Information Security Advisor in Florham Park, New Jersey | DiversityInc Careers
 

Information Security Advisor

Job DescriptionWe are looking for a talented and experienced Advisor to join our PCI Control Assurance team. The successful candidate will be responsible for supporting the ongoing compliance of the PCI DSS requirements for people, process, and technologies at CVS Health. The successful candidate must have experience with PCI DSS requirements and related processes. The incumbent will be responsible for supporting the related processes to ensure that the CVS PCI environment remains secure and that all identified gaps are managed appropriately. The Advisor will be responsible for, but not limited to:

Understand and document card brand payment acceptance or card servicing processes; Facilitate the interaction between CVS Health and PCI DSS Qualified Security Assessor (QSA) and the PCI PIN (a.k.a. Debit PIN) Assessors; Manage the communications with, and the expectations of, the PCI DSS and PCI PIN external assessors; Provide internal timely communication of the corresponding timelines, dependencies, readiness tasks, new requirements, upcoming deadlines, risks, etc.; Stay current with new and evolving security topics and technologies via formal training and self-directed education; Manage and communicate key compliance milestones; Obtain and review evidence of compliance; Drive necessary system and process updates; Consult on complex PCI DSS compliance considerations; Work closely with cross-functional teams and develop strong liaison relationships; Willingly share knowledge and experiences with less experienced staff to help team talent growth through training and mentoring.Required Qualifications5 or more years of IT experiencePreferred Qualifications3 or more years prior experience supporting a Level 1 or Level 2 organization’s PCI DSS compliance effort, working with a PCI ISA or PCI QSA

Industry Certifications (CISSP, PCI QSA or ISA or PCIP, CISA, and/or CRISC) preferred

Experience with compliance or regulatory issues preferred

Knowledge of all PCI DSS requirements

Intermediate to advance knowledge of five or more of the following technical areas: network segmentation, operating system security, encryption and key management, anti-virus and malware management, secure system development lifecycle, identity and access management, vulnerability management (including vulnerability scanning and penetration testing), physical access controls, file integrity monitoring, log management, and information security policies/standards

Ability to identify problems, analyze data, and present conclusions effectively

Strong verbal, written and presentations skills

Excellent computer skills (Microsoft Excel/Word/PowerPoint/Outlook, Adobe, SharePoint)EducationAssociates degree or equivalent experience required. Bachelor's degree preferred.Business OverviewCVS Health, through our unmatched breadth of service offerings, is transforming the delivery of health care services in the U.S. We are an innovative, fast-growing company guided by values that focus on teamwork, integrity and respect for our colleagues and customers. What are we looking for in our colleagues? We seek fresh ideas, new perspectives, a diversity of experiences, and a dedication to service that will help us better meet the needs of the many people and businesses that rely on us each day. As the nation’s largest pharmacy health care provider, we offer a wide range of exciting and fulfilling career opportunities across our three business units – MinuteClinic, pharmacy benefit management (PBM) and retail pharmacy. Our energetic and service-oriented colleagues work hard every day to make a positive difference in the lives of our customers.

CVS Health is an equal opportunity employer. We do not discriminate in hiring or employment against any individual on the basis of race, ethnicity, ancestry, color, religion, sex/gender (including pregnancy), national origin, sexual orientation, gender identity or expression, physical or mental disability, medical condition, age, veteran status, military status, marital status, genetic information, citizenship status, unemployment status, political affiliation, or on any other basis or characteristic prohibited by applicable federal, state or local law. CVS Health will consider qualified job candidates with criminal histories in a manner consistent with federal, state and local laws. CVS Health will not discharge or in any other manner discriminate against any Colleague or applicant for employment because such Colleague or applicant has inquired about, discussed, or disclosed the compensation of the Colleague or applicant or another Colleague or applicant. Furthermore, we comply with the laws and regulations set forth in the following EEO is the Law Poster: EEO IS THE LAW and EEO IS THE LAW SUPPLEMENT

Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. If you require assistance to apply for this job, please contact us by clicking Advice and Counsel

CVS Health does not require nor expect that applicants disclose their compensation history during the application, interview, and hiring process.

For inquiries related to the application process or technical issues please contact the Kenexa Helpdesk at 1-855-338-5609. For technical issues with the Virtual Job Tryout assessment, contact the Shaker Help Desk at 1-877-987-5352. Please note that we only accept resumes via our corporate website: https://jobs.cvshealth.com/