Wellforce Lead Central Payment & Merchant Services Analyst in Woburn, Massachusetts
This position will support Treasury, Revenue Cycle, Information Security and Compliance in the oversight and management of data analytics, customer service and maintenance of accounts related to cash management, merchant card services, corporate card services and Payment Card Industry Data Security Standards (“PCI DSS”) compliance and audits of those areas.
Recommend, implement, and adhere to approved operating goals, objectives and budget and report operational performance, justification, and/or corrective action.
Collaborate with business units to understand credit card processing needs and formulate a process and system design. Roll out and maintain credit card equipment system wide.
Ensure compliance with government and agency regulations/standards.
Support internal PCI DSS technical compliance evaluations to ensure appropriate implementation of controls and alignment with the PCI DSS standards. Identify potential gaps, develop corrective action plans, and oversee remediation activities.
Develop and maintain PCI DSS related network and data flow documentation. Advise process and technology owners on documentation and testing requirements.
Oversee execution of audit procedures across network devices, applications, databases, and operating systems in scope for PCI DSS compliance.
Partner with all levels of IT and business management to ensure PCI DSS compliance audits are conducted in a cooperative, timely, and efficient manner with cost effective recommendations being provided to management when compliance gaps are identified.
Support review of PCI Self-Assessment Questionnaires (“SAQ”) and other related regulatory documentation required for the annual attestation, as applicable. Identify, gather, and retain supporting evidence.
Partner with third party Qualified Security Assessors (“QSA”) to validate compliance with the PCI DSS standard. Monitor corrective actions and process improvement plans.
Support attestation of compliance (AoC) submissions, and vulnerability scans or periodic penetration tests. Document findings, develop remediation, and tracks status.
Conduct end-to-end PCI DSS compliance system reviews for new and proposed cardholder applications and services. Prepare status reports and executive summaries on the PCI DSS Compliance Program
Continually evaluate and identify relevant changes to PCI DSS requirements and assess the impact of these changes on the company’s PCI DSS Compliance program.
Knowledge of Finance or Treasury functions related to payments.
Manage and maintain corporate credit card program for purchases, including but not limited to, issuance of cards, maintaining of portal for corporate card charges, training staff on coding and approving of charges, maintenance and updating of corporate card policies.
Performs all functions according to established policies, procedures, regulatory and accreditation requirements, as well as applicable professional standards. Provides all customers of Wellforce with an excellent service experience by consistently demonstrating our core values.
Requires a Bachelor's Degree in Information Technology, Computer Information Systems, Accounting, Finance, Economics or equivalent experience.
Requires a proficiency level typically achieved in 5 years. In-depth knowledge of financial analysis principles is necessary.
Minimum 2 years of hands-on security assessment and quality assurance related to PCI DSS
Organizational, communication, and management skills are required. Knowledge of governance frameworks, including but not limited to: ISO 27001, NIST CSF, HITRUST, COBIT, ITIL; Payment Card Industry Professional (PCIP), Payment Card Industry Internal Security Assessor (PCI ISA)
Knowledge of treasury functions, compliance trends, issues and regulations
Although this position is primarily remote, candidates must be local as they will be required to travel to various locations
Must have reliable transportation