Security Consultant (PCI / Compliance) (m/f) – for newly founded technology hub in Barcelona
Allianz Technology SE
Barcelona
hace 33 días

JOB PURPOSE / ROLE

Allianz Technology SE (AT) is the international shared service company within the Allianz Group and has its registered office in Munich.

Our customers are Allianz companies across the globe to which our more than 16 000 employees offer innovative, top-quality products and services in the fields of IT, Services and Operations.

The worldwide Delivery Management operates within the Global & Regional Lines (G&RL) are that provides IT services globally and locally as preferred IT service provider for Allianz Worldwide Partners (AWP) Group and others.

We deliver global scale IT operations and platforms to drive and grow AWP’s business.

The Security Consultant (PCI / Compliance) is responsible for active contribution, consulting and steering on the assessments, evaluations and mitigations of Information Security Risks or in the delivery of PCI DSS audits and assessments.

This role is dedicated for someone who can be a partner and interlink between IT and business and know how collaborate with experts and stakeholders across the organization.

This position offers an exciting opportunity to work in a multicultural business environment, as well as exposure to diverse key stakeholders in this cross border business collaboration.

The perfect candidate for this role not only brings in experience with security assessments, Payments Security technologies, and compliance standards but is also a good communicator that can leverage skills and expertise within the different departments as well as third parties.

KEY RESPONSIBILITIES

Coordinate implementation of PCI-DSS standards in all relevant Business Units

  • Review and assessment of business process, data flows, network diagrams, system and network security configuration standards, and other security controls, against the requirements defined by security frameworks and standards, such as PCI, DPA and ISO27001
  • Contribute to the definition and development of security control designs including those required to support external regulations, applicable laws and regulations, such as PCI DSS, DPA and ISO27001
  • Proactively identify information security deficiencies or opportunities for improvement and facilitate development of pragmatic solutions
  • Serving as general point of contact for security frameworks and standards related projects
  • KEY REQUIREMENTS / SKILLS / EXPERIENCE

    Master’s degree or equivalent experience in an IT-related discipline

  • At least 5 years equivalent experience in consulting or sales engineering - particularly in the areas of the payments industry including technology, sales, regulation, compliance and risk management
  • Strong working knowledge of industry and compliance standards : PCI DSS, PA-DSS, ISO27001
  • Certified PCI QSA, or ability to pass and maintain QSA certification
  • Skills and Competencies

  • Excellent communication and presentation skills, comfortable in interacting with colleagues at all levels all over the world, as well as self-
  • organization and self-motivation

  • Highly motivated to cooperate in a multi-cultural and diverse environment
  • Fluent in English and used to communicate with senior stakeholders
  • Desired requirements / skills / experience

  • An understanding of the ISO 27001 Information Security Management System (ISMS) framework is preferred
  • Experience with stakeholder management and driving outcomes in projects with wide ranging stakeholders
  • Have previously led and managed the delivery of PCI DSS audits
  • Have professional qualifications such as CISM, CISA, CRISC, CLAS, ISO27001 Lead Auditor / Implementer, ITIL, TOGAF, Prince2
  • ADDITIONAL INFORMATION

    Traveling is required for this position.

    Please note that the mandatory application document is the CV, all other files such as Cover Letter for the position, University Transcripts, Diploma and Employer Testimonials / References are advisable and desired by the Hiring Department for a more comprehensive application assessment.

    Inscribirse
    Inscribirse
    Mi Correo Electrónico
    Al hacer clic en la opción "Continuar", acepto que neuvoo recolecte y procese mis datos de conformidad con lo establecido en su Política de privacidad . Tengo derecho a darme de baja o retirar mi autorización en cualquier momento.
    Continuar
    Formulario de postulación