Hyatt
PCI Compliance Senior Analyst (Remote Opportunity)
Hyatt, Chicago, Illinois, United States, 60290
PCI Compliance Senior Analyst (Remote Opportunity)
Join Hyatt’s IT Governance, Risk Management, and Compliance team as a Senior GRC Analyst. This remote role focuses on PCI DSS compliance and other IT compliance initiatives.
Overview Hyatt Hotels Corporation is an industry‑leading hospitality company. The role collaborates with cross‑functional teams to support PCI DSS Level‑1 assessment, SOX ITGC, vendor risk management, and policy development. This position emphasizes expertise in PCI DSS, SOX ITGC, and regulatory compliance.
Benefits
Annual allotment of free hotel stays at Hyatt hotels globally
Flexible work schedule
Work‑life benefits including wellbeing initiatives such as a complimentary Headspace subscription and a discount at the on‑site fitness center
A global family assistance policy with paid time off following birth or adoption and financial assistance for adoption
Paid Time Off, Medical, Dental, Vision, 401(k) with company match
Who You Are You embody Hyatt’s core values—Empathy, Inclusion, Integrity, Experimentation, Respect, and well‑being. You are results‑driven, collaborative, and committed to personal and professional growth.
The Role The Senior GRC Analyst serves as a subject‑matter expert in PCI DSS compliance, leading assessment activities, ensuring compliance, and collaborating with stakeholders to remediate gaps. Responsibilities include:
Lead the end‑to‑end PCI DSS Level‑1 Service Provider assessment process with external QSA.
Serve as the primary liaison with QSAs, external auditors, and internal stakeholders.
Interpret PCI DSS requirements and provide actionable guidance.
Oversee evidence gathering, review, and validation for PCI DSS, SOX ITGC, operational audits, vendor risk, ISO 27001 alignment, and other compliance assessments.
Manage SOX ITGC audit activities, coordinate with control owners, and oversee remediation.
Support vendor risk management, ISO 27001 alignment, and regulatory or contractual audits.
Develop and maintain compliance‑related policies and procedures.
Track, monitor, and report compliance metrics to management and senior leadership.
Stay informed on regulatory and industry changes and advise stakeholders on impacts.
Qualifications
Bachelor’s degree in Information Security, Information Technology, Risk Management, Cyber Security, or a related field (or equivalent experience).
5+ years of experience in GRC, IT compliance, or information security with significant PCI DSS and SOX ITGC experience.
Proven history of leading PCI DSS Level‑1 Service Provider assessments with a QSA.
Strong understanding of PCI DSS, SOX compliance, and general IT audit frameworks.
Experience coordinating with external auditors and managing cross‑functional remediation efforts.
Excellent organizational, communication, and stakeholder management skills.
Preferred Experience
Certifications: PCI Qualified Security Assessor (QSA), PCI Internal Security Assessor (ISA), CISA, CISSP, CRISC, or equivalent.
Additional Information Other responsibilities, duties, and qualifications may be assigned as required. To apply, submit your candidacy through Hyatt’s recruitment portal. Salary range: $95,000 to $120,000. The final offer depends on experience, skill level, and location.
#J-18808-Ljbffr
Overview Hyatt Hotels Corporation is an industry‑leading hospitality company. The role collaborates with cross‑functional teams to support PCI DSS Level‑1 assessment, SOX ITGC, vendor risk management, and policy development. This position emphasizes expertise in PCI DSS, SOX ITGC, and regulatory compliance.
Benefits
Annual allotment of free hotel stays at Hyatt hotels globally
Flexible work schedule
Work‑life benefits including wellbeing initiatives such as a complimentary Headspace subscription and a discount at the on‑site fitness center
A global family assistance policy with paid time off following birth or adoption and financial assistance for adoption
Paid Time Off, Medical, Dental, Vision, 401(k) with company match
Who You Are You embody Hyatt’s core values—Empathy, Inclusion, Integrity, Experimentation, Respect, and well‑being. You are results‑driven, collaborative, and committed to personal and professional growth.
The Role The Senior GRC Analyst serves as a subject‑matter expert in PCI DSS compliance, leading assessment activities, ensuring compliance, and collaborating with stakeholders to remediate gaps. Responsibilities include:
Lead the end‑to‑end PCI DSS Level‑1 Service Provider assessment process with external QSA.
Serve as the primary liaison with QSAs, external auditors, and internal stakeholders.
Interpret PCI DSS requirements and provide actionable guidance.
Oversee evidence gathering, review, and validation for PCI DSS, SOX ITGC, operational audits, vendor risk, ISO 27001 alignment, and other compliance assessments.
Manage SOX ITGC audit activities, coordinate with control owners, and oversee remediation.
Support vendor risk management, ISO 27001 alignment, and regulatory or contractual audits.
Develop and maintain compliance‑related policies and procedures.
Track, monitor, and report compliance metrics to management and senior leadership.
Stay informed on regulatory and industry changes and advise stakeholders on impacts.
Qualifications
Bachelor’s degree in Information Security, Information Technology, Risk Management, Cyber Security, or a related field (or equivalent experience).
5+ years of experience in GRC, IT compliance, or information security with significant PCI DSS and SOX ITGC experience.
Proven history of leading PCI DSS Level‑1 Service Provider assessments with a QSA.
Strong understanding of PCI DSS, SOX compliance, and general IT audit frameworks.
Experience coordinating with external auditors and managing cross‑functional remediation efforts.
Excellent organizational, communication, and stakeholder management skills.
Preferred Experience
Certifications: PCI Qualified Security Assessor (QSA), PCI Internal Security Assessor (ISA), CISA, CISSP, CRISC, or equivalent.
Additional Information Other responsibilities, duties, and qualifications may be assigned as required. To apply, submit your candidacy through Hyatt’s recruitment portal. Salary range: $95,000 to $120,000. The final offer depends on experience, skill level, and location.
#J-18808-Ljbffr