Manager, PCI Compliance and Payment Analytics

University of Memphis - Memphis, TN (30+ days ago)4.3


Minimum Position Qualifications
Bachelor’s degree in Business Administration, Information Technology or related field and five years of progressively more responsible experience in Business, Information Technology, Finance, Payment Card Industry or Accounting related field.

Knowledge and experience can include the following:
  • PCI DSS and payment card/bank processing.
  • One to two years of successful project management experience.
  • Technical skills typically used in a PCI environment such as security protocols, encryption, network and system segmentation etc.
  • Experience with ERP Systems including queries and development of reports.
Special Conditions
The department is especially interested in candidates with the following professional certifications: Qualified Security Assessor (QSA), Internal Security Assessor (ISA), PCI Awareness Training, PCI Professional (PCIP), Certified Information Privacy Professional (CIPP), Certified Information Systems Security Professional (CISSP), Certified Management Accountant (CMA),

If you have acquired any of the professional certifications please upload certifications under “Document 1”.

Work Schedule
Monday-Friday
8:00 a.m. – 4:30 p.m.
Additional work hours required during peak periods.

Posting Date 06/15/2018 Closing Date 06/29/2018 Open Until Screening Begins No Hiring Range $50,000 - $60,000 per year Full-Time/Part-Time Full-Time: Benefits Eligible Working Conditions
While performing the duties of this job, the employee is regularly required to sit, use hands to handle or feel, and talk or hear. The employee frequently is required to walk.
The employee is occasionally required to stand, reach with hands and arms, and stoop, kneel, or crouch. The employee must occasionally lift and/or move up to 10 pounds. Specific vision abilities required by this job include close vision.

Additional Working Conditions Special Instructions to Applicants
All applications must be submitted online at workforum.memphis.edu.

Applicants must complete all applicable sections of the online application to be considered for a position. Please upload a cover letter, resume, and reference list after completing your application, if required by the system. Required work experience is based on full time hours. Part time work experience will be prorated as listed.

Candidates who are called for an interview must notify the Department of Human Resources in writing of any reasonable accommodation needed prior to the date of the interview.

Is this posting for UofM employees only? No Positions Supervised Knowledge, Skills, and Abilities
  • Excellent customer service skills.
  • Excellent written and oral communication skills.
  • Demonstrated ability to meet deadlines.
  • Ability to work effectively as team member.
  • Proven leadership, collaboration, and team building skills.
  • Demonstrated ability to work effectively with diverse decentralized customers and constituents.
  • Detail working knowledge of Microsoft Office Suite.
  • Demonstrated proficiency with spreadsheet, database, query and other PC-based analytical tools.
  • Knowledge of relevant compliance programs and frameworks.
  • Ability to draft policy documents and translate regulatory requirements into practical and actionable elements.
  • Strong risk analysis and problem solving skills in business, higher education and regulatory environments including PCI DSS and payment card/bank processing.
  • Strong organizational skills; ability to manage multiple responsibilities at one time.
  • Ability to perform work activities requiring negotiating, instructing, supervising, persuading or speaking with others.
Additional Position Information
Job Duties
The duties and responsibilities listed are intended to describe the general nature and level of work to be performed in this position and are not to be construed as an exhaustive list of the requirements of this job.

Duties & Responsibilities
Develop and implement processes and procedures to achieve and maintain compliance with PCI DSS and other regulations including methods for ongoing monitoring of compliance status.

  • Interpret and apply PCI DSS requirements and requirements of related state, federal and card brand regulations to business practices.
  • Develop, implement and maintain guidelines, policies and procedures as they relate to PCI DSS, PCI Compliance, payment card acceptance and other regulations.
  • Implement, document and manage annual (or as necessary) PCI DSS compliance process, disaster recovery and regular procedural reviews of various card holder data environments and payment systems.
  • Develop and maintain training materials for instructor-led and/or online training for University departments on compliance requirements.
  • Works with IT and Procurement to review and help architect new and existing software/hardware applications for credit card processing. Serves on Request for Purchase (RFP) teams for any new payment applications/3rd party vendors that have credit card processing to ensure that PCI Compliance has been met.
  • Update, revise and maintain central website of compliance-related information for campus community.
  • Conduct merchant reviews and site visits to ensure compliance. Follow-up with non-compliant merchants/departments and assist them with remediation and ensure remediation has been completed.
  • Research and analyses recommendation and implementation of payment devices and software. Work with University’s payment systems in maintaining PCI compliance.
Job Duties
The duties and responsibilities listed are intended to describe the general nature and level of work to be performed in this position and are not to be construed as an exhaustive list of the requirements of this job.

Duties & Responsibilities
Coordinate work effort and communication with PCI Committee, other University departments, outside organizations and 3rd party vendors.

  • Coordinate compliance processes with University Information Technology Services, Procurement, and Office of Legal Affairs.
  • Communicate compliance updates and annual compliance requirements to departments and merchants.
  • Chair PCI Committee meetings and serves as a member.
  • Serve as a liaison with credit card processor.
  • Serve as liaison between the Bursar’s Office, external PCI experts and consultants, third-party vendors and departments/merchants.
  • Responsible for RFP for Qualified Security Assessor (QSA) and serves as contract administrator for the University’s contract with QSA.
  • Responds to requests for information from internal or external audits as assigned.
  • Perform on-going training for merchants with respect to best practices for card administration
Job Duties
The duties and responsibilities listed are intended to describe the general nature and level of work to be performed in this position and are not to be construed as an exhaustive list of the requirements of this job.

Duties & Responsibilities
Prepare data and reports related to compliance activities including risk assessments and compliance summaries.

  • Develop information and actionable reports that can be used to inform University-wide risk assessments and compliance summaries.
  • Oversee the preparation and validation of the annual Self-Assessment Questionnaire (SAQ) compliance report in conjunction with the PCI Committee and ensure the appropriate SAQ is accurately completed.
  • Implement and maintain comprehensive information files including required documentation for each compliance area and 3rd party vendors.
Job Duties
The duties and responsibilities listed are intended to describe the general nature and level of work to be performed in this position and are not to be construed as an exhaustive list of the requirements of this job.

Duties & Responsibilities
Stay current with industry standards, technology and changes to become the subject matter expert on PCI DSS and other assigned compliance areas in order to serve as a resource to the Bursar’s Office and University departments and merchants.

Job Duties
The duties and responsibilities listed are intended to describe the general nature and level of work to be performed in this position and are not to be construed as an exhaustive list of the requirements of this job.

Duties & Responsibilities
Work with IT regarding network scans (internal and vendor hosted), review results, and coordinate mitigation of findings between merchants and technical experts.

Job Duties
The duties and responsibilities listed are intended to describe the general nature and level of work to be performed in this position and are not to be construed as an exhaustive list of the requirements of this job.

Duties & Responsibilities
Serves as backup and crossed trained in the development of complex reports and the development and review of queries/reports developed by other users and offers technical guidance and support. Assist with maintaining production calendars, uploads and downloads, and appropriate integration interfaces. Assist in the planning, testing and implementation of system upgrades and document changes to business processes, policies and procedures. Assist and be crossed trained in the rules tables with the tuition and fees assessment set up and other system tables.

Job Duties
The duties and responsibilities listed are intended to describe the general nature and level of work to be performed in this position and are not to be construed as an exhaustive list of the requirements of this job.

Duties & Responsibilities
Assist with creating marketplace sites and responsible for guidance of creating, establishing, and maintaining electronic payment portal for all marketplace online payment sites. Assist in maintaining department’s web site and security access. Assist with managing/staffing Bursar Satellite Payment Center during fee payment deadlines.

Job Duties
The duties and responsibilities listed are intended to describe the general nature and level of work to be performed in this position and are not to be construed as an exhaustive list of the requirements of this job.

Duties & Responsibilities
Other duties as assigned.