Senior IT Compliance and Risk Officer

Are you passionate about finance and modern technology? Do you have good organizational skills? Do you enjoy working together to achieve common objectives on time? If yes, this is the right place for you. You will be acting as the PCI DSS officer for SIX and as such, lead and coordinate internal and external activities to ensure compliance with the PCI DSS standard in an international environment. You also implement and continuously improve the IT control framework of SIX together with the different domain and technical experts. Your precise way of working and thorough understanding of auditing information systems ensures the compliance with statutory, regulatory and customer requirements as well as with different industry standards. 

What You Will Do:

• act as a primary responsible for all PCI DSS related matters and duties, liaise with the PCI auditors to minimize any risk for the PCI DSS recertification

• ensure adherence to PCI DSS standard and execute the relevant controls

• consult Enterprise Architecture and Projects in regards of PCI DSS compliant configurations

• consult IT specialists to align control design and improve control implementation

• organize and accompany the yearly PCI DSS recertification, track and ensure remediation of findings

• advise IT management and auditees with regards to PCI DSS requirements and implementation

• maintain a roadmap to continuously improve scope, quality and implementation by defining respective initiatives and work packages and drive and track their progress

• review and improve control system monitoring and evidence delivery

What You Bring

• 5-8 years of experience in Information Systems Auditing, Controls and Assurance with exposure to PCI DSS as well as a sound IT education in IT Infrastructure and Applications

• responsible and communicative personality with a precise and autonomous way of working and the willingness to learn new things and to develop processes further constantly

• ability to identify and analyze problems and to solve them systematically

•  technical flair and good IT skills as well as Project management experience and skills technical certifications such as CISA, CISM, PCIP, ISA or QSA would be beneficial

• very good command of English, German a big plus