Information Security Compliance Manager at Entersekt

The role

We are a fast-growing fintech product and services company with offices in South Africa, Europe, and the USA. Your role will be to ensure that Entersekt meets industry compliance requirements, and that our compliance roadmap is aligned to our business strategy and can support and sustain the global business initiatives of both Entersekt and its partners. You will own the compliance plan, and implement, manage and maintain the policies, processes and controls required for our business. This role will report to the SVP of operations in our engineering division.

Key responsibilities

• Ensuring that our compliance programs are up to date, revised, and well documented
• Documenting and communicating our position and compliance status for all relevant security compliance standards (including PCI-DSS, PCI-3DS, ISO27001, GDPR, and POPI)
• Developing, maintaining and revising policies and procedures for the information security, business continuity, and assurance frameworks that apply to Entersekt
• Identifying potential areas of compliance vulnerability and risk, and developing remediation and corrective action plans as part of preventative recommendations
• Working with external consultants and subject matter experts on areas of compliance and alignment to specific industry standards, including scoping and managing large compliance projects
• Responding to and managing annual attestation programs, customer audits, and requests for compliance information
• Providing regular status reports to keep the information security committee and senior management informed of the operation and progress of compliance efforts
• Collaborating across Entersekt to direct compliance issues to the appropriate channels for investigation and resolution
• Ensuring employees are enrolled in security awareness education programs

Skills & experience

Successful candidates for this role will generally possess the following qualifications and skills:

• Bachelor’s degree in IT, law, finance, business management, or related field
• 3–5 years’ proven experience in an information security compliance officer role
• Good working knowledge of information security compliance requirements and procedures
• Proven track record in managing and delivering compliance projects
• Experience in and understanding of modern IT environments, including cloud-based technologies
• Excellent oral and written communication skills: a natural flair in communicating technical information (both written and verbally) to technical and non-technical audiences in a supportive and meaningful way
• Highly analytical with strong attention to detail
• Ability to solve problems by exercising proper judgment and demonstrating timely decision-making skills

Personality attributes

• The ability to adapt quickly and stay organized amidst simultaneous projects and changing priorities, assignments, and roles
• A positive, pro-active, and results-focused "can-do" attitude that demonstrates initiative
• The ability to interact with senior management and work in a fast-paced environment
• The ability to perform effectively under stressful working conditions that are common in this type of global operational role
• Can embrace learning and working with constantly changing technology
• Flexibility: open to change, doing what it takes to get the job done, and being comfortable with ambiguity and evolving processes
• A professional who can use diplomacy in working relationships to deal with conflict and arbitrate solutions successfully