Security & Compliance Manager - Peyton Resource Group : Job Details

Job DescriptionIT Security & Compliance Manager Location: Dallas, Hybrid Type: Direct Hire JOB RESPONSIBILITIES

• Develop, implement, and maintain compliance programs to ensure adherence to all applicable laws, regulations, and industry standards.
• Monitor changes in legislation and regulatory environments, providing guidance and updates to senior management.
• Conduct regular audits and assessments to evaluate compliance effectiveness and identify areas for improvement.
• Compliance investigations, action plans and overseeing compliance training.
• Main point-of-contact for company compliance.
• Lead and manage the PCI audit process, ensuring all necessary documentation and controls are in place.
• Lead the development and implementation of security policies and procedures to safeguard company assets and sensitive information.
• Familiar with personally implementing and maintaining technology surrounding security and compliance, including WAFs, VPNs, SAST, and DAST. Collaborate with IT, engineering, HR, and other departments to ensure cyber security measures are in place and implemented as a part of our regular business project planning.
• Oversee incident response planning and coordinate responses to security breaches or vulnerabilities.
• Identify, assess, and prioritize risks across the organization, developing risk mitigation strategies.
• Facilitate risk assessments and develop reports to communicate findings and recommendations to senior leadership.
• Foster a risk-aware culture by providing training and resources to employees on risk management best practices.
• Work closely with cross-functional teams to ensure compliance and risk management initiatives align with business objectives.
• Prepare and present regular reports on compliance, security, and risk management activities to the executive team and board of directors.
• Serve as the primary point of contact for regulatory agencies and external auditors. Respond to requests from external auditors for security audit questionnaires. Perform new vendor security reviews as requested.
• Provide training and guidance to staff on security and compliance best practices.
• Performs other related duties as assigned.

EDUCATION / CERTIFICATIONS & LICENSE REQUIREMENTS

• Bachelor's degree from a college or university with a major in Accounting, Computer Science, or a related field.
• Any one or multiples of the following are preferred but not required: MS cybersecurity architect Expert, CMMC Assessor (CCA), CMMC Professional (CCP).

PROFESSIONAL / TECHNICAL EXPERIENCE

• Minimum 5 years of relevant professional industry or experience in PCI management is required.