Assistant adviser on information security in Plastik Karta, OOO

Assistant Information Security Advisor 

To ensure and monitor compliance with PCI CP security requirements, successfully pass external audits, receive confirmation of compliance from payment systems, we We are inviting an Assistant Information Security Advisor:

Functional duties:

• Ensuring compliance of the enterprise security management system with the requirements security PCI Card Production Physical & Logical Security Requirements
• Correspondence with MPS on enterprise security certification and related issues
• Organization, preparation and passing of annual external audits of PCI CP compliance at the enterprise.
• li>
• Negotiations and correspondence with audit companies on all issues related to security audits.
• Documentary support of external audit processes (including preliminary preparation, collection of necessary documents, translation, distribution and control of documentation)
• Works on oral/written translation in the process of security audits.
• Conducting regular (monthly) internal audits of the company's divisions for compliance with security requirements submitted, with the submission of reports to the management of the enterprise
• Analysis of non-conformities identified by external and internal audits, planning of corrective actions, implementation control, collection of evidence (if necessary).
• Works on the translation of safety requirements of the MPS (when a new version is released) and related documentation
• Development, updating and control of internal safety documentation: policy , procedures, registers, schemes, plans, etc.
• Participation in the process of passing Mastercard CQM external audits, in particular: receiving a commercial proposal, agreeing terms and conditions, translating and submitting pre-audit documentation, translation work during the audit, translation of the KD plan, translation and submission of evidence of KD implementation.

General requirements:

• Higher education (education in related fields: information security, databases, electronics is an additional advantage. 
of a security-related enterprise
• Writing literacy in all languages ​​used at work
• Experience in the payment systems industry (security, compliance management) is an additional advantage.
• Confident PC user. Knowledge of PCI DSS, ISO 27001, ISO 19001, ISO 31000 standards, knowledge of system administration, database administration, etc. is an additional advantage.
• Responsibility, systematicity, reliability, perseverance, decency. 
• Ensuring and successfully confirming maximum compliance of the enterprise with PCI CP requirements.

Working conditions:

• Working in a young creative team with clients all over the world
• Excellent market compensation, quarterly performance bonus
• Greatand opportunities for professional development, training at the expense of the company
• Modern office outside the city (Vyshhorod)
• Delivery from Pochayna Square. Shevchenko, Minsk massif.