Analyst - Cyber Security Compliance
United States of America
Full Time
7 hours ago
$67,000 - $84,000 USD
H1B Sponsor Likely
Key skills
Change ManagementCommunicationNetwork Security
About this role
Live Nation Entertainment is the world’s leading live entertainment company, comprised of global market leaders. They are seeking a Cyber Security Analyst to join their Cyber Security Compliance team, focusing on conducting PCI Compliance assessments and ensuring effective implementation of security controls in alignment with organizational standards.
Responsibilities:
- Lead Payment Card Industry Data Security Standards (PCI DSS) Assessments as an ISA
- Document assessment findings, provide gap analysis and recommendations for remediation
- Provide advice and guidance to business units in all areas relating to payment security, including PCI DSS (Payment Card Industry Data Security Standards) and security best practices aligned to Cyber Security strategy
- Liaise with external security assessment firms to ensure on-time completion of projects
- Assist in preparing formal presentations of compliance status and issues to business units and management
- Partner with business units on the creation and collection of evidence in preparation for internal and external assessments
- Lead Quarterly Security Reviews (QSRs) with business teams to ensure applicable PCI DSS controls are being performed and maintained
- Advocate security best practice throughout the business
- Assist in responding to compliance queries from third parties, clients, client reps, legal, advanced product specialists on behalf of the company
Requirements:
- A strong working knowledge of the PCI DSS requirements and accurate reporting
- 1-3 years of experience in PCI compliance programs as a PCI SSC ISA
- General knowledge of IT environments, including but not limited to scope reduction, network devices, technical implementation, and asset management
- Experience in cyber security/compliance/IT assessment projects and processes
- Experience facing technical and security challenges that are difficult and sometimes complex
- Familiarity with best practices around network security, configuration management, system hardening, data retention and disposal, encryption, key management, anti-virus, vulnerability management/scanning/patching, application security, logical and physical security, Software Development Life Cycle/change management procedures/Separation of Duties/Code Reviews, logging and monitoring, file integrity monitoring, intrusion detection, endpoint security, incident response, supplier security assurance, and security operations
- Experience working with Network and Systems Engineers, Architects, Developers/Engineers, Finance Teams, DBAs, Call Center and Point of Sale administrators, and Suppliers
- Excellent verbal and written communication skills
- Degree in IS/IT or PCI ISA, PCIP, CISM or other IT/Cyber Security certifications