PCI Officer i Sundbyberg

Security Centre is the heart of Swedbank security operations pertaining to BIO and IT organizations.

To ensure development, implementation and maintenance of the organization-wide strategy for internal PCI DSS Compliance. The PCI Compliance Officer is essential to maintaining PCI DSS Compliance on daily basis.

• Be the primary point of contact on PCI DSS compliance for BIO and IT organizations
• Identify, analyze, and manage risks and issues that may compromise security and PCI compliance
• Report PCI compliance status on a regular basis to relevant stakeholders
• Ensure that compliance to PCI DSS standard is maintained across the organization. Coordinate with other members of BIO and IT function to implement and sustain appropriate technical and procedural controls to support this objective
• Remain apprised of pending changes to PCI DSS requirements and proactively design and apply appropriate measures
• Perform ongoing security procedures, including, but not limited, review of firewall rule set, review system logs, vulnerability management results assessment, periodic system intrusion testing and investigation of exception conditions, and work with appropriate IT teams on subsequent remediation efforts.
• Provide recommendations on PCI DSS controls and cost-effective remediation plans
• Assist with documenting scope and all relevant controls in a standard framework
• Maintain up to date on PCI DSS compliance needs and ongoing interpretation of PCI DSS standard applicable to the defined scope
• Recommend changes and enhancements or additions to security controls of DSS in scope systems.
• Facilitate an annual review and update of all PCI related policies and procedures
• Manage an annual PCI awareness training that includes PCI security training, developer training and policy review
• Provide expertise as needed in projects to identify PCI DSS requirements that need to be addressed
• Monitor PCI DSS compliance of relevant service providers
• Interpret results, and lead timely remediation efforts of any gaps noted during the annual compliance review
• Stay current on security best practices, and industry trends
  
  

• Relevant University degree
• Direct experience with PCI DSS compliance preferred
• Excellent communication and interpersonal skills. Ability to communicate effectively, both orally and in writing, across various levels of an organization
• Strong sense of personal integrity
• Ability to influence others without a direct reporting relationship to achieve desired results
• Ability to work in a fast-paced, dynamic environment while maintaining high quality output and a positive working relationship with peers and management
• The ability to operate under ambiguous circumstances, and address potentially uncomfortable issues
• Detail-oriented and deadline driven
• Ability to build strong working relationships with colleagues
• Good analytical and creative problem-solving skills
• A confident, collaborative manner when dealing with conflict
• Ability to work and lead effectively in a matrixed environment across multiple departments to achieve desired results
• Be able to take own initiatives and possess leadership skills
  
  

You are a service minded person that likes to help solving problems and are comfortable with administrative tasks. Taking own initiatives and have a social approach is natural for you. You need to be structured in your work while we also encourage you to be creative. You need to be flexible, thriving and dare to set demands to get problems solved. We need you to be a thorough person with a high sense of security and that understands the importance of getting things done. Needs to be able to drive complex (organisational and/or technical) questions on all organisational levels and be able to force respective owner to take full responsibility for delivering compliance.

We believe that long-lasting relationships with our customers and employees create the foundation for sustainable business. We would like to welcome you to the international organization, where you can apply your knowledge in creating relevant, efficient and innovative services to our clients. We offer you broad development and learning possibilities under professional leaders, we value healthy lifestyle culture and a work-life balance. When people grow – businesses and society grow.

• Information Security Officer
• Information Security Manager
• CISO
• Other higher information security or manager position
  
  

Leadership is not about being in charge. Leadership is about taking care of those in your charge. Leadership is not a rank or position to be attained. Leadership is a service to be given. That is my moto.

If you have questions related to the positions, please contact recruiting manager Håkan Johansson, +46 858 595 377

We want to inform you that the selection process will begin after the summer vacation, during week 33 the earliest.

Enjoy your summer!

We have made our choice regarding recruitment media and therefore kindly decline contact with ad sellers or sellers of other recruitment services.