vulnerability management, and security incident response.
  • Certifications such as PCI Professional (PCIP), Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), or similar are highly desirable.
  • Strong communication and leadership skills, with the ability to engage and influence at all levels of the organization.
  • Experience working with QSAs and managing external audits and assessments.
  • Analytical mindset with the ability to identify and assess security risks in complex, cloud-based systems.
  • Experience in a fast-paced, innovative environment or startup setting.
  • Familiarity with DevSecOps principles and cloud automation tools.
  • Strong project management skills, including experience with compliance initiatives in agile environments.
  • Bachelor's degree in Information Security, Cybersecurity, Computer Science, or a related field.
  • Minimum of 4+ years of experience in PCI DSS compliance, with at least 2 years in a cloud-centric environment.
  • Certifications such as PCI Professional (PCIP), Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), or similar are highly desirable.

Responsibilities

  • Lead the company’s PCI DSS compliance program, ensuring all business and technical operations align with PCI requirements.
  • Collaborate with cross-functional teams (IT, DevOps, Product Development, Legal) to ensure cloud-based systems and services meet PCI security standards.
  • Develop, implement, and maintain policies, processes, and procedures for PCI compliance in a cloud environment.
  • Serve as the subject matter expert (SME) on PCI DSS and cloud security, providing guidance and recommendations to senior leadership.
  • Conduct regular assessments, audits, and gap analyses to ensure ongoing PCI compliance and identify potential risks or vulnerabilities.
  • Manage relationships with Qualified Security Assessors (QSAs) and lead all PCI audits and reporting activities.
  • Stay current with evolving cybersecurity threats, cloud security innovations, and PCI standards, ensuring the company remains compliant and ahead of emerging risks.
  • Develop and deliver PCI DSS-related training to internal teams and stakeholders.
  • Implement robust incident response protocols related to PCI data breaches, working closely with the cybersecurity team to mitigate and report any incidents.
  • Act as a liaison between business units and the security team, ensuring secure and compliant product development lifecycles in cloud-based environments.

FAQs

What is the main mission of the PCI Cybersecurity Compliance & Assurance role at Openbank?

The main mission is to ensure the company's adherence to Payment Card Industry Data Security Standards (PCI DSS) in a cloud-based environment, leading the PCI compliance strategy and working with cross-functional teams to implement security policies and manage audits.

What qualifications are needed for this position?

Candidates should have a strong understanding of cloud security architectures, in-depth knowledge of PCI DSS standards, experience with risk management, and preferably hold certifications like PCI Professional (PCIP), Certified Information Systems Security Professional (CISSP), or Certified Cloud Security Professional (CCSP).

How many years of experience are required for the PCI Cybersecurity Compliance & Assurance role?

A minimum of 4+ years of experience in PCI DSS compliance is required, with at least 2 years in a cloud-centric environment.

Is knowledge of cloud platforms required for this job?

Yes, a strong understanding of cloud security architectures such as AWS, Azure, and GCP is required.

What kind of team will the new hire work with?

The new hire will collaborate with cross-functional teams including IT, DevOps, Product Development, and Legal to ensure compliance with PCI security standards.

What are the main tasks associated with this position?

The main tasks include leading the PCI DSS compliance program, conducting assessments and audits, managing relationships with Qualified Security Assessors (QSAs), staying current with cybersecurity threats, developing training, and implementing incident response protocols related to PCI data breaches.

Are there opportunities for professional growth in this role?

Yes, Openbank offers the possibility of growth within the company and the Santander Group, along with the opportunity to collaborate on international projects.

Does Openbank promote diversity and inclusion in its hiring process?

Yes, Openbank is an equal opportunity employer and considers all applicants equally, regardless of gender identity, sexual orientation, ethnicity, religion, age, political orientation, union membership, or disability status.

What types of benefits does Openbank provide?

Openbank offers competitive remuneration, an attractive benefits package, an excellent work environment, social clubs, frequent events, and opportunities for growth.

Is prior experience in a startup environment beneficial for this role?

Yes, experience in a fast-paced, innovative environment or startup setting is beneficial for candidates applying for this position.

Finance
Industry
1001-5000
Employees
1995
Founded Year

Mission & Purpose

Openbank is a digital-only bank based in Spain, offering a range of online banking services including savings accounts, loans, and investment products. Its ultimate mission is to provide innovative, user-friendly financial solutions with a focus on transparency and accessibility. The company's purpose is to revolutionise banking through advanced technology and a customer-centric approach, ensuring a seamless and efficient banking experience for its users.