Oversee programs and activities related to maintaining PCI compliance and maintaining a favorable status with VISA and MasterCard.
Provide oversight regarding audit, regulatory, and risk management activities across cyber functional areas, such as the development and maintenance of regulatory documentation (e.g., PCI DSS AOC).
Monitor and analyze technology risk trends, and recommend appropriate technology policies, procedures, and practices to strengthen internal operations.
Oversee compliance programs for cyber frameworks (e.g., NIST CSF).
Direct functional teams in development, implementation, monitoring, and reporting of control processes, documentation, and compliance routines.
Oversee and coordinate information technology and security components of both internal and external audits, federal and state examinations, and client onsite audits.
Collaborate with Marketing/Communications teams in preparing information security messaging for internal and Credit Union distribution.
Respond to financial institution audits, due diligence inquiries, and documentation requests.
Oversee Vendor Partner Oversight functions (e.g., contract reviews, technology risk assessments, site audits).
Oversee technology compliance reporting functions (e.g., quarterly ASV scans, AOC).
Oversee activities of professional services firms (e.g., QSAs, QIRAs) in conducting technology compliance and security engagements.
Serve as subject matter authority on industry regulatory environment and technology risk management practices.
Report on and monitor Key Performance Indicators (KPIs).
Set strategy and roadmaps for how identity is implemented and used across the business.
Manage a team of Compliance professionals and ensure performance goals are monitored and managed.
Oversee access attestations and ensure they are performed in a timely manner.
Demonstrate behaviors based on Velera values: Dedication, Collaboration, Belonging, Curiosity, and Integrity.
Perform other duties as assigned.

Requirements

Bachelor's Degree in Computer Science, Information Systems, Business Administration, or related field, or equivalent combination of education and experience required.
CISM/CISSP/CISA Certification required.
Eight (8) years progressive experience in leading teams responsible for technology risk management, technology compliance, and/or audit, information security management required.
Technology compliance leadership experience required, working with cross-functional technology and business teams and information security verticals.
Experience in the financial services or payments industry required.
Possess detailed knowledge of industry regulatory environment and technology risk management practices, and thorough understanding of local and federal regulations (e.g., PCI DSS, FFIEC, GLBA).
Excellent understanding of the principles and practices of Cyber Security, Risk Management, and Control.
Ability to communicate effectively in both verbal and written formats and give presentations using various audiovisual support aids.
Ability to articulate Information Security and control concepts to technical and non-technical audiences.
Ability to balance multiple projects, work in fast-paced environment, and meet deadlines.
Ability to work collaboratively with individuals at all levels of the corporation and with professional services firms (e.g., external auditors);
Strong business, leadership, and management skills.
Demonstrated excellent analytical and quantitative skills.
Ability to exercise discretion and good judgment in making decisions.
Ability to handle complex budgets and maintain adherence to budget targets.
Knowledge of various relevant compliance frameworks and practices.
Ability to maintain confidentiality of materials handled.

Benefits

Competitive wages
Medical with telemedicine
Dental and Vision
Basic and Optional Life Insurance
Paid Time Off (PTO)
Maternity, Parental, Family Care Community Volunteer Time Off
12 Paid Holidays
Company Paid Disability Insurance
401k (with employer match)
Health Savings Accounts (HSA) with company provided contributions
Flexible Spending Accounts (FSA)
Supplemental Insurance
Mental Health and Well-being: Employee Assistance Program (EAP)
Tuition Reimbursement
Wellness program

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

PCI compliancetechnology risk managementauditinformation security managementtechnology compliancecyber securityrisk managementcontrol processesregulatory documentationKey Performance Indicators (KPIs)

Soft Skills

communicationcollaborationleadershipanalytical skillsdecision makingproject managementbudget managementconfidentialitypresentation skillsinterpersonal skills

Certifications

CISMCISSPCISA