Complete Description:
As part of the Office of the Chief Financial Officer (OCFO) / Office of Finance and Treasury (OFT) team, the Senior PCI Analyst will be responsible for working closely with OFT management to assist all District agencies involved in credit card transactions becoming fully PCI DSS compliant. The Senior PCI Analyst shall also assist the OCFO’s Office of Development and Learning (ODL) in the development of a PCI Awareness training program that all personnel responsible for managing or handling credit card transactions can complete to facilitate an understanding of the importance of PCI compliance.
• Serve as subject matter expert (SME) on PCI within OFT
• Review and revise, as needed, all documentation to be distributed to the District agencies regarding the incorporation of PCI standards into their business policies and procedures
• Assist agencies with the completion of the PCI Self-Assessment Questionnaires, including gathering evidence of PCI compliance
• Assist agencies with the completion of Attestations of Compliance and perform a final review on behalf of OFT before Attestations are submitted
• Assist project manager in reviewing status of each agency required to comply with PCI standards and recommend solutions to problems preventing an agency from achieving compliance
• Assist the Office of the Chief Information Officer���s (OCIO) infrastructure team and/or Office of the Chief Technology Officer’s (OCTO) network team on PCI-related security issues
• Assist with QA testing of compliance
• Assist with compliance audits
• Assist ODL with the creation of awareness training and review final materials for accuracy
• Other duties, as assigned.
JOB REQUIREMENTS
• Minimum 8-12 years in a Business Analyst or similar role with 6 years in ecommerce/credit card processing. Government and/or Commercial, non-bank experience preferred.
• Minimum 5 years with compliance projects (specifically PCI)
• Minimum 5 years creating user stories and/or use cases and/or business/technical requirements focused on PCI compliance
• Bachelor's Degree in Finance, Accounting or Information Technology. Master’s Degree preferred.
• Experience implementing chip and PIN/EMV technology preferred
• Strong communication skills explaining technical issues related to the payment card industry and its standards
• Appropriate Industry Certifications (e.g., PCI-DSS, CISSP, CISM, QSA, CISA) preferred
• Knowledge of HIPAA and FTI preferred
• Strong understanding of TCP/IP and other network protocols
• Demonstrated experience in developing business requirements and leading teams through technical design
• Demonstrated experience analyzing complex business and technical requirements
• Demonstrated experience creating or reviewing systems and networking diagrams
• Demonstrated experience with preparing user documentation and conducting user training
Skills:
Skill
Required / Desired
Amount
of Experience
Expertise Rating
Business Analysis
Required
8
Years
3 - Expert
PCI Compliance
Required
5
Years
3 - Expert
Ecommerce / Credit Card Processing
Required
8
Years
3 - Expert
Information Technology System Design, Support, and Development
Required
5
Years
3 - Expert
User Documentation
Highly desired
3
Years
2 - Proficient
User Training
Highly desired
3
Years
2 - Proficient