Analyst - Cyber Security Compliance
United States
Full-time
6 days ago
$67,000 - $84,000 USD
H1B Sponsor Likely
Key skills
PCI DSSCyber Security ComplianceIT environments knowledgeSecurity best practicesAnalytical skillsCommunication skillsOrganizational skillsSelf-motivatedChange ManagementCommunicationNetwork Security
About this role
Live Nation Entertainment is the world’s leading live entertainment company, and they are seeking a Cyber Security Analyst to join their Cyber Security Compliance team. This role will focus on conducting PCI Compliance assessments and ensuring the effective implementation and oversight of security controls in alignment with organizational and regulatory standards.
Responsibilities:
- Lead Payment Card Industry Data Security Standards (PCI DSS) Assessments as an ISA
- Document assessment findings, provide gap analysis and recommendations for remediation
- Provide advice and guidance to business units in all areas relating to payment security, including PCI DSS (Payment Card Industry Data Security Standards) and security best practices aligned to Cyber Security strategy
- Liaise with external security assessment firms to ensure on-time completion of projects
- Assist in preparing formal presentations of compliance status and issues to business units and management
- Partner with business units on the creation and collection of evidence in preparation for internal and external assessments
- Lead Quarterly Security Reviews (QSRs) with business teams to ensure applicable PCI DSS controls are being performed and maintained
- Advocate security best practice throughout the business
- Assist in responding to compliance queries from third parties, clients, client reps, legal, advanced product specialists on behalf of the company
Requirements:
- A strong working knowledge of the PCI DSS requirements and accurate reporting
- 1-3 years of experience in PCI compliance programs as a PCI SSC ISA
- General knowledge of IT environments, including but not limited to scope reduction, network devices, technical implementation, and asset management
- Experience in cyber security/compliance/IT assessment projects and processes
- Experience facing technical and security challenges that are difficult and sometimes complex
- Familiarity with best practices around network security, configuration management, system hardening, data retention and disposal, encryption, key management, anti-virus, vulnerability management/scanning/patching, application security, logical and physical security, Software Development Life Cycle/change management procedures/Separation of Duties/Code Reviews, logging and monitoring, file integrity monitoring, intrusion detection, endpoint security, incident response, supplier security assurance, and security operations
- Experience working with Network and Systems Engineers, Architects, Developers/Engineers, Finance Teams, DBAs, Call Center and Point of Sale administrators, and Suppliers
- Excellent verbal and written communication skills
- You can work in large global environments spanning multiple time zones
- You are highly responsible, self-motivated, and able to work with minimal supervision
- You are resourceful with the ability to adapt to a constantly changing technical environment
- You can critically evaluate new and current processes whilst embracing simplicity
- You enjoy working in a fast-paced environment with frequent deadlines
- You communicate clearly and transparently; have excellent interpersonal, written and verbal communication skills
- You can inspire confidence and maintain good working relationships with co-workers and clients
- You have excellent organizational and follow up skills
- You have a proactive nature and flexible approach
- You are self-motivated, self-disciplined and respectful
- Degree in IS/IT or PCI ISA, PCIP, CISM or other IT/Cyber Security certifications preferred