Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 1K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

RATE NOW!
- ABECA 2025
  
  RATE NOW!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Employer? Claim Account for FREE

Northern Tool

Compare

2.6

based on 19 Reviews

2 Northern Tool Jobs

Information Security Audit & Compliance Manager (5-7 yrs)

Northern Tool Equipment

2.6

based on 19 Reviews

5-7 years

Hyderabad / Secunderabad

Information Security Audit & Compliance Manager (5-7 yrs)

Northern Tool

posted 2mon ago

Job Role Insights

Flexible timing

Key skills for the job

Cyber Security Translation Information Security IT Audit Cissp Credit Risk Modelling

+ 3 more

Job Description

ROLE : Information Security Audit & Compliance Manager

Join the core group of founding members at the NTE India to build an organization from the ground up.

PRIMARY OBJECTIVE OF POSITION :

The PCI DSS Manager is responsible for managing and maintaining the organization's compliance with PCI DSS requirements.

This role involves coordinating all aspects of PCI DSS assessments, implementing security measures to protect cardholder data, and ensuring continuous compliance with the PCI DSS standards.

The PCI DSS Manager will work closely with various departments to mitigate risks, oversee the development and implementation of PCI DSS policies and procedures, and act as the primary liaison with auditors and regulatory bodies.

MAJOR AREAS OF ACCOUNTABILITY:.

PCI DSS Compliance Management:.

- Lead and manage the organization's PCI DSS compliance program, including initial certification and ongoing assessments.

- Ensure the organization meets all 12 requirements of the PCI DSS and maintains up-to-date documentation of all compliance activities.

- Conduct regular internal audits and assessments to ensure compliance with PCI DSS.

- Collaborate with external Qualified Security Assessors (QSAs) during official PCI DSS audits and assessments.

Security Policy Development :

- Work closely with the IT Security manager to develop, update, and maintain security policies, procedures, and guidelines to ensure they align with PCI DSS standards.

- Ensure that all security measures and controls are properly documented and communicated to relevant stakeholders.

Risk Management :

- Identify and assess potential security risks related to payment card data.

- Work with the IT Security team to implement and oversee the deployment of security measures to mitigate identified risks.

- Work with the IT Security team and other relevant parties to develop and execute incident response plans for breaches related to cardholder data.

Training and Awareness :

- Develop and deliver training programs for staff on PCI DSS compliance and security best practices.

- Raise awareness of PCI DSS requirements across the organization, ensuring all relevant -personnel are knowledgeable about their roles in maintaining compliance.

Vendor Management :

- Oversee the management of third-party vendors to ensure they meet PCI DSS compliance requirements.

- Review and approve vendor contracts and service level agreements (SLAs) to ensure they include appropriate security provisions.

Continuous Improvement :

- Monitor industry trends, regulatory changes, and emerging threats to ensure that the organization's PCI DSS compliance program remains up-to-date and effective.

- Recommend and implement improvements to the organization's security posture and PCI DSS compliance program.

Reporting :

- Prepare regular reports on the status of PCI DSS compliance for senior management and other stakeholders.

- Provide detailed reports on any security incidents involving cardholder data and the steps taken to resolve them.

QUALIFICATIONS :

- To perform this job successfully, an individual must be able to perform each essential duty satisfactorily.

- The requirements listed below are representative of the knowledge, skill and/or ability required.

- Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

- Bachelor's degree in Information Security, Computer Science, or a related field.

- A Master's degree is a plus.

- Minimum of 5 years of experience in information security, with focus on PCI DSS compliance.

- Experience managing PCI DSS compliance in a complex organization.

- Proven track record of successfully leading PCI DSS certification projects.

- Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or other relevant security certifications.

- PCI Professional (PCIP) or Internal Security Assessor (ISA) certification is highly desirable.

- Ability to travel on an occasional basis.