The Cybersecurity Compliance PCI-DSS Analyst (Senior) will help define, implement, manage, and maintain cybersecurity compliance to meet or exceed requirements for in-scope security, legal, and regulatory frameworks. 

This role will be responsible for leading and supporting the cybersecurity compliance efforts for the enterprise as well as continuing the advancement of the compliance program. This is a multi-dimensional role, requiring cybersecurity compliance and business integration experience with proven capability in both technical skills and cultural awareness to build partnerships and provide best-in-class compliance management and support. 

• Co-lead cybersecurity PCI-DSS compliance initiatives for the team that include coordinating internal and external cybersecurity compliance audits, scheduling meetings, gathering evidence, managing timelines and advising stakeholders.
• Perform professional day-to-day execution of cybersecurity compliance activities, internal/external audit engagements and projects that focus on customer service and support. 
• Build partnerships and collaborate with colleagues across all levels by providing cybersecurity compliance and audit support, evidence collection and validation, control enhancement, and process improvement recommendations.  
• Assist in the creation of compliance procedures, guidelines, control narratives, and work instructions.
• Conduct gap analyses, review audit results, and participate in the identification of root causes to support and monitor remediation plans, recommend preventive actions, and report metrics.
• Monitor cybersecurity control processes developed to ensure adherence to compliance guidelines, internal policies, and regulatory requirements, including SOX, HIPAA, FDA, HITRUST, PCI-DSS, ISO etc.
• Act as a subject matter expert (SME) for cybersecurity compliance-related procedures, requirements, and audit activities.
• Work with leadership to prioritize compliance initiatives to align with business objectives.
• Support business enablement objectives in alignment with cybersecurity compliance best practices and regulatory requirements. 
• Must be able to take initiative, be dependable, and work with little supervision while being resilient to change.
• Uphold company mission and values through accountability, innovation, integrity, quality, and teamwork. 
• Support and comply with the company’s Quality Management System policies and procedures. 
• Ability to act with an inclusion mindset and model these behaviors for the organization. 
• Perform other cybersecurity compliance related tasks as needed. 

• Bachelor’s degree in information technology, business, or related field; or high school degree/general education diploma (GED) and 3 years of relevant experience instead of bachelor’s degree.
• Excellent interpersonal and communication skills.
• Demonstrated ability to operate in a cross cultural and complex matrix environment with the ability to build consensus across functions.
• Prior experience working in an audit-related role with an emphasis on cybersecurity compliance, operations and/or security controls. 
• Prior experience and knowledge of regulatory requirements and control frameworks (e.g., HIPAA, HITRUST, ISO 27001, FDA, NIST 800-53).
• Advanced PCI -DSS knowledge and experience is a must 
• Cybersecurity certification (CISA, CRISC, CISM, CISSP, Security +, CC).