Director, PCI Compliance

Apply now »
Apply now

Date: Mar 12, 2018

Location: Las Vegas, Nevada, US

Company: Las Vegas Sands Corp.

Position Overview:

The primary responsibility of the Director – PCI Compliance is to develop strategies and Information Security plans. This position is expected to provide leadership while managing multiple large scale initiatives. All duties are to be performed in accordance with departmental and The Venetian | The Palazzo Casino Resort’s policies, practices, and procedures. 

Essential Duties & Responsibilities:

  • Lead technical thought leadership to guide the strategic direction to executive management focusing on Information Security risk of development projects, departmental initiatives and other special projects.
  • Identify and lead requirements and recommend system security configurations; oversee security briefings and respond to inquiries.
  • Provide advanced advice and act as an Information Security subject matter expert liaison between the company and staff agencies through formal and ad-hoc inquiries.
  • Provide governance and lead identifying, analyzing and initiating changes in the Information Security policies, guidelines and standards including advising company and staff agencies in support of developing and managing the Information Security awareness program.
  • Give counsel to ensure that internally developed and commercially available business applications include adequate Information Security controls; Consult process owners on the identification, development and testing of Information Security controls for risk mitigation effectiveness.
  • Perform physical site assessments of business partners and provide peer review of work product and deliverables. Counsel and perform release of information analysis to third party business partners and identify alternative methods for securing and releasing information when applicable.
  • Lead the planning, design, development and execution of the Information Security risk and control identification, evaluation, documentation, analysis and reporting processes including analytic tools. Provide expert analysis and recommendations on Information Security risk assessment and mitigation to internal and external clients or other analysts; influence Information Security risk management strategies and approach and educate risk owners on best practices.
  • Regularly advise senior management on key Information Security risk management efforts.
  • Establish strategic partnerships to anticipate, advise, and effectively communicate (written and verbal) Federal and State regulatory and business partner Information Security risk requirements.
  • Coach and mentor peers and cross functional team members to achieve business result, development, and delivery.
  • Collaborate with all levels of management and internal partners to assess Information Security and align to support the organization goals with Enterprise goals.
  • Lead Information Security by identifying, evaluating, assessing, designing, monitoring, administering, reporting and implementing systems, policies and processes.
  • Advise various levels of senior management on Information Security risk management issues and serve as the primary resource for cross-functional team members on escalated issues.
  • Work under minimal supervision on complex work assignments and recommend appropriate solutions to issues.
  • Consistent and regular attendance is an essential function of this job.
  • Perform other related duties as assigned.

Additional Duties & Responsibilities:

Company Standards of Conduct

All Venetian | Palazzo Team Members are expected to conduct and carry themselves in a professional manner at all times. Team Members are required to observe the Company’s standards, work requirements and rules of conduct. Team Members are expected to behave in a manner that supports a harmonious work environment to help us deliver unmatched service to our guests and customers.

Additional Duties & Responsibilities:

Additional Duties & Responsibilities:

Minimum Qualifications:

  • 21 years of age.
  • Proof of authorization/eligibility to work in the United States.
  • Bachelor's degree in MIS, Computer Engineering, Cyber Security, IT or related disciplines or 4 years of additional work experience in IT, Information Security, Cyber Security or equivalent experience in lieu of a degree.
  • MBA or Master's Degree in MIS, Computer Engineering or Cyber Security AND/OR professional designations in CISSP, CISA, CRISC, or CRCMP preferred.
  • Must be able to obtain and maintain a Nevada Gaming Control Board Registration any certification or license, as required by law or policy. 
  • 10 years of work experience in Information Technology or related discipline.
  • 6 years of work experience in leading within a matrixed corporate environment.
  • Advanced knowledge in risk, control, budgets, process and loss costing.
  • 8 years of facilitating risk assessment sessions with all levels of management and executive management.
  • 10 years of working risk assessments with all levels of management preferred.
  • Strong knowledge of risk monetization and costing preferred.
  • Experience with cyber-related regulations, laws, and financial industry standards (NIST, SANS) preferred.
  • Experience with at least one of the following disciplines preferred: Banking, Insurance, Supplier Management or Information Technology.
  • Experience collaborating with and influencing multiple stakeholders to solve a complex problem preferred.
  • Proficiency in process engineering and automation preferred.
  • Ability to communicate clearly and effectively in English, both in spoken and written form.
  • Strong interpersonal skills with the ability to communicate effectively with guests and other Team Members of different backgrounds and levels of experience.
  • Must be able to work varied shifts, including nights, weekends and holidays.

Physical Requirements:

Must be able to:

  • Lift or carry 20 pounds, unassisted, in the performance of specific tasks, as assigned.
  • Physically access all areas of the property and drive areas with or without a reasonable accommodation.
  • Maintain composure under pressure and consistently meet deadlines with internal and external customers and contacts.
  • Ability to interact appropriately and effectively with guests, management, other team members, and outside contacts.
  • Ability for prolonged periods of time to walk, stand, stretch, bend and kneel.
  • Work in a fast-paced and busy environment.
  • Work indoors and be exposed to various environmental factors such as, but not limited to, CRT, noise, dust, and cigarette smoke.

Job Segment: Compliance, Manager, Law, Engineer, Risk Management, Legal, Management, Engineering, Finance

Apply now »
Apply now
Share this Job