Compliance Analyst

About NCR Atleos

NCR Atleos, headquartered in Atlanta, is a leader in expanding financial access. Our dedicated 20,000 employees optimize the branch, improve operational efficiency and maximize self-service availability for financial institutions and retailers across the globe.

Compliance Analyst / Information Security Engineer II

Location: Frisco, TX

Work style: in office M/Tu/W/Th

Information Security Engineer II

This role is part of NCR Atleos’ Global Information Security team. This team is responsible for developing and implementing NCR Atleos’ corporate information security program. The primary goal of the program is to protect the confidentiality, integrity, and availability of information resources. Key information security functions and activities include architecture and design for NCR Atleos information security controls, developing and enforcing policies and standards, security awareness training, risk management, assessment, and testing, monitoring and metrics, incident management, and threat and vulnerability management.

The Information Security Engineer II shall be responsible for the day-to-day activities required to respond to Customer Questionnaire, Customer Audits, Compliance activities within Cyber security. The Information Security Engineer I shall work in a collaborative manner with all 3rd party Audit bodies, Account owners and control owners to facilitate control compliance, remediated and after-action review in accordance to corporate policy. The Information Security Engineer II shall work in a collaborative manner with team to make sure the vulnerabilities are control owners to remediate or provide compensating controls. The Information Security Engineer II is expected to contribute to weekly status calls and is On-Call which includes working off hours/weekends and respond to ad-hoc requests as part of this position. The Information Security Engineer II will work with stakeholders and team members to assist with improving Compliance processes that are aligned with the mission of the office of the CISO.

Key Responsibilities

• Partner with the different functions within organization for Compliance activities – Customer Audits, as well as ISO, SOC2, PCI.

• Work to manage relationships with third-party auditors and facilitate external auditor meetings including scheduling, preparation and follow-up of actions.

• Responsible for Security Assessments from customers.

• Assist in the development and implementation of an Information Security Awareness program.

• Work with internal teams for evidence collection and timely closure of audit findings.

• Support maintenance of organization's information security policies and procedures.

• Foster teamwork. Train and coach team members to ensure effective knowledge management activity.

Basic Qualifications

• Knowledge and experience of PCI-DSS, ISO27001 & SOC2 control assessments.

• Minimum of 2 years of IT experience in Cybersecurity Compliance.

• Beginner level Python coding.

• Exposure to Application security testing will be beneficial. Experience with tools like Metasploit, Nessus, Nmap.

• Good knowledge of network, backend systems, operating systems, applications, and web services in a manner that allows for the interaction of all as it relates to security and services. 

• Ability to apply analytical expertise and critical thinking to building automation processes.

• Ability to assimilate, understand and utilize various security technologies.

• Strong communication skills, attention to details and ability to work in a collaborative atmosphere.

• Ability to prioritize work with multiple, simultaneous work assignments.

• Ability and willingness to learn new tools and processes.

Preferred Qualifications

• Current Public cloud related certification preferred.

• Experience documenting business processes or technical procedures preferred.

#LI-AR1

#LI-HYBRID

Offers of employment are conditional upon passage of screening criteria applicable to the job.

Full time employee benefits include:

• Medical Insurance

• Dental Insurance

• Life Insurance

• Vision Insurance

• Short/Long Term Disability

• Paid Vacation

• 401k

EEO Statement
NCR Atleos is an equal-opportunity employer. It is NCR Atleos policy to hire, train, promote, and pay associates based on their job-related qualifications, ability, and performance, without regard to race, color, creed, religion, national origin, citizenship status, sex, sexual orientation, gender identity/expression, pregnancy, marital status, age, mental or physical disability, genetic information, medical condition, military or veteran status, or any other factor protected by law.

Statement to Third Party Agencies

To ALL recruitment agencies: NCR Atleos only accepts resumes from agencies on the NCR Atleos preferred supplier list. Please do not forward resumes to our applicant tracking system, NCR Atleos employees, or any NCR Atleos facility. NCR Atleos is not responsible for any fees or charges associated with unsolicited resumes.