Apply on Employer Site

Kaiser Permanente · 1 month ago

Compliance Consultant V - PCI DSS Compliance

Pleasanton, CA

Full-time

Onsite

Senior Level, Lead/Staff

8+ years exp

Kaiser Permanente is seeking a Compliance Consultant V specializing in PCI DSS Compliance. This role involves conducting compliance readiness functions, supporting annual assessments, and ensuring the maturity of PCI compliance across various IT systems and business processes.

Health CareHospitalMental HealthNon ProfitPersonal Health

Comp. & Benefits

Responsibilities

Conducts or oversees business-specific projects by applying deep expertise in subject area; promoting adherence to all procedures and policies; developing work plans to meet business priorities and deadlines; determining and carrying out processes and methodologies; coordinating and delegating resources to accomplish organizational goals; partnering internally and externally to make effective business decisions; solving complex problems; escalating issues or risks, as appropriate; monitoring progress and results; recognizing and capitalizing on improvement opportunities; evaluating recommendations made; and influencing the completion of project tasks by others

Practices self-leadership and promotes learning in others by building relationships with cross-functional stakeholders; communicating information and providing advice to drive projects forward; influencing team members within assigned unit; listening and responding to, seeking, and addressing performance feedback; adapting to competing demands and new responsibilities; providing feedback to others, including upward feedback to leadership and mentoring junior team members; creating and executing plans to capitalize on strengths and improve opportunity areas; and adapting to and learning from change, difficulties, and feedback

Drives ITRM processes and/or methodology for designated ITRM initiatives by leading or directing team members in the documentation of process and/or service requirements and acceptance criteria from process owners and key stakeholders; guiding and influencing leadership in the development of the ITRM strategy; partnering with leadership to help define goals, objectives, deliverables, and guardrails within the governance framework to ensure the development and implementation of efficient, effective, measurable, and sustainable ITRM processes and controls; and collecting, analyzing, and reporting performance metrics using company software and reporting tools

Executes and plans ITRM compliance assessments and consulting projects by leading intake, planning and coordination activities for new or revisions to technology systems or services; and driving and managing the design and implementation of appropriate controls through the sustainment phase

Manages large-scale ITRM service delivery and engagements from planning to completion by managing multiple workstreams, including stakeholder communications and team mentorship; and managing and monitoring financials for assigned initiatives

Qualification

PCI DSS complianceIT risk managementCompliance assessmentsInformation securityAuditingStakeholder communicationReport writingLeadership

Required

Minimum four (4) years in an informal leadership role working with business or technical teams

Bachelors Degree in MIS, Information Security, Accounting, Finance, Audit, or related field and Minimum eight (8) years experience in IT risk management, compliance, auditing, or information security. Additional equivalent work experience in a directly related field may be substituted for the degree requirement