Manager, PCI Compliance (Remote) Job in Under Armour United States

  • Full Time
  • United States
  • Applications have closed

Website Under Armour

This Jobsfunter Listing is about Under Armour in United States 2022

About the job

Under Armour has one mission: to make you better. We have a commitment to innovation that lies at the heart of everything we do, not just for our athletes but also for our teammates. As a global organization, our teams around the world push boundaries and think beyond what is expected. Together our teammates are unified by our values and are grounded in our vision to inspire you with performance solutions you never knew you needed but can’t imagine living without.

Position Summary

The Manager, PCI Compliance Internal Security Assessor (ISA) is a key member of the Compliance team and is instrumental in ensuring the compliance of people, processes, and technology with the Payment Card Industry Data Security Standard (PCI DSS). This role will own the coordination of compliance activities across Under Armour’s in-scope business units and work closely with IT, engineering teams, and cyber security. The PCI Compliance ISA will advise on proposed changes to business processes that could impact compliance and draft required documentation. For example, this role will advise on new payment solutions, security tools, and policies that could impact PCI DSS scope and compliance and prepare the appropriate evidence for the annual PCI Self-Assessment Questionnaires (SAQs) and/or Report on Compliance (ROC).

Essential Duties & Responsibilities

  • Act as the single-point-of-contact / subject matter resource for all efforts related to PCI and other data governance frameworks
  • Monitor and manage annual reports and self-certifications, such as PCI SAQs and/or ROC with external QSA assessors
  • Track and report on the compliance status of each in-scope process so that enterprise-level compliance can be determined
  • Track and report on the remediation plans and timelines associated with compliance gaps in each in-scope process
  • Manage issues where compliance may be at risk
  • Risk assess new projects to ensure compliance is accounted for
  • Serve as the primary enforcement arm of policies and standards with the business
  • Monitor changes to the PCI DSS and other data governance frameworks and evaluate compliance status impact at UA

Qualifications (Knowledge, Skills & Abilities)

  • Possess a thorough understanding of payment processes and related systems
  • Experience scoping data environments and evaluating those environments against set controls
  • Experience executing remediation activities to achieve compliance with data governance requirements and driving necessary system and process updates to maintain compliance
  • Demonstrated ability to understand and document complex IT environments and payment processes
  • Willingness to share knowledge and experiences with less experienced and/or technical teammates through training and mentoring to help grow the team
  • Ability to multi-task in a fast-paced environment independently and as a member of a team
  • Excellent oral and written communication skills
  • Ability to identify and resolve business problems within a team setting
  • Ability to understand and document business processes and related internal controls in narrative and/or flowchart formats
  • Strong project management skills

Education And / Or Experience

  • Bachelor’s degree in Management Information Systems, Business, or related field
  • 5-7 years of experience collaborating with IT risk, cybersecurity, and data privacy teams
  • Demonstrated knowledge of PCI Data Security Standard (PCI DSS) requirements and compliance

Other Requirements

  • Location: This position is fully remote
  • Licenses/Certifications: Internal Security Assessor (ISA) or Qualified Security Assessor (QSA) certification preferred, or openness to obtain certification
  • Project management experience, with a Project Management Professional (PMP) or Certified Scrum Master (CSM) or Lean certification preferred
  • Experience with payment processing platform (e.g., Paymetric, Aurus) preferred
  • Experience with GRC tool (e.g., ServiceNow) preferred
  • Experience with PCI in cloud environments (e.g., AWS, Google Cloud) preferred
  • Retail industry with e-commerce experience preferred
  • Relocation

    • No relocation provided

    At Under Armour, we are committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and teammates without regard to race, color, religion, sex, pregnancy (including childbirth, lactation and related medical conditions), national origin, age, physical and mental disability, marital status, sexual orientation, gender identity, gender expression, genetic information (including characteristics and testing), military and veteran status, and any other characteristic protected by applicable law. Under Armour believes that diversity and inclusion among our teammates is critical to our success as a global company, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool.

    Learn more about Under Armour’s COVID-19 response and Teammate vaccination policies here.

Company: Under Armour

Vacancy Type: Full-time · Mid-Senior level 

Job Location: United States

Application Deadline: N/A

Apply Here