Compliance Officer
Location: Chisinau
Employment Type: Full-Time
Reports to: Enterprise CTO
We are a leading provider of innovative payment solutions, offering secure and efficient services to a global clientele. We are committed to maintaining the highest standards of security and compliance. We are creating a new position for a dedicated Compliance Officer, to manage and maintain our adherence to the Payment Card Industry Data Security Standard (PCI DSS), ISO 27001, and Cyber Essentials security standards, along with GDPR and data privacy to safeguard our customers data. This role will require you to work in both a single and team environment and requires the ability to be able to multi-task, key to this role will be the ability to prioritize workloads and work to defined deadlines.
- Develop and maintain PCI DSS, ISO 27701, Cyber Essentials, and GDPR compliance program in line with changing legislation.
- Conduct regular assessments and audits to ensure compliance with PCI DSS requirements.
- Maintain and evolve the associated policy and procedures
- Identify and manage security risks and mitigation plans
- Collaborate with IT and security teams to design and implement security controls and measures in compliance with legislation.
- Provide training and guidance to staff for PCI DSS, Security, and data privacy compliance and security best practices.
- Prepare and submit compliance reports to regulatory bodies.
- Take part and lead audits from external bodies
- Provide input into client-submitted security and due diligence questionnaires
- Provision of support for the sales team members by joining calls with existing and potential customers to discuss compliance requirements
- Stay updated on the latest PCI DSS standards and industry best practices.
- Respond to security incidents and breaches, ensuring proper documentation and resolution.
- Chair and manage actions from scheduled internal security and compliance meetings
- Bachelor’s degree in information security, Computer Science, or a related field.
- In-depth knowledge of PCI DSS, ISO27001, Cyber Essentials and GDPR requirements and compliance processes.
- Experience of delivering and maintaining security accreditations
- Strong understanding of network security, encryption, and data protection.
- Excellent analytical and problem-solving skills.
- Strong communication and interpersonal skills.
- English proficiency equivalent to level B2-C1
- Professional certifications such as PCI Professional (PCIP), Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM).
- Experience in a similar compliance or security role.
- Familiarity with security tools and technologies (e.g., firewalls, intrusion detection systems).
- Professional development opportunities and education expenses reimbursement
- Competitive salary and performance-based bonuses.
- Comprehensive health insurance plan.
- Flexible working hours and remote work options.
- Collaborative and inclusive work environment.
- Sport membership reimbursement.
- Access to various learning platforms.
- Other benefits can be discussed during the interview.
Background: Key IVR provides secure cloud payment solutions to organizations and contact centres worldwide, protecting hundreds of businesses and their customers. Key IVR is an industry-leading SaaS business, with the potential to dominate the customer payment solutions and IVR services technology space internationally. To underpin planned, massive growth, the company is seeking to appoint a number of high-caliber individuals across a number of roles. You can find more details about Key IVR at www.keyivr.com
Are you interested and a fit?
You are invited to send your CV to hr@keyivr.com