Lead Technical Program Manager - PCI Compliance

Lead Technical Program Manager – PCI Compliance

5+ years’ experience leading PCI attestation efforts.
Extensive experience as a Program/Project Manager in GRC (Governance, Risk and Compliance).
Background in auditing security controls, networks, and system security.
Technical knowledge and familiarity with information security standards such as PCI DSS, and NIST Cybersecurity Framework.
Ability to express technical concepts in business terms.
Able to work well under deadlines in a changing environment and complete multiple PCI projects effectively and concurrently.

Perform continuous monitoring of PCI standards and understand the potential impacts of change as they apply to the organization.
Assist the Compliance team and the Business with all required PCI compliance related documentation and its maintenance.
Collaborate across Security and Engineering teams, Leadership and all other stakeholders to drive Mindbody’s PCI Program compliance.
Provides guidance to the business on PCI compliance and security-related matters.
Coordinate audit-related tasks to ensure the readiness of managers and their teams for audit testing and facilitate the timely resolution of any audit findings.
Understands compliance requirements (ISO, NIST, SOX, PCI, HIPAA, GDPR and other regulatory compliance).
Participate in the development and implementation of new business initiatives to ensure functionality required to support PCI compliance.
Report on deliverables, and project status to management and key technical and business stakeholders.
Collaborates with our BISOs to advise Business Partners on the appropriate implementation of security compliance controls and requirements to maintain our information security and privacy posture.
Manages any internal and external audit requests related to PCI-DSS, and other compliance requests as needed.