Information Security Assurance Manager

Information Security Assurance (ISA) Manager

Global Payments, Inc. is one of the world's largest transaction processors and offers worldwide, world-class electronic transaction processing services through high speed, robust electronic information networks. These networks process billions of business and consumer payment card and money transfer transactions annually for customers in the United States, Canada, Europe, and Latin America.

Global Payments is searching for an ISA Manager. This role will be fully responsible for security with our payment card compliance needs. Only candidates with strong information security backgrounds will be considered.

Prioritize and execute remediation and preventative work efforts in order to minimize any outstanding compliance/audit remediation gaps

Develop and document effective SOPs for remediation activities and associated ISA work efforts; accountable for design and execution of the vulnerability scanning processes

Execute remediation tasks as needed to support team effort and timely resolution

Minimize future efforts via risk and compliance requirements modelling for new and current systems; direct forensic analysis efforts on threat incidents in order to uncover trends and/or propose actions

Internal communications and reporting; work effectively on a cross-functional and/or virtual team basis with Internal Compliance and other business units.

Keep abreast of and anticipates implications from changes in regulatory/compliance changes in relation to the organization's global business assets; develop expertise in all relevant compliance and regulatory mandates via independent research and participation in appropriate organizations/conferences such as PCI Security Standards Council and Black Hat Briefings

Serve as internal consultant on information security issues, policies and practices; researches relevant global trends and keeps abreast of industry compliance trends

Prevent and minimize risk via life cycle approach: identifying and assessing critical assets, data classification, focal point for communicating recommendations to business owners and upper management

Manage a small, professional/technical team

Maintain relevant licensing, contracts, and administrative oversight

Policy development, maintenance and dissemination; recommend enforcement strategies

Advance/update relevant internal standards

Design and oversee independent information/data security assurance health evaluations; derive implications of results to formulate and execute IS strategies

Recommend and develop internal training strategies as needed to improve audit performance

Knowledge/Skills/Abilities

• At least 7 years of information security experience including experience with SIM technology required
• Bachelor's Degree in IS, IT or related field required
• Professional credentials in good standing such as CISSP (preferred) or GAIC
• Electronic Payments industry experience preferred
• Comprehensive understanding of relevant security best practices required
• Working knowledge of federal regulations applicable to credit card processing preferred
• Working knowledge of PCI rules and regulations preferred
• Working knowledge of FFEIC, SOX and/or SAS70 relevant controls preferred
• Advanced leadership and change management skills
• Proven ability to effectively facilitate project execution required
• Proactively stays informed of IS advances of via continuous education efforts
• Excellent verbal and written communication skills required
• In-depth knowledge of the security of common operating systems, databases, network systems and other appropriate information technology required
• Proven ability to investigate and accurately assess vulnerabilities and information security issues in order to design and implement pragmatic, effective solutions required
• Intermittent travel is required