Bachelor's degree or equivalent practical experience.
5 years of experience in program or project management.
3 years of experience in an information technology role, with 2 years of experience in a security compliance role.
Preferred qualifications:
Master’s degree or PhD in Engineering, Computer Science, or a related technical field.
Certifications in CISSP, CISA, GIAC, or related information security certifications.
5 years of experience in regulatory or compliance with any of the following: PCI DSS, SSAE16/18 SOC1 and SOC2, ISO27K, Privacy Shield, GDPR, US state data protection regulations such as CPRA and VCDPA.
4 years of experience working in risk management and risk frameworks (e.g., NIST 800-30, OCTAVE, ISO31K).
3 years of experience working with third-party risk measurement, monitoring, management, and response.
Knowledge of payments, consumer applications and financial services.