Compliance Officer

Job description / Role

• Understanding the Customers’ requirements , relating those to the compliance requirements and translating it into the technical , policy or process requirements
• Collaborate with business stakeholders and technical stakeholders (solution, infrastructure, and application architects) to make sure the environment is in compliance with PCI_DSS , ISO 27001 and NESA / DESC / ADSIC and UAE Central Bank PSP regulation
• Working with external auditors to get environment certified for PCI-DSS , ISO 27001
• Maintaining the PCI-DSS and ISO 27001 compliance requirements
• Defining and generating reports and per the compliance requirements
• Conducting internal audits before the external audits
• Identifying gaps in compliance requirements and mitigating the same
• Provide recommendations for keeping the environment up-to-date with latest PCI_DSS and ISO 27001 requirements.
• Responsible for the getting environment compliant and certified.
• Responsible for the maintain the environment compliant
• Participate in and lead projects for security requirements, network design reviews, and security testing for network, systems, and other IT teams.

Requirements

• Bachelor’s degree in Computer Science, Information Technology or similar field, or equivalent experience
• 12+ years of information security experience with a focus on Compliance requirements for payment card industry , PCI-DSS , PA-DSS
• 6+ years of Designing and deploying PCI-DSS , PA-DSS requirements to Application and IT Infrastructure
• Certifications for PCI-DSS and PA-DSS requirements
• Getting Applications and IT Infrastructure certified for PA-DSS and PCI-DSS
• Managing PCI-DSS compliance and recertification
• Specific experience related to ISO 27001, deployment and getting environment certified , and maintaining certification
• Well versed with NESA / DESC / ADSIC and UAE Central Bank PSP regulation.
• Knowledge of PCI-DSS Audits and reporting requirements is mandatory
• Understanding the Customers’ requirements , relating those to the compliance requirements and translating it into the technical , policy or process requirements
• Experience of translating customer requirements into policies and processes
• Experience of validating technical architecture form the compliance point of view
• QSA is added advantage not mandatory
• Understanding of Application architect and IT infrastructure architect from the PA_DSS, PCI_DSS point of view.

Personality traits:

• Good verbal and written communication skills, strong command of English Language. Fluent in local languages advantageous.
• Must be able and prepared to make Decisions in a difficult and pressured environment.
• Good listener, polite and always positive

About the Company

Founded in 1996, Halian is an IT services company with a strong track record of delivering value for our customers across the UK, Europe, The Middle East and Africa.

The experience we have gained means that we can help our clients reduce information technology costs, increase IT systems performance, and free up valuable internal resource to focus on core business activities. Our knowledge base covers a variety of industry sectors including Government, Healthcare, Telecommunications and Pharmaceuticals, as well as a specialist Financial markets capability in our Luxembourg office.

We operate with a culture of openness and trust that helps us to develop strong working relationships with our clients and with our core technology partners Dell, Oracle, Red Hat and Symantec.

Our three key service offerings of Managed Services, Resourcing Services and Professional Services can be used independently or integrated to provide a truly comprehensive service.