Apply on Employer Site

EchoStar Corporation · 11 hours ago

Information Security Compliance Manager

Englewood, CO

Full-time

Onsite

Senior Level

$110K/yr - $165K/yr

5+ years exp

EchoStar Corporation is reimagining the future of connectivity through various services including satellite television and mobile plans. They are seeking an experienced Compliance Manager to join their Information Security Governance, Risk, and Compliance team, focusing on maintaining regulatory compliance and overseeing the compliance program related to PCI standards.

HardwareSatellite CommunicationSoftware

No H1B

Hiring Manager

Josh Zimmerman

Responsibilities

Involved in leadership of the development and maintenance of the organization’s compliance management framework, covering PCI, CPNI, NYDFS and other regulatory requirements

Serve as a key point of contact and subject matter expert for all PCI- and compliance-related activities; including managing the annual PCI Data Security Standard (PCI DSS) assessments, coordinating with Qualified Security Assessors (QSAs), and ensuring continuous compliance throughout the year

Translate regulatory requirements into actionable standards and procedures

Work closely with the GRC and wider Information Security team to identify, assess, and manage risks related to compliance obligations

Coordinate and lead internal and external audits, providing documentation, evidence, and clear communication of control effectiveness

Develop and deliver compliance training programs to internal stakeholders to foster a culture of compliance awareness across the organization

Partner with cross-functional teams, including Legal, IT, and business units, to ensure compliance requirements are integrated into business processes and technology solutions

Implement and maintain continuous monitoring activities to track compliance status and report on outcomes and key metrics to senior leadership

Qualification

PCI DSSCompliance Management FrameworkGRC ExperienceProfessional CertificationsNIST FrameworksStrategic PlanningCommunication SkillsOrganizational SkillsProblem-Solving Skills

Required

Bachelor's degree in a relevant field such as Information Technology, Cybersecurity, Business, or a related discipline

A minimum of 5 years of dedicated experience in a compliance or GRC role with a strong focus on PCI DSS

Professional certifications such as PCI Professional (PCI-P) or Internal Security Assessor (ISA) are required

Deep understanding of the PCI DSS standard and its application in a technology environment

Familiarity with NIST frameworks is beneficial

Excellent communication, organizational, and problem-solving skills with the ability to work collaboratively across all levels of the organization

Ability to lead and create strategic plans for the business on regulatory strategy

Preferred

Additional relevant certifications (e.g., CISA, CISSP, CRISC)

Benefits

Flexible spending accounts

HSA

A 401(k) Plan with company match

ESPP

Career opportunities

Flexible time away plan

Company

EchoStar Corporation

Glassdoor3.5

EchoStar Corporation (Nasdaq: SATS) is a premier provider of technology, networking services, television entertainment and connectivity, offering consumer, enterprise, operator and government solutions worldwide under its EchoStar®, Boost Mobile®, Sling TV, DISH TV, Hughes®, HughesNet®, HughesON™ and JUPITER™ brands.

Founded in 1980

Englewood, Colorado, USA

10001+ employees