Senior Analyst, IT - Compliance

Hawaiian Holdings Inc   •  

Phoenix, AZ

Industry: Transportation

  •  

5 - 7 years

Posted 42 days ago

Position Overview

Under the supervision of the Manager of IT Compliance, this position will help maintain the Payment Card Industry (PCI) program. Day-to-day activities include, but are not limited to, coordinating PCI attestation activities, monitoring process owners to help ensure ongoing compliance, coordinating annual penetration tests, and managing vulnerability management remediation activities. This individual must be organized, have excellent verbal and written communication skills, and be able to critically analyze and problem-solve.

Key Responsibilities

  • Maintain up-to-date knowledge of PCI Data Security Standards (DSS), security frameworks, industry changes, and Card Brand notifications
  • Manage day-to-day PCI program activitities
  • Assist with development of annual PCI compliance strategies
  • Coordinate PCI attestation activities (e.g., collect audit evidence, schedule walkthrough meetings, investigate potential findings, track remediation activities, etc.)
  • Represent IT Compliance during Business and IT project meetings to ensure PCI compliant actions are integrated into projects
  • Educate business owners on PCI DSS requirements

Requirements

Minimum Requirements

  • Bachelor’s Degree or equivalent experience or security-focused education
  • 2 years of relevant PCI experience. Candidate must have direct involvement with the maintenance, development, and/or testing of a PCI program (e.g., QSA, ISA, consulting, etc.)
  • 4 years of relevant securityexperience
  • PCI certification or willingness to obtain certification within first year of employment (e.g., ISA)
  • Completes tasks independently/interdependently
  • Demonstrates knowledge of information security domains and general security best practices
  • Demonstrates excellent communication skills
  • Demonstrates excellent written and documentation skills
  • Displays good interviewing and facilitation skills
  • Accurately plans and manages individual work assignments
  • Consistently promotes and participates in creating a positive, team-oriented work environment
  • Willingly accepts feedback to improve individual performance

Preferred Qualifications

  • Audit certification (e.g., CPA, CISA, CIA, etc.)
  • Demonstrates applied knowledge of one or more analysis and problem decomposition techniques
  • Ability to create security signatures via common scriptinglanguages
  • Working knowledge of at least one scriptinglanguage, such PowerShell, Python, Perl, etc.
  • Advanced level OSI knowledge
  • Intermediate to advanced level Web Security knowledge
  • Intermediate to advanced level Application Security knowledge
  • Technical knowledge of penetration testing methodologies
  • Technical knowledge of cryptography
  • Ability to identify changes to processes and procedures to increase efficiency

19-0151